Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

DATE CVE VULNERABILITY TITLE RISK
2023-03-07 CVE-2022-3760 SQL Injection vulnerability in Miateknoloji Mia-Med
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Mia Technology Mia-Med.This issue affects Mia-Med: before 1.0.0.58.
network
low complexity
miateknoloji CWE-89
critical
 9.8
9.8
2023-03-06 CVE-2021-36392 SQL Injection vulnerability in Moodle
In Moodle, an SQL injection risk was identified in the library fetching a user's enrolled courses.
network
low complexity
moodle CWE-89
critical
 9.8
9.8
2023-03-06 CVE-2021-36393 SQL Injection vulnerability in Moodle
In Moodle, an SQL injection risk was identified in the library fetching a user's recent courses.
network
low complexity
moodle CWE-89
critical
 9.8
9.8
2023-03-06 CVE-2023-24763 SQL Injection vulnerability in Prestashop XEN Forum
In the module "Xen Forum" (xenforum) for PrestaShop, an authenticated user can perform SQL injection in versions up to 2.13.0.
network
low complexity
prestashop CWE-89
8.8
8.8
2023-03-06 CVE-2023-24789 SQL Injection vulnerability in Jeecg 3.4.4
jeecg-boot v3.4.4 was discovered to contain an authenticated SQL injection vulnerability via the building block report component.
network
low complexity
jeecg CWE-89
8.8
8.8
2023-03-03 CVE-2023-24641 SQL Injection vulnerability in Judging Management System Project Judging Management System 1.0
Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the sid parameter at /php-jms/updateview.php.
network
low complexity
judging-management-system-project CWE-89
critical
 9.8
9.8
2023-03-03 CVE-2023-24642 SQL Injection vulnerability in Judging Management System Project Judging Management System 1.0
Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the sid parameter at /php-jms/updateTxtview.php.
network
low complexity
judging-management-system-project CWE-89
critical
 9.8
9.8
2023-03-03 CVE-2023-24643 SQL Injection vulnerability in Judging Management System Project Judging Management System 1.0
Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the sid parameter at /php-jms/updateBlankTxtview.php.
network
low complexity
judging-management-system-project CWE-89
critical
 9.8
9.8
2023-03-02 CVE-2022-46501 SQL Injection vulnerability in Accruent Maintenance Connection 2021/2022.2
Accruent LLC Maintenance Connection 2021 (all) & 2022.2 was discovered to contain a SQL injection vulnerability via the E-Mail to Work Order function.
network
low complexity
accruent CWE-89
critical
 9.8
9.8
2023-03-02 CVE-2021-4328 SQL Injection vulnerability in Lionfish CMS Project Lionfish CMS
A vulnerability has been found in ???CMS and classified as critical.
network
low complexity
lionfish-cms-project CWE-89
critical
 9.8
9.8