Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-28 | CVE-2023-38870 | SQL Injection vulnerability in Economizzer 0.9/April2023 A SQL injection vulnerability exists in gugoan Economizzer commit 3730880 (April 2023) and v.0.9-beta1. | 9.8 |
| 2023-09-27 | CVE-2023-43192 | SQL Injection vulnerability in Jrecms Springbootcms 1.0 SQL injection can exist in a newly created part of the SpringbootCMS 1.0 background, and the parameters submitted by users are not filtered. | 8.8 |
| 2023-09-27 | CVE-2023-44047 | SQL Injection vulnerability in Toll TAX Management System Project Toll TAX Management System 1.0 Sourcecodester Toll Tax Management System v1 is vulnerable to SQL Injection. | 7.2 |
| 2023-09-27 | CVE-2023-42461 | SQL Injection vulnerability in Glpi-Project Glpi GLPI stands for Gestionnaire Libre de Parc Informatique is a Free Asset and IT Management Software package, that provides ITIL Service Desk features, licenses tracking and software auditing. | 9.8 |
| 2023-09-27 | CVE-2023-43381 | SQL Injection vulnerability in Tianchoy Blog 1.8.8 SQL Injection vulnerability in Tianchoy Blog v.1.8.8 allows a remote attacker to obtain sensitive information via the id parameter in the login.php | 7.5 |
| 2023-09-27 | CVE-2023-43493 | SQL Injection vulnerability in Collne Welcart E-Commerce SQL injection vulnerability in Item List page of Welcart e-Commerce versions 2.7 to 2.8.21 allows a user with author or higher privilege to obtain sensitive information. | 4.9 |
| 2023-09-27 | CVE-2023-43610 | SQL Injection vulnerability in Collne Welcart E-Commerce SQL injection vulnerability in Order Data Edit page of Welcart e-Commerce versions 2.7 to 2.8.21 allows a user with editor (without setting authority) or higher privilege to perform unintended database operations. | 8.8 |
| 2023-09-27 | CVE-2023-44044 | SQL Injection vulnerability in Superstorefinder Super Store Finder Super Store Finder v3.6 and below was discovered to contain a SQL injection vulnerability via the Search parameter at /admin/stores.php. | 7.2 |
| 2023-09-27 | CVE-2023-40046 | SQL Injection vulnerability in Progress WS FTP Server In WS_FTP Server versions prior to 8.7.4 and 8.8.2, a SQL injection vulnerability exists in the WS_FTP Server manager interface. | 7.2 |
| 2023-09-25 | CVE-2023-43132 | SQL Injection vulnerability in Szvone Vmqphp szvone vmqphp <=1.13 is vulnerable to SQL Injection. | 6.5 |