| 2024-12-21 | CVE-2024-11722 | The Frontend Admin by DynamiApps plugin for WordPress is vulnerable to SQL Injection via the 'orderby' parameter in all versions up to, and including, 3.25.1 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. network high complexity CWE-89 | 5.9 |
| 2024-12-21 | CVE-2024-12635 | SQL Injection vulnerability in Androidbubble WP Docs
The WP Docs plugin for WordPress is vulnerable to time-based SQL Injection via the 'dir_id' parameter in all versions up to, and including, 2.2.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 6.5 |
| 2024-12-20 | CVE-2024-12832 | SQL Injection vulnerability in Arista NG Firewall 17.1.1
Arista NG Firewall ReportEntry SQL Injection Arbitrary File Read and Write Vulnerability. | 6.3 |
| 2024-12-19 | CVE-2024-12791 | SQL Injection vulnerability in Codezips E-Commerce Site 1.0
A vulnerability was found in Codezips E-Commerce Site 1.0. | 9.8 |
| 2024-12-19 | CVE-2024-12792 | SQL Injection vulnerability in Codezips E-Commerce Site 1.0
A vulnerability classified as critical was found in Codezips E-Commerce Site 1.0. | 9.8 |
| 2024-12-19 | CVE-2024-12794 | SQL Injection vulnerability in Codezips E-Commerce Site 1.0
A vulnerability, which was classified as critical, was found in Codezips E-Commerce Site 1.0. | 9.8 |
| 2024-12-19 | CVE-2024-12788 | SQL Injection vulnerability in Codezips Technical Discussion Forum 1.0
A vulnerability was found in Codezips Technical Discussion Forum 1.0 and classified as critical. | 9.8 |
| 2024-12-19 | CVE-2024-12787 | SQL Injection vulnerability in 1000Projects Attendance Tracking Management System 1.0
A vulnerability has been found in 1000 Projects Attendance Tracking Management System 1.0 and classified as critical. | 9.8 |
| 2024-12-19 | CVE-2024-12785 | SQL Injection vulnerability in Angeljudesuarez Vehicle Management System 1.0
A vulnerability was found in itsourcecode Vehicle Management System 1.0. | 8.8 |
| 2024-12-19 | CVE-2024-10244 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ISDO Software Web Software allows SQL Injection.This issue affects Web Software: before 3.6. network low complexity CWE-89 critical | 9.8 |