Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-20 | CVE-2020-20636 | SQL Injection vulnerability in Joyplus-Cms Project Joyplus-Cms 1.6.0 SQL injection vulnerability found in Joyplus-cms v.1.6.0 allows a remote attacker to access sensitive information via the id parameter of the goodbad() function. | 7.5 |
| 2023-06-20 | CVE-2020-21400 | SQL Injection vulnerability in PHPmywind 5.6 SQL injection vulnerability in gaozhifeng PHPMyWind v.5.6 allows a remote attacker to execute arbitrary code via the id variable in the modify function. | 7.2 |
| 2023-06-20 | CVE-2020-21486 | SQL Injection vulnerability in PHPok 5.4 SQL injection vulnerability in PHPOK v.5.4. | 7.5 |
| 2023-06-20 | CVE-2023-34600 | SQL Injection vulnerability in Adiscon Loganalyzer Adiscon LogAnalyzer v4.1.13 and before is vulnerable to SQL Injection. | 9.8 |
| 2023-06-19 | CVE-2023-34602 | SQL Injection vulnerability in Jeecg Jeecgboot JeecgBoot up to v 3.5.1 was discovered to contain a SQL injection vulnerability via the component queryTableDictItemsByCode at org.jeecg.modules.api.controller.SystemApiController. | 7.5 |
| 2023-06-19 | CVE-2023-34603 | SQL Injection vulnerability in Jeecg Jeecgboot JeecgBoot up to v 3.5.1 was discovered to contain a SQL injection vulnerability via the component queryFilterTableDictInfo at org.jeecg.modules.api.controller.SystemApiController. | 7.5 |
| 2023-06-17 | CVE-2023-35811 | SQL Injection vulnerability in Sugarcrm 11.0.0/12.0.0 An issue was discovered in SugarCRM Enterprise before 11.0.6 and 12.x before 12.0.3. | 8.8 |
| 2023-06-16 | CVE-2023-34659 | SQL Injection vulnerability in Jeecg Boot 3.5.0/3.5.1 jeecg-boot 3.5.0 and 3.5.1 have a SQL injection vulnerability the id parameter of the /jeecg-boot/jmreport/show interface. | 9.8 |
| 2023-06-16 | CVE-2023-34548 | SQL Injection vulnerability in Simple Customer Relationship Management Project Simple Customer Relationship Management 1.0 Simple Customer Relationship Management 1.0 is vulnerable to SQL Injection via the email parameter. | 9.8 |
| 2023-06-16 | CVE-2023-35782 | SQL Injection vulnerability in Ipandlanguageredirect Project Ipandlanguageredirect The ipandlanguageredirect extension before 5.1.2 for TYPO3 allows SQL Injection. | 9.8 |