Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-30 | CVE-2023-6360 | SQL Injection vulnerability in Joedolson MY Calendar The 'My Calendar' WordPress Plugin, version < 3.4.22 is affected by an unauthenticated SQL injection vulnerability in the 'from' and 'to' parameters in the '/my-calendar/v1/events' rest route. | 9.8 |
| 2023-11-30 | CVE-2023-6402 | SQL Injection vulnerability in PHPgurukul Nipah Virus Testing Management System 1.0 A vulnerability, which was classified as critical, was found in PHPGurukul Nipah Virus Testing Management System 1.0. | 8.8 |
| 2023-11-30 | CVE-2023-6413 | SQL Injection vulnerability in Aatifaneeq Voovi 1.0 A vulnerability has been reported in Voovi Social Networking Script that affects version 1.0 and consists of a SQL injection via photos.php in the id and user parameters. | 7.5 |
| 2023-11-30 | CVE-2023-6417 | SQL Injection vulnerability in Aatifaneeq Voovi 1.0 A vulnerability has been reported in Voovi Social Networking Script that affects version 1.0 and consists of a SQL injection via update.php in the id parameter. | 7.5 |
| 2023-11-27 | CVE-2023-46349 | SQL Injection vulnerability in Myprestamodules Updateproducts 3.7.6 In the module "Product Catalog (CSV, Excel) Export/Update" (updateproducts) < 3.8.5 from MyPrestaModules for PrestaShop, a guest can perform SQL injection. | 9.8 |
| 2023-11-27 | CVE-2023-48188 | SQL Injection vulnerability in Store-Opart Op'Art Devis SQL injection vulnerability in PrestaShop opartdevis v.4.5.18 thru v.4.6.12 allows a remote attacker to execute arbitrary code via a crafted script to the getModuleTranslation function. | 9.8 |
| 2023-11-27 | CVE-2023-49030 | SQL Injection vulnerability in 32Ns Klive 20190119 SQL Injection vulnerability in32ns KLive v.2019-1-19 and before allows a remote attacker to obtain sensitive information via a crafted script to the web/user.php component. | 7.5 |
| 2023-11-24 | CVE-2023-46575 | SQL Injection vulnerability in Layer5 Meshery A SQL injection vulnerability exists in Meshery prior to version v0.6.179, enabling a remote attacker to retrieve sensitive information and execute arbitrary code through the “order” parameter | 9.8 |
| 2023-11-22 | CVE-2023-46357 | SQL Injection vulnerability in Myprestamodules Cross Selling in Modal Cart In the module "Cross Selling in Modal Cart" (motivationsale) < 3.5.0 from MyPrestaModules for PrestaShop, a guest can perform SQL injection. | 9.8 |
| 2023-11-22 | CVE-2023-45377 | SQL Injection vulnerability in Chronopost In the module "Chronopost Official" (chronopost) for PrestaShop, a guest can perform SQL injection. | 9.8 |