Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-10-13 | CVE-2022-3471 | SQL Injection vulnerability in Oretnom23 Human Resource Management System A vulnerability was found in SourceCodester Human Resource Management System. | 4.9 |
| 2022-10-13 | CVE-2022-3472 | SQL Injection vulnerability in Oretnom23 Human Resource Management System A vulnerability was found in SourceCodester Human Resource Management System. | 4.9 |
| 2022-10-13 | CVE-2022-3473 | SQL Injection vulnerability in Oretnom23 Human Resource Management System A vulnerability classified as critical has been found in SourceCodester Human Resource Management System. | 6.5 |
| 2022-10-12 | CVE-2022-41403 | SQL Injection vulnerability in Newsletter Subscribe (Popup + Regular Module) Project Newsletter Subscribe (Popup + Regular Module) 4.0 OpenCart 3.x Newsletter Custom Popup was discovered to contain a SQL injection vulnerability via the email parameter at index.php?route=extension/module/so_newletter_custom_popup/newsletter. | 9.8 |
| 2022-10-12 | CVE-2022-41407 | SQL Injection vulnerability in Online PET Shop WE APP Project Online PET Shop WE APP 1.0 Online Pet Shop We App v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/?page=orders/view_order. | 7.2 |
| 2022-10-12 | CVE-2022-41408 | SQL Injection vulnerability in Online PET Shop WE APP Project Online PET Shop WE APP 1.0 Online Pet Shop We App v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/?page=orders/view_order. | 9.8 |
| 2022-10-12 | CVE-2022-41530 | SQL Injection vulnerability in Open Source Sacco Management System Project Open Source Sacco Management System 1.0 Open Source SACCO Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /sacco_shield/ajax.php?action=delete_borrower. | 7.2 |
| 2022-10-12 | CVE-2022-41532 | SQL Injection vulnerability in Open Source Sacco Management System Project Open Source Sacco Management System 1.0 Open Source SACCO Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /sacco_shield/ajax.php?action=delete_plan. | 7.2 |
| 2022-10-11 | CVE-2022-20351 | SQL Injection vulnerability in Google Android In queryInternal of CallLogProvider.java, there is a possible access to voicemail information due to SQL injection. | 5.5 |
| 2022-10-11 | CVE-2022-42230 | SQL Injection vulnerability in Simple Cold Storage Management System Project Simple Cold Storage Managment System 1.0 Simple Cold Storage Management System v1.0 is vulnerable to SQL Injection via /csms/admin/?page=user/manage_user&id=. | 7.2 |