Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-28 | CVE-2023-31937 | SQL Injection vulnerability in PHPgurukul Rail Pass Management System 1.0 Sql injection vulnerability found in Rail Pass Management System v.1.0 allows a remote attacker to execute arbitrary code via the editid parameter of the edit-cateogry-detail.php file. | 7.2 |
| 2023-07-28 | CVE-2023-3987 | SQL Injection vulnerability in Oretnom23 Simple Online Men'S Salon Management System 1.0 A vulnerability was found in SourceCodester Simple Online Mens Salon Management System 1.0. | 9.8 |
| 2023-07-26 | CVE-2023-26859 | SQL Injection vulnerability in Brevo SQL injection vulnerability found in PrestaShop sendinblue v.4.0.15 and before allow a remote attacker to gain privileges via the ajaxOrderTracking.php component. | 9.8 |
| 2023-07-25 | CVE-2023-3877 | SQL Injection vulnerability in Campcodes Beauty Salon Management System 1.0 A vulnerability was found in Campcodes Beauty Salon Management System 1.0. | 7.5 |
| 2023-07-25 | CVE-2023-37361 | SQL Injection vulnerability in Vanderbilt Redcap REDCap 12.0.26 LTS and 12.3.2 Standard allows SQL Injection via scheduling, repeatforms, purpose, app_title, or randomization. | 2.7 |
| 2023-07-21 | CVE-2023-3801 | SQL Injection vulnerability in Ibos 4.5.5 A vulnerability was found in IBOS OA 4.5.5. | 9.8 |
| 2023-07-20 | CVE-2023-31753 | SQL Injection vulnerability in Endonesia 8.7 SQL injection vulnerability in diskusi.php in eNdonesia 8.7, allows an attacker to execute arbitrary SQL commands via the "rid=" parameter. | 9.8 |
| 2023-07-20 | CVE-2023-37165 | SQL Injection vulnerability in Millhouse-Project Project Millhouse-Project 1.414 Millhouse-Project v1.414 was discovered to contain a remote code execution (RCE) vulnerability via the component /add_post_sql.php. | 9.8 |
| 2023-07-20 | CVE-2023-3791 | SQL Injection vulnerability in Ibos 4.5.5 A vulnerability was found in IBOS OA 4.5.5 and classified as critical. | 9.8 |
| 2023-07-19 | CVE-2023-26217 | SQL Injection vulnerability in Tibco EBX Add-Ons The Data Exchange Add-on component of TIBCO Software Inc.'s TIBCO EBX Add-ons contains an easily exploitable vulnerability that allows a low privileged user with import permissions and network access to the EBX server to execute arbitrary SQL statements on the affected system. | 8.8 |