Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-13 | CVE-2023-29597 | SQL Injection vulnerability in Bloofox Bloofoxcms 0.5.2 bloofox v0.5.2 was discovered to contain a SQL injection vulnerability via the component /index.php?mode=content&page=pages&action=edit&eid=1. | 8.8 |
| 2023-04-13 | CVE-2023-29598 | SQL Injection vulnerability in Lmxcms 1.4.1 lmxcms v1.4.1 was discovered to contain a SQL injection vulnerability via the setbook parameter at index.php. | 9.8 |
| 2023-04-12 | CVE-2023-27032 | SQL Injection vulnerability in Idnovate Popup Module (On Entering, Exit Popup, ADD Product) and Newsletter 1.1.21/1.1.24 Prestashop advancedpopupcreator v1.1.21 to v1.1.24 was discovered to contain a SQL injection vulnerability via the component AdvancedPopup::getPopups(). | 9.8 |
| 2023-04-11 | CVE-2023-1985 | SQL Injection vulnerability in Oretnom23 Online Computer and Laptop Store 1.0 A vulnerability, which was classified as critical, has been found in SourceCodester Online Computer and Laptop Store 1.0. | 7.2 |
| 2023-04-11 | CVE-2022-27485 | SQL Injection vulnerability in Fortinet Fortisandbox A improper neutralization of special elements used in an sql command ('sql injection') vulnerability [CWE-89] in Fortinet FortiSandbox version 4.2.0, 4.0.0 through 4.0.2, 3.2.0 through 3.2.3, 3.1.x and 3.0.x allows a remote and authenticated attacker with read permission to retrieve arbitrary files from the underlying Linux system via a crafted HTTP request. | 6.5 |
| 2023-04-10 | CVE-2020-36077 | SQL Injection vulnerability in Tailor Mangement System Project Tailor Mangement System 1.0 SQL injection vulnerability found in Tailor Mangement System v.1 allows a remote attacker to execute arbitrary code via the customer parameter of the orderadd.php file | 8.8 |
| 2023-04-10 | CVE-2023-26860 | SQL Injection vulnerability in Save Your Carts and BUY Later or Send IT Project Save Your Carts and BUY Later or Send IT 1.0.3 SQL injection vulnerability found in PrestaShop Igbudget v.1.0.3 and before allow a remote attacker to gain privileges via the LgBudgetBudgetModuleFrontController::displayAjaxGenerateBudget component. | 8.8 |
| 2023-04-09 | CVE-2023-1963 | SQL Injection vulnerability in PHPgurukul Bank Locker Management System 1.0 A vulnerability was found in PHPGurukul Bank Locker Management System 1.0. | 9.8 |
| 2023-04-08 | CVE-2023-1959 | SQL Injection vulnerability in Oretnom23 Online Computer and Laptop Store 1.0 A vulnerability has been found in SourceCodester Online Computer and Laptop Store 1.0 and classified as critical. | 8.8 |
| 2023-04-08 | CVE-2023-1951 | SQL Injection vulnerability in Oretnom23 Online Computer and Laptop Store 1.0 A vulnerability was found in SourceCodester Online Computer and Laptop Store 1.0 and classified as critical. | 9.8 |