Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-07-12 | CVE-2022-2263 | SQL Injection vulnerability in Online Hotel Booking Project Online Hotel Booking 1.0 A vulnerability was found in Online Hotel Booking System 1.0 and classified as critical. | 7.2 |
| 2022-07-08 | CVE-2022-22463 | SQL Injection vulnerability in IBM Security Verify Access IBM Security Access Manager Appliance 10.0.0.0, 10.0.1.0, 10.0.2.0, and 10.0.3.0 is vulnerable to SQL injection. | 6.5 |
| 2022-07-08 | CVE-2022-28623 | SQL Injection vulnerability in HPE Icewall SSO Certd 10.0 Security vulnerabilities in HPE IceWall SSO 10.0 certd could be exploited remotely to allow SQL injection or unauthorized data injection. | 9.8 |
| 2022-07-07 | CVE-2021-35283 | SQL Injection vulnerability in Atoms183 CMS Project Atoms183 CMS 1.0 SQL Injection vulnerability in product_admin.php in atoms183 CMS 1.0, allows attackers to execute arbitrary commands via the Name, Fname, and ID parameters to search.php. | 9.8 |
| 2022-07-07 | CVE-2022-32055 | SQL Injection vulnerability in Nesote Inout Homestay 2.2 Inout Homestay v2.2 was discovered to contain a SQL injection vulnerability via the guests parameter at /index.php?page=search/rentals. | 7.5 |
| 2022-07-07 | CVE-2022-32056 | SQL Injection vulnerability in Online Accreditation Management System Project Online Accreditation Management System 1.0 Online Accreditation Management v1.0 was discovered to contain a SQL injection vulnerability via the USERNAME parameter at process.php. | 9.8 |
| 2022-07-06 | CVE-2022-26348 | SQL Injection vulnerability in Gallagher Command Centre Command Centre Server is vulnerable to SQL Injection via Windows Registry settings for date fields on the server. | 5.5 |
| 2022-07-06 | CVE-2022-30619 | SQL Injection vulnerability in Agilepoint NX 6.0/7.0 Editable SQL Queries behind Base64 encoding sending from the Client-Side to The Server-Side for a particular API used in legacy Work Center module. | 8.8 |
| 2022-07-05 | CVE-2022-31856 | SQL Injection vulnerability in Newsletter Module Project Newsletter Module 3.0.2.0 Newsletter Module v3.x was discovered to contain a SQL injection vulnerability via the zemez_newsletter_email parameter at /index.php. | 9.8 |
| 2022-07-05 | CVE-2022-32311 | SQL Injection vulnerability in Ingredient Stock Management System Project Ingredient Stock Management System 1.0 Ingredient Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /isms/admin/stocks/view_stock.php. | 9.8 |