Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

DATE CVE VULNERABILITY TITLE RISK
2023-02-06 CVE-2023-24199 SQL Injection vulnerability in Oretnom23 Raffle Draw System 1.0
Raffle Draw System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at delete_ticket.php.
network
low complexity
oretnom23 CWE-89
critical
9.8
2023-02-06 CVE-2023-24200 SQL Injection vulnerability in Oretnom23 Raffle Draw System 1.0
Raffle Draw System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at save_ticket.php.
network
low complexity
oretnom23 CWE-89
critical
9.8
2023-02-06 CVE-2023-24201 SQL Injection vulnerability in Oretnom23 Raffle Draw System 1.0
Raffle Draw System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at get_ticket.php.
network
low complexity
oretnom23 CWE-89
critical
9.8
2023-02-04 CVE-2023-0673 SQL Injection vulnerability in Oretnom23 Online Eyewear Shop 1.0
A vulnerability classified as critical was found in SourceCodester Online Eyewear Shop 1.0.
network
high complexity
oretnom23 CWE-89
8.1
2023-02-03 CVE-2021-36431 SQL Injection vulnerability in Jocms Project Jocms 0.8
SQL injection vulnerability in jocms 0.8 allows remote attackers to run arbitrary SQL commands and view sentivie information via jo_json_check() function in jocms/apps/mask/inc/mask.php.
network
low complexity
jocms-project CWE-89
critical
9.1
2023-02-03 CVE-2021-36432 SQL Injection vulnerability in Jocms Project Jocms 0.8
SQL injection vulnerability in jocms 0.8 allows remote attackers to run arbitrary SQL commands and view sentivie information via jo_set_mask() function in jocms/apps/mask/mask.php.
network
low complexity
jocms-project CWE-89
7.5
2023-02-03 CVE-2021-36433 SQL Injection vulnerability in Jocms Project Jocms 0.8
SQL injection vulnerability in jocms 0.8 allows remote attackers to run arbitrary SQL commands and view sentivie information via jo_delete_mask function in jocms/apps/mask/mask.php.
network
low complexity
jocms-project CWE-89
critical
9.1
2023-02-03 CVE-2021-36434 SQL Injection vulnerability in Jocms Project Jocms 0.8
SQL injection vulnerability in jocms 0.8 allows remote attackers to run arbitrary SQL commands and view sentivie information via jo_json_check function in jocms/apps/mask/inc/getmask.php.
network
low complexity
jocms-project CWE-89
critical
9.1
2023-02-03 CVE-2021-36484 SQL Injection vulnerability in Jizhicms 1.9.5
SQL injection vulnerability in JIZHICMS 1.9.5 allows attackers to run arbitrary SQL commands via add or edit article page.
network
low complexity
jizhicms CWE-89
critical
9.8
2023-02-03 CVE-2021-36503 SQL Injection vulnerability in Native-PHP-Cms Project Native-PHP-Cms 1.0
SQL injection vulnerability in native-php-cms 1.0 allows remote attackers to run arbitrary SQL commands via the cat parameter to /list.php file.
network
low complexity
native-php-cms-project CWE-89
critical
9.8