Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

DATE CVE VULNERABILITY TITLE RISK
2024-11-03 CVE-2024-10731 SQL Injection vulnerability in Tongda2000 Office Anywhere 11.10
A vulnerability, which was classified as critical, was found in Tongda OA up to 11.10.
network
low complexity
tongda2000 CWE-89
critical
9.8
2024-11-03 CVE-2024-10730 SQL Injection vulnerability in Tongda2000 Office Anywhere
A vulnerability, which was classified as critical, has been found in Tongda OA up to 11.6.
network
low complexity
tongda2000 CWE-89
critical
9.8
2024-11-02 CVE-2024-10702 SQL Injection vulnerability in Fabinros Simple CAR Rental System 1.0
A vulnerability classified as critical has been found in code-projects Simple Car Rental System 1.0.
network
low complexity
fabinros CWE-89
critical
9.8
2024-11-02 CVE-2024-10700 SQL Injection vulnerability in Anisha University Event Management System 1.0
A vulnerability was found in code-projects University Event Management System 1.0.
network
low complexity
anisha CWE-89
critical
9.8
2024-11-02 CVE-2024-10699 SQL Injection vulnerability in Anisha Wazifa System 1.0
A vulnerability was found in code-projects Wazifa System 1.0.
network
low complexity
anisha CWE-89
critical
9.8
2024-11-02 CVE-2024-10540 SQL Injection vulnerability in Reputeinfosystems Bookingpress
The Appointment Booking Calendar Plugin and Scheduling Plugin – BookingPress plugin for WordPress is vulnerable to SQL Injection via the 'service' parameter of the bookingpress_form shortcode in all versions up to, and including, 1.1.16 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.
network
low complexity
reputeinfosystems CWE-89
6.5
2024-11-01 CVE-2024-10659 SQL Injection vulnerability in Esafenet CDG 5
A vulnerability, which was classified as critical, has been found in ESAFENET CDG 5.
network
low complexity
esafenet CWE-89
critical
9.8
2024-11-01 CVE-2024-10660 SQL Injection vulnerability in Esafenet CDG 5
A vulnerability, which was classified as critical, was found in ESAFENET CDG 5.
network
low complexity
esafenet CWE-89
critical
9.8
2024-11-01 CVE-2024-10656 SQL Injection vulnerability in Tongda2000 Office Anywhere 2017
A vulnerability was found in Tongda OA 2017 up to 11.9.
network
low complexity
tongda2000 CWE-89
critical
9.8
2024-11-01 CVE-2024-10657 SQL Injection vulnerability in Tongda2000 Office Anywhere 11.10
A vulnerability classified as critical has been found in Tongda OA up to 11.10.
network
low complexity
tongda2000 CWE-89
critical
9.8