Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-11-23 | CVE-2022-44278 | SQL Injection vulnerability in Sanitization Management System Project Sanitization Management System 1.0 Sanitization Management System v1.0 is vulnerable to SQL Injection via /php-sms/admin/?page=user/manage_user&id=. | 7.2 |
| 2022-11-23 | CVE-2022-43213 | SQL Injection vulnerability in Billing System Project Billing System Project 1.0 Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at editorder.php. | 9.8 |
| 2022-11-23 | CVE-2022-37773 | SQL Injection vulnerability in Maarch RM An authenticated SQL Injection vulnerability in the statistics page (/statistics/retrieve) of Maarch RM 2.8, via the filter parameter, allows the complete disclosure of all databases. | 6.5 |
| 2022-11-22 | CVE-2022-45330 | SQL Injection vulnerability in Aerocms Project Aerocms 0.0.1 AeroCMS v0.0.1 was discovered to contain a SQL Injection vulnerability via the Category parameter at \category.php. | 7.5 |
| 2022-11-22 | CVE-2022-45331 | SQL Injection vulnerability in Aerocms Project Aerocms 0.0.1 AeroCMS v0.0.1 was discovered to contain a SQL Injection vulnerability via the p_id parameter at \post.php. | 7.5 |
| 2022-11-22 | CVE-2022-45529 | SQL Injection vulnerability in Aerocms Project Aerocms 0.0.1 AeroCMS v0.0.1 was discovered to contain a SQL Injection vulnerability via the post_category_id parameter at \admin\includes\edit_post.php. | 4.9 |
| 2022-11-22 | CVE-2022-45535 | SQL Injection vulnerability in Aerocms Project Aerocms 0.0.1 AeroCMS v0.0.1 was discovered to contain a SQL Injection vulnerability via the edit parameter at \admin\categories.php. | 4.9 |
| 2022-11-22 | CVE-2022-45536 | SQL Injection vulnerability in Aerocms Project Aerocms 0.0.1 AeroCMS v0.0.1 was discovered to contain a SQL Injection vulnerability via the id parameter at \admin\post_comments.php. | 4.9 |
| 2022-11-22 | CVE-2022-43212 | SQL Injection vulnerability in Billing System Project Billing System Project 1.0 Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the orderId parameter at fetchOrderData.php. | 9.8 |
| 2022-11-22 | CVE-2022-39066 | SQL Injection vulnerability in ZTE Mf286R Firmware Crlvwrgbmf286Rv1.0.0B04 There is a SQL injection vulnerability in ZTE MF286R. | 8.8 |