Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

DATE	CVE	VULNERABILITY TITLE	RISK
2022-08-02	CVE-2022-34954	SQL Injection vulnerability in PHPtpoint Pharmacy Management System 1.0 Pharmacy Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at invoiceprint.php. network low complexity phptpoint CWE-89 critical	9.8
2022-08-02	CVE-2022-34955	SQL Injection vulnerability in Pligg CMS 2.0.2 Pligg CMS v2.0.2 was discovered to contain a time-based SQL injection vulnerability via the page_size parameter at load_data_for_topusers.php. network low complexity pligg CWE-89 critical	9.8
2022-08-02	CVE-2022-34956	SQL Injection vulnerability in Pligg CMS 2.0.2 Pligg CMS v2.0.2 was discovered to contain a time-based SQL injection vulnerability via the page_size parameter at load_data_for_groups.php. network low complexity pligg CWE-89 critical	9.8
2022-08-02	CVE-2022-35421	SQL Injection vulnerability in Online Tours and Travels Management System Project Online Tours and Travels Management System 1.0 Online Tours And Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the pname parameter at /admin/operations/packages.php. network low complexity online-tours-and-travels-management-system-project CWE-89	7.2
2022-08-02	CVE-2022-35422	SQL Injection vulnerability in web Based Quiz System Project web Based Quiz System 1.0 Web Based Quiz System v1.0 was discovered to contain a SQL injection vulnerability via the qid parameter at update.php. network low complexity web-based-quiz-system-project CWE-89 critical	9.8
2022-08-01	CVE-2022-31181	SQL Injection vulnerability in Prestashop PrestaShop is an Open Source e-commerce platform. network low complexity prestashop CWE-89 critical	9.8
2022-07-29	CVE-2022-22280	SQL Injection vulnerability in Sonicwall Analytics and Global Management System Improper Neutralization of Special Elements used in an SQL Command leading to Unauthenticated SQL Injection vulnerability, impacting SonicWall GMS 9.3.1-SP2-Hotfix1, Analytics On-Prem 2.5.0.3-2520 and earlier versions. network low complexity sonicwall CWE-89 critical	9.8
2022-07-28	CVE-2022-34557	SQL Injection vulnerability in Barangay Management System Project Barangay Management System 1.0 Barangay Management System v1.0 was discovered to contain a SQL injection vulnerability via the hidden_id parameter at /pages/permit/permit.php. network low complexity barangay-management-system-project CWE-89	8.8
2022-07-26	CVE-2022-31879	SQL Injection vulnerability in Online Fire Reporting System Project Online Fire Reporting System 1.0 Online Fire Reporting System 1.0 is vulnerable to SQL Injection via the date parameter. network low complexity online-fire-reporting-system-project CWE-89	8.8
2022-07-26	CVE-2022-34067	SQL Injection vulnerability in Oretnom23 Warehouse Management System 1.0 Warehouse Management System v1.0 was discovered to contain a SQL injection vulnerability via the cari parameter. network low complexity oretnom23 CWE-89	7.5