Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-11 | CVE-2024-11059 | SQL Injection vulnerability in Projectworlds Free Download Online Shopping System A vulnerability was found in Project Worlds Free Download Online Shopping System up to 192.168.1.88. | 9.8 |
| 2024-11-10 | CVE-2024-11057 | SQL Injection vulnerability in Codezips Hospital Appointment System 1.0 A vulnerability has been found in Codezips Hospital Appointment System 1.0 and classified as critical. | 9.8 |
| 2024-11-10 | CVE-2024-11055 | SQL Injection vulnerability in 1000Projects Beauty Parlour Management System 1.0 A vulnerability, which was classified as critical, has been found in 1000 Projects Beauty Parlour Management System 1.0. | 9.8 |
| 2024-11-10 | CVE-2024-11051 | SQL Injection vulnerability in Amttgroup Hotel Broadband Operating System A vulnerability was found in AMTT Hotel Broadband Operation System up to 3.0.3.151204. | 8.8 |
| 2024-11-09 | CVE-2024-51606 | SQL Injection vulnerability in Blrt WP Embed Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Blrt Blrt WP Embed allows SQL Injection.This issue affects Blrt WP Embed: from n/a through 1.6.9. | 8.8 |
| 2024-11-09 | CVE-2024-51608 | SQL Injection vulnerability in Pluginhandy Amadiscount 1.0 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Pluginhandy AmaDiscount allows SQL Injection.This issue affects AmaDiscount: from n/a through 1.0. | 8.8 |
| 2024-11-09 | CVE-2024-9874 | The Poll Maker – Versus Polls, Anonymous Polls, Image Polls plugin for WordPress is vulnerable to time-based SQL Injection via the ‘orderby’ parameter in all versions up to, and including, 5.4.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 4.9 |
| 2024-11-08 | CVE-2024-51030 | SQL Injection vulnerability in Oretnom23 CAB Management System 1.0 A SQL injection vulnerability in manage_client.php and view_cab.php of Sourcecodester Cab Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter, leading to unauthorized access and potential compromise of sensitive data within the database. | 6.5 |
| 2024-11-08 | CVE-2024-10998 | SQL Injection vulnerability in Bookstore Management System Project Bookstore Management System 1.0 A vulnerability was found in 1000 Projects Bookstore Management System 1.0. | 9.8 |
| 2024-11-08 | CVE-2024-10995 | SQL Injection vulnerability in Codezips Hospital Appointment System 1.0 A vulnerability was found in Codezips Hospital Appointment System 1.0 and classified as critical. | 9.8 |