Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-27 | CVE-2023-23156 | SQL Injection vulnerability in PHPgurukul ART Gallery Management System 1.0 Art Gallery Management System Project in PHP 1.0 was discovered to contain a SQL injection vulnerability via the pid parameter in the single-product page. | 9.8 |
| 2023-02-27 | CVE-2023-24364 | SQL Injection vulnerability in Simple Customer Relationship Management System Project Simple Customer Relationship Management System 1.0 Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the username parameter under the Admin Panel. | 8.8 |
| 2023-02-27 | CVE-2023-24652 | SQL Injection vulnerability in Simple Customer Relationship Management System Project Simple Customer Relationship Management System 1.0 Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the Description parameter under the Create ticket function. | 8.8 |
| 2023-02-27 | CVE-2023-24653 | SQL Injection vulnerability in Simple Customer Relationship Management System Project Simple Customer Relationship Management System 1.0 Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the oldpass parameter under the Change Password function. | 8.8 |
| 2023-02-27 | CVE-2023-24654 | SQL Injection vulnerability in Simple Customer Relationship Management System Project Simple Customer Relationship Management System 1.0 Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the name parameter under the Request a Quote function. | 8.8 |
| 2023-02-27 | CVE-2023-24656 | SQL Injection vulnerability in Simple Customer Relationship Management System Project Simple Customer Relationship Management System 1.0 Simple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the subject parameter under the Create Ticket function. | 8.8 |
| 2023-02-27 | CVE-2022-34909 | SQL Injection vulnerability in Aremis 4 Nomads 1.5.0 An issue was discovered in the A4N (Aremis 4 Nomad) application 1.5.0 for Android. | 9.1 |
| 2023-02-27 | CVE-2023-24206 | SQL Injection vulnerability in Davinci Project Davinci 0.3.0 Davinci v0.3.0-rc was discovered to contain a SQL injection vulnerability via the copyDisplay function. | 9.8 |
| 2023-02-25 | CVE-2023-26550 | SQL Injection vulnerability in BMC Control-M 9.0.18/9.0.19/9.0.20 A SQL injection vulnerability in BMC Control-M before 9.0.20.214 allows attackers to execute arbitrary SQL commands via the memname JSON field. | 9.8 |
| 2023-02-25 | CVE-2023-26037 | SQL Injection vulnerability in Zoneminder ZoneMinder is a free, open source Closed-circuit television software application for Linux which supports IP, USB and Analog cameras. | 9.8 |