Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-07-01 | CVE-2021-32428 | SQL Injection vulnerability in Viaviweb Ebook 10 SQL Injection vulnerability in viaviwebtech Android EBook App (Books App, PDF, ePub, Online Book Reading, Download Books) 10 via the author_id parameter to api.php. | 9.8 |
| 2022-06-30 | CVE-2017-20124 | SQL Injection vulnerability in Bestsoftinc Online Hotel Booking System 1.0 A vulnerability classified as critical has been found in Online Hotel Booking System Pro Plugin 1.0. | 8.8 |
| 2022-06-30 | CVE-2017-20125 | SQL Injection vulnerability in Bestsoftinc Online Hotel Booking System 1.2 A vulnerability classified as critical was found in Online Hotel Booking System Pro 1.2. | 9.8 |
| 2022-06-29 | CVE-2022-33057 | SQL Injection vulnerability in Online Railway Reservation System Project Online Railway Reservation System 1.0 Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_reservation. | 7.2 |
| 2022-06-29 | CVE-2022-33058 | SQL Injection vulnerability in Online Railway Reservation System Project Online Railway Reservation System 1.0 Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_message. | 7.2 |
| 2022-06-29 | CVE-2022-33059 | SQL Injection vulnerability in Online Railway Reservation System Project Online Railway Reservation System 1.0 Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_train. | 7.2 |
| 2022-06-29 | CVE-2022-33060 | SQL Injection vulnerability in Online Railway Reservation System Project Online Railway Reservation System 1.0 Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_schedule. | 7.2 |
| 2022-06-29 | CVE-2022-33061 | SQL Injection vulnerability in Online Railway Reservation System Project Online Railway Reservation System 1.0 Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_service. | 7.2 |
| 2022-06-29 | CVE-2022-33042 | SQL Injection vulnerability in Online Railway Reservation System Project Online Railway Reservation System 1.0 Online Railway Reservation System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/inquiries/view_details.php. | 7.2 |
| 2022-06-28 | CVE-2021-41460 | SQL Injection vulnerability in Shopex Ecshop 4.1.0 ECShop 4.1.0 has SQL injection vulnerability, which can be exploited by attackers to obtain sensitive information. | 7.5 |