Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-24 | CVE-2023-29849 | SQL Injection vulnerability in Hockeycomputindo Bang Resto 1.0 Bang Resto 1.0 was discovered to contain multiple SQL injection vulnerabilities via the btnMenuItemID, itemID, itemPrice, menuID, staffID, or itemqty parameter. | 8.8 |
| 2023-04-23 | CVE-2023-23753 | SQL Injection vulnerability in Vi-Solutions Visforms 3.0.0/3.0.4 The 'Visforms Base Package for Joomla 3' extension is vulnerable to SQL Injection as concatenation is used to construct an SQL Query. | 9.8 |
| 2023-04-21 | CVE-2023-26876 | SQL Injection vulnerability in Piwigo SQL injection vulnerability found in Piwigo v.13.5.0 and before allows a remote attacker to execute arbitrary code via the filter_user_id parameter to the admin.php?page=history&filter_image_id=&filter_user_id endpoint. | 8.8 |
| 2023-04-21 | CVE-2023-2211 | SQL Injection vulnerability in Coffee Shop POS System Project Coffee Shop POS System 1.0 A vulnerability was found in Campcodes Coffee Shop POS System 1.0 and classified as critical. | 7.5 |
| 2023-04-20 | CVE-2023-30076 | SQL Injection vulnerability in Judging Management System Project Judging Management System 1.0 Sourcecodester Judging Management System v1.0 is vulnerable to SQL Injection via /php-jms/print_judges.php?print_judges.php=&se_name=&sub_event_id=. | 9.8 |
| 2023-04-19 | CVE-2023-30558 | SQL Injection vulnerability in Archerydms Archery 1.9.0 Archery is an open source SQL audit platform. | 6.5 |
| 2023-04-18 | CVE-2023-2151 | SQL Injection vulnerability in Oretnom23 Student Study Center Desk Management System 1.0 A vulnerability, which was classified as critical, was found in SourceCodester Student Study Center Desk Management System 1.0. | 9.8 |
| 2023-04-17 | CVE-2023-27733 | SQL Injection vulnerability in Dedecms 5.7.106 DedeCMS v5.7.106 was discovered to contain a SQL injection vulnerability via the component /dede/sys_sql_query.php. | 7.2 |
| 2023-04-17 | CVE-2023-27844 | SQL Injection vulnerability in Litextension Leurlrewrite 1.0 SQL injection vulnerability found in PrestaShopleurlrewrite v.1.0 and before allow a remote attacker to gain privileges via the Dispatcher::getController component. | 9.8 |
| 2023-04-16 | CVE-2021-36520 | SQL Injection vulnerability in Washington I-Tech Trainsmart R1044 A SQL injection vulnerability in I-Tech Trainsmart r1044 exists via a evaluation/assign-evaluation?id= URI. | 7.5 |