Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-11-28 | CVE-2022-3848 | SQL Injection vulnerability in WP User Merger Project WP User Merger The WP User Merger WordPress plugin before 1.5.3 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as admin | 8.8 |
| 2022-11-28 | CVE-2022-36193 | SQL Injection vulnerability in Lahirudanushka School Management System 1.0 SQL injection in School Management System 1.0 allows remote attackers to modify or delete data, causing persistent changes to the application's content or behavior by using malicious SQL queries. | 9.8 |
| 2022-11-27 | CVE-2022-45930 | SQL Injection vulnerability in Linuxfoundation Opendaylight A SQL injection issue was discovered in AAA in OpenDaylight (ODL) before 0.16.5. | 7.5 |
| 2022-11-27 | CVE-2022-45931 | SQL Injection vulnerability in Linuxfoundation Opendaylight A SQL injection issue was discovered in AAA in OpenDaylight (ODL) before 0.16.5. | 7.5 |
| 2022-11-27 | CVE-2022-45932 | SQL Injection vulnerability in Linuxfoundation Opendaylight A SQL injection issue was discovered in AAA in OpenDaylight (ODL) before 0.16.5. | 7.5 |
| 2022-11-25 | CVE-2022-44858 | SQL Injection vulnerability in Automotive Shop Management System Project Automotive Shop Management System 1.0 Automotive Shop Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /asms/products/view_product.php. | 7.2 |
| 2022-11-25 | CVE-2022-44859 | SQL Injection vulnerability in Automotive Shop Management System Project Automotive Shop Management System 1.0 Automotive Shop Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /asms/admin/products/manage_product.php. | 7.2 |
| 2022-11-25 | CVE-2022-44860 | SQL Injection vulnerability in Automotive Shop Management System Project Automotive Shop Management System 1.0 Automotive Shop Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/transactions/update_status.php. | 7.2 |
| 2022-11-25 | CVE-2022-45205 | SQL Injection vulnerability in Jeecg Boot 3.4.3 Jeecg-boot v3.4.3 was discovered to contain a SQL injection vulnerability via the component /sys/dict/queryTableData. | 5.3 |
| 2022-11-25 | CVE-2022-45206 | SQL Injection vulnerability in Jeecg Boot 3.4.3 Jeecg-boot v3.4.3 was discovered to contain a SQL injection vulnerability via the component /sys/duplicate/check. | 9.8 |