Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-26 | CVE-2024-7117 | SQL Injection vulnerability in Mdmafujulhasan Online-Payroll-Management-System 20230911 A vulnerability classified as critical has been found in MD-MAFUJUL-HASAN Online-Payroll-Management-System up to 20230911. | 8.8 |
| 2024-07-26 | CVE-2024-7118 | SQL Injection vulnerability in Mdmafujulhasan Online-Payroll-Management-System 20230911 A vulnerability classified as critical was found in MD-MAFUJUL-HASAN Online-Payroll-Management-System up to 20230911. | 8.8 |
| 2024-07-26 | CVE-2024-7116 | SQL Injection vulnerability in Mdmafujulhasan Online-Payroll-Management-System 20230911 A vulnerability was found in MD-MAFUJUL-HASAN Online-Payroll-Management-System up to 20230911. | 8.8 |
| 2024-07-26 | CVE-2024-7115 | SQL Injection vulnerability in Mdmafujulhasan Online-Payroll-Management-System 20230911 A vulnerability was found in MD-MAFUJUL-HASAN Online-Payroll-Management-System up to 20230911. | 8.8 |
| 2024-07-25 | CVE-2024-38289 | SQL Injection vulnerability in Rhubcom Turbomeeting A boolean-based SQL injection issue in the Virtual Meeting Password (VMP) endpoint in R-HUB TurboMeeting through 8.x allows unauthenticated remote attackers to extract hashed passwords from the database, and authenticate to the application, via crafted SQL input. | 9.8 |
| 2024-07-24 | CVE-2024-7081 | SQL Injection vulnerability in Tailoring Management System Project Tailoring Management System 1.0 A vulnerability was found in itsourcecode Tailoring Management System 1.0. | 9.8 |
| 2024-07-24 | CVE-2024-41551 | SQL Injection vulnerability in Campcodes Supplier Management System 1.0 CampCodes Supplier Management System v1.0 is vulnerable to SQL injection via Supply_Management_System/admin/view_order_items.php?id= . | 9.8 |
| 2024-07-24 | CVE-2024-7069 | SQL Injection vulnerability in Employee and Visitor Gate Pass Logging System Project Employee and Visitor Gate Pass Logging System 1.0 A vulnerability, which was classified as critical, has been found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. | 7.5 |
| 2024-07-22 | CVE-2024-38692 | SQL Injection vulnerability in Spiffyplugins Spiffy Calendar Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Spiffy Plugins Spiffy Calendar allows SQL Injection.This issue affects Spiffy Calendar: from n/a through 4.9.11. | 7.2 |
| 2024-07-22 | CVE-2024-38708 | SQL Injection vulnerability in Ukrsolution Barcode Scanner and Inventory Manager Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in UkrSolution Barcode Scanner with Inventory & Order Manager allows SQL Injection.This issue affects Barcode Scanner with Inventory & Order Manager: from n/a through 1.6.1. | 8.8 |