| 2024-12-26 | CVE-2024-12960 | SQL Injection vulnerability in 1000Projects Portfolio Management System MCA 1.0
A vulnerability, which was classified as critical, has been found in 1000 Projects Portfolio Management System MCA 1.0. | 9.8 |
| 2024-12-26 | CVE-2024-12959 | SQL Injection vulnerability in 1000Projects Portfolio Management System MCA 1.0
A vulnerability classified as critical was found in 1000 Projects Portfolio Management System MCA 1.0. | 9.8 |
| 2024-12-26 | CVE-2024-12942 | SQL Injection vulnerability in 1000Projects Portfolio Management System MCA 1.0
A vulnerability was found in 1000 Projects Portfolio Management System MCA 1.0. | 9.8 |
| 2024-12-26 | CVE-2024-12939 | SQL Injection vulnerability in Anisha JOB Recruitment 1.0
A vulnerability was found in code-projects Job Recruitment 1.0. | 7.5 |
| 2024-12-26 | CVE-2024-12940 | SQL Injection vulnerability in 1000Projects Attendance Tracking Management System 1.0
A vulnerability has been found in 1000 Projects Attendance Tracking Management System 1.0 and classified as critical. | 9.8 |
| 2024-12-26 | CVE-2024-12938 | SQL Injection vulnerability in Code-Projects Simple Admin Panel 1.0
A vulnerability has been found in code-projects Simple Admin Panel 1.0 and classified as critical. | 9.1 |
| 2024-12-25 | CVE-2024-8950 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Arne Informatics Piramit Automation allows Blind SQL Injection.This issue affects Piramit Automation: before 27.09.2024. network low complexity CWE-89 critical | 9.9 |
| 2024-12-25 | CVE-2024-10862 | SQL Injection vulnerability in Basixonline Nex-Forms
The NEX-Forms – Ultimate Form Builder – Contact forms and much more plugin for WordPress is vulnerable to SQL Injection via the 'search_params' parameter in all versions up to, and including, 8.7.13 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 4.9 |
| 2024-12-25 | CVE-2024-12428 | The WP Data Access – App, Table, Form and Chart Builder plugin plugin for WordPress is vulnerable to SQL Injection via the 'order[user_login][dir]' parameter in all versions up to, and including, 5.5.22 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 7.5 |
| 2024-12-25 | CVE-2024-12032 | The Tourfic – Ultimate Hotel Booking, Travel Booking & Apartment Booking WordPress Plugin | WooCommerce Booking plugin for WordPress is vulnerable to SQL Injection via the 'enquiry_id' parameter of the 'tf_enquiry_reply_email_callback' function in all versions up to, and including, 2.15.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 6.5 |