Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

DATE CVE VULNERABILITY TITLE RISK
2024-10-19 CVE-2019-25218 SQL Injection vulnerability in I13Websolution Photo Gallery Slideshow & Masonry Tiled Gallery
The Photo Gallery Slideshow & Masonry Tiled Gallery plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 1.0.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.
network
low complexity
i13websolution CWE-89
4.9
4.9
2024-10-18 CVE-2024-10129 SQL Injection vulnerability in Shudong-Share Project Shudong-Share
A vulnerability classified as critical has been found in HFO4 shudong-share up to 2.4.7.
network
low complexity
shudong-share-project CWE-89
6.5
6.5
2024-10-18 CVE-2024-47487 SQL Injection vulnerability in Hikvision Hikcentral Professional 2.0.0/2.5.1
There is a SQL injection vulnerability in some HikCentral Professional versions.
network
low complexity
hikvision CWE-89
8.8
8.8
2024-10-17 CVE-2024-10072 SQL Injection vulnerability in Esafenet CDG 5
A vulnerability, which was classified as critical, has been found in ESAFENET CDG 5.
network
low complexity
esafenet CWE-89
8.8
8.8
2024-10-17 CVE-2024-10071 SQL Injection vulnerability in Esafenet CDG 5
A vulnerability classified as critical was found in ESAFENET CDG 5.
network
low complexity
esafenet CWE-89
8.8
8.8
2024-10-17 CVE-2024-10069 SQL Injection vulnerability in Esafenet CDG 5
A vulnerability was found in ESAFENET CDG 5.
network
low complexity
esafenet CWE-89
8.8
8.8
2024-10-17 CVE-2024-10070 SQL Injection vulnerability in Esafenet CDG 5
A vulnerability classified as critical has been found in ESAFENET CDG 5.
network
low complexity
esafenet CWE-89
8.8
8.8
2024-10-16 CVE-2024-38814 SQL Injection vulnerability in VMWare HCX 4.10.0
An authenticated SQL injection vulnerability in VMware HCX was privately reported to VMware.
network
low complexity
vmware CWE-89
8.8
8.8
2024-10-16 CVE-2024-10023 SQL Injection vulnerability in Code-Projects Pharmacy Management System 1.0
A vulnerability classified as critical was found in code-projects Pharmacy Management System 1.0.
network
low complexity
code-projects CWE-89
8.8
8.8
2024-10-16 CVE-2024-10024 SQL Injection vulnerability in Code-Projects Pharmacy Management System 1.0
A vulnerability, which was classified as critical, has been found in code-projects Pharmacy Management System 1.0.
network
low complexity
code-projects CWE-89
8.8
8.8