Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-11 | CVE-2023-40945 | SQL Injection vulnerability in Doctor Appointment System Project Doctor Appointment System 1.0 Sourcecodester Doctor Appointment System 1.0 is vulnerable to SQL Injection in the variable $userid at doctors\myDetails.php. | 9.8 |
| 2023-09-11 | CVE-2023-40946 | SQL Injection vulnerability in Schoolmate Project Schoolmate 1.3 Schoolmate 1.3 is vulnerable to SQL Injection in the variable $username from SESSION in ValidateLogin.php. | 9.8 |
| 2023-09-11 | CVE-2023-30058 | SQL Injection vulnerability in Xxyopen Novel-Plus 3.6.2 novel-plus 3.6.2 is vulnerable to SQL Injection. | 9.8 |
| 2023-09-10 | CVE-2023-4871 | SQL Injection vulnerability in Contact Manager APP Project Contact Manager APP 1.0 A vulnerability classified as critical was found in SourceCodester Contact Manager App 1.0. | 9.8 |
| 2023-09-10 | CVE-2023-4866 | SQL Injection vulnerability in Online Tours & Travels Management System Project Online Tours & Travels Management System 1.0 A vulnerability was found in SourceCodester Online Tours & Travels Management System 1.0 and classified as critical. | 9.8 |
| 2023-09-09 | CVE-2023-4845 | SQL Injection vulnerability in Razormist Simple Membership System 1.0 A vulnerability was found in SourceCodester Simple Membership System 1.0. | 9.8 |
| 2023-09-08 | CVE-2023-42268 | SQL Injection vulnerability in Jeecg Boot Jeecg boot up to v3.5.3 was discovered to contain a SQL injection vulnerability via the component /jeecg-boot/jmreport/show. | 9.8 |
| 2023-09-08 | CVE-2023-41594 | SQL Injection vulnerability in PHPgurukul Dairy Farm Shop Management System 1.1 Dairy Farm Shop Management System Using PHP and MySQL v1.1 was discovered to contain multiple SQL injection vulnerabilities in the Login function via the Username and Password parameters. | 7.5 |
| 2023-09-08 | CVE-2023-41615 | SQL Injection vulnerability in PHPgurukul ZOO Management System 1.0 Zoo Management System v1.0 was discovered to contain multiple SQL injection vulnerabilities in the Admin sign-in page via the username and password fields. | 9.8 |
| 2023-09-08 | CVE-2021-45811 | SQL Injection vulnerability in Enhancesoft Osticket A SQL injection vulnerability in the "Search" functionality of "tickets.php" page in osTicket 1.15.x allows authenticated attackers to execute arbitrary SQL commands via the "keywords" and "topic_id" URL parameters combination. | 6.5 |