Point Of Sales 1.0 allows SQL injection via the login screen, related to LoginForm1.vb.
References
Link | Resource |
---|---|
http://packetstormsecurity.com/files/150013/Point-Of-Sales-POS-In-VB.Net-MYSQL-Database-1.0-SQL-Injection.html | Exploit Third Party Advisory VDB Entry |
https://www.exploit-db.com/exploits/45721/ | Exploit Third Party Advisory VDB Entry |
https://www.sourcecodester.com/visual-basic-net/12655/point-sales-pos-vbnet-and-mysql-database.html | Product Third Party Advisory |
http://packetstormsecurity.com/files/150013/Point-Of-Sales-POS-In-VB.Net-MYSQL-Database-1.0-SQL-Injection.html | Exploit Third Party Advisory VDB Entry |
https://www.exploit-db.com/exploits/45721/ | Exploit Third Party Advisory VDB Entry |
https://www.sourcecodester.com/visual-basic-net/12655/point-sales-pos-vbnet-and-mysql-database.html | Product Third Party Advisory |
Configurations
History
21 Nov 2024, 03:56
Type | Values Removed | Values Added |
---|---|---|
References | () http://packetstormsecurity.com/files/150013/Point-Of-Sales-POS-In-VB.Net-MYSQL-Database-1.0-SQL-Injection.html - Exploit, Third Party Advisory, VDB Entry | |
References | () https://www.exploit-db.com/exploits/45721/ - Exploit, Third Party Advisory, VDB Entry | |
References | () https://www.sourcecodester.com/visual-basic-net/12655/point-sales-pos-vbnet-and-mysql-database.html - Product, Third Party Advisory |
29 Mar 2022, 18:05
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://www.sourcecodester.com/visual-basic-net/12655/point-sales-pos-vbnet-and-mysql-database.html - Product, Third Party Advisory |
17 Dec 2021, 18:15
Type | Values Removed | Values Added |
---|---|---|
Summary | Point Of Sales 1.0 allows SQL injection via the login screen, related to LoginForm1.vb. | |
References |
|
Information
Published : 2018-11-16 18:29
Updated : 2024-11-21 03:56
NVD link : CVE-2018-18805
Mitre link : CVE-2018-18805
CVE.ORG link : CVE-2018-18805
JSON object : View
Products Affected
pointofsales_project
- pointofsales
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')