Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-10-28 | CVE-2021-38736 | SQL Injection vulnerability in Sem-Cms Semcms 1.1 SEMCMS Shop V 1.1 is vulnerable to SQL Injection via Ant_Global.php. | 9.8 |
| 2022-10-28 | CVE-2021-38737 | SQL Injection vulnerability in Sem-Cms Semcms 1.1 SEMCMS v 1.1 is vulnerable to SQL Injection via Ant_Pro.php. | 9.8 |
| 2022-10-28 | CVE-2022-43276 | SQL Injection vulnerability in Canteen Management System Project Canteen Management System 1.0 Canteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the productId parameter at /php_action/fetchSelectedfood.php. | 7.2 |
| 2022-10-28 | CVE-2022-3729 | SQL Injection vulnerability in Ehoney Project Ehoney A vulnerability, which was classified as critical, has been found in seccome Ehoney. | 9.8 |
| 2022-10-28 | CVE-2022-3732 | SQL Injection vulnerability in Ehoney Project Ehoney A vulnerability was found in seccome Ehoney and classified as critical. | 9.8 |
| 2022-10-27 | CVE-2022-40967 | SQL Injection vulnerability in Deltaww Diaenergie The affected product DIAEnergie (versions prior to v1.9.01.002) is vulnerable to a SQL injection that exists in CheckIoTHubNameExisted. | 8.8 |
| 2022-10-27 | CVE-2022-41133 | SQL Injection vulnerability in Deltaww Diaenergie The affected product DIAEnergie (versions prior to v1.9.01.002) is vulnerable to a SQL injection that exists in GetDIAE_line_message_settingsListParameters. | 8.8 |
| 2022-10-27 | CVE-2022-41773 | SQL Injection vulnerability in Deltaww Diaenergie The affected product DIAEnergie (versions prior to v1.9.01.002) is vulnerable to a SQL injection that exists in CheckDIACloud. | 8.8 |
| 2022-10-27 | CVE-2022-39976 | SQL Injection vulnerability in School Activity Updates With SMS Notification Project School Activity Updates With SMS Notification 1.0 School Activity Updates with SMS Notification v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /modules/announcement/index.php?view=edit&id=. | 9.8 |
| 2022-10-27 | CVE-2022-3714 | SQL Injection vulnerability in Oretnom23 Online Medicine Ordering System 1.0 A vulnerability classified as critical has been found in SourceCodester Online Medicine Ordering System 1.0. | 9.8 |