Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

DATE CVE VULNERABILITY TITLE RISK
2022-11-25 CVE-2022-45207 SQL Injection vulnerability in Jeecg Boot 3.4.3
Jeecg-boot v3.4.3 was discovered to contain a SQL injection vulnerability via the component updateNullByEmptyString.
network
low complexity
jeecg CWE-89
critical
 9.8
9.8
2022-11-25 CVE-2022-45208 SQL Injection vulnerability in Jeecg Boot 3.4.3
Jeecg-boot v3.4.3 was discovered to contain a SQL injection vulnerability via the component /sys/user/putRecycleBin.
network
low complexity
jeecg CWE-89
4.3
4.3
2022-11-25 CVE-2022-45210 SQL Injection vulnerability in Jeecg Boot 3.4.3
Jeecg-boot v3.4.3 was discovered to contain a SQL injection vulnerability via the component /sys/user/deleteRecycleBin.
network
low complexity
jeecg CWE-89
4.3
4.3
2022-11-24 CVE-2022-4088 SQL Injection vulnerability in Stock Management System Project Stock Management System
A vulnerability was found in rickxy Stock Management System and classified as critical.
network
low complexity
stock-management-system-project CWE-89
critical
 9.8
9.8
2022-11-23 CVE-2022-44117 SQL Injection vulnerability in BOA 0.94.14.21
Boa 0.94.14rc21 is vulnerable to SQL Injection via username.
network
low complexity
boa CWE-89
critical
 9.8
9.8
2022-11-23 CVE-2022-44120 SQL Injection vulnerability in Dedebiz Dedecmsv6 6.1.9
dedecmdv6 6.1.9 is vulnerable to SQL Injection.
network
low complexity
dedebiz CWE-89
critical
 9.8
9.8
2022-11-23 CVE-2022-45278 SQL Injection vulnerability in Jizhicms 2.3.3
Jizhicms v2.3.3 was discovered to contain a SQL injection vulnerability via the /index.php/admins/Fields/get_fields.html component.
network
low complexity
jizhicms CWE-89
8.8
8.8
2022-11-23 CVE-2022-44140 SQL Injection vulnerability in Jizhicms 2.3.3
Jizhicms v2.3.3 was discovered to contain a SQL injection vulnerability via the /Member/memberedit.html component.
network
low complexity
jizhicms CWE-89
8.8
8.8
2022-11-23 CVE-2021-35284 SQL Injection vulnerability in Cms-PHP Project Cms-PHP 1.0
SQL Injection vulnerability in function get_user in login_manager.php in rizalafani cms-php v1.
network
low complexity
cms-php-project CWE-89
critical
 9.8
9.8
2022-11-23 CVE-2022-44139 SQL Injection vulnerability in Apartment Visitors Management System Project Apartment Visitors Management System 1.0
Apartment Visitor Management System v1.0 is vulnerable to SQL Injection via /avms/index.php.
network
low complexity
apartment-visitors-management-system-project CWE-89
critical
 9.8
9.8