Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-10 | CVE-2020-26630 | SQL Injection vulnerability in PHPgurukul Hospital Management System 4.0 A Time-Based SQL Injection vulnerability was discovered in Hospital Management System V4.0 which can allow an attacker to dump database information via a special payload in the 'Doctor Specialization' field under the 'Go to Doctors' tab after logging in as an admin. | 4.9 |
| 2024-01-10 | CVE-2023-48864 | SQL Injection vulnerability in Sem-Cms Semcms 4.8 SEMCMS v4.8 was discovered to contain a SQL injection vulnerability via the languageID parameter in /web_inc.php. | 7.5 |
| 2024-01-10 | CVE-2024-0363 | SQL Injection vulnerability in PHPgurukul Hospital Management System 1.0 A vulnerability, which was classified as critical, has been found in PHPGurukul Hospital Management System 1.0. | 9.8 |
| 2024-01-09 | CVE-2023-39336 | SQL Injection vulnerability in Ivanti Endpoint Manager An unspecified SQL Injection vulnerability in Ivanti Endpoint Manager released prior to 2022 SU 5 allows an attacker with access to the internal network to execute arbitrary SQL queries and retrieve output without the need for authentication. | 8.8 |
| 2024-01-09 | CVE-2023-50162 | SQL Injection vulnerability in Phome Empirecms 7.5 SQL injection vulnerability in EmpireCMS v7.5, allows remote attackers to execute arbitrary code and obtain sensitive information via the DoExecSql function. | 7.2 |
| 2024-01-08 | CVE-2023-6921 | SQL Injection vulnerability in Prestashow Google Integrator Blind SQL Injection vulnerability in PrestaShow Google Integrator (PrestaShop addon) allows for data extraction and modification. | 9.1 |
| 2024-01-07 | CVE-2024-0279 | SQL Injection vulnerability in Kashipara Food Management System 1.0 A vulnerability, which was classified as critical, was found in Kashipara Food Management System up to 1.0. | 6.5 |
| 2024-01-07 | CVE-2024-0272 | SQL Injection vulnerability in Kashipara Food Management System 1.0 A vulnerability was found in Kashipara Food Management System up to 1.0 and classified as critical. | 6.5 |
| 2024-01-06 | CVE-2023-46953 | SQL Injection vulnerability in Abocms Abo.Cms 5.9.3 SQL Injection vulnerability in ABO.CMS v.5.9.3, allows remote attackers to execute arbitrary code via the d parameter in the Documents module. | 9.8 |
| 2024-01-06 | CVE-2023-39853 | SQL Injection vulnerability in Dzzoffice 2.01 SQL Injection vulnerability in Dzzoffice version 2.01, allows remote attackers to obtain sensitive information via the doobj and doevent parameters in the Network Disk backend module. | 6.5 |