Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-07-09 | CVE-2024-37225 | SQL Injection vulnerability in Zoho Marketing Automation Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Zoho Marketing Automation.This issue affects Zoho Marketing Automation: from n/a through 1.2.7. | 8.8 |
| 2024-07-09 | CVE-2024-37256 | SQL Injection vulnerability in Themeum Tutor LMS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Themeum Tutor LMS.This issue affects Tutor LMS: from n/a through 2.7.1. | 7.2 |
| 2024-07-09 | CVE-2024-37486 | SQL Injection vulnerability in Strangerstudios Paid Memberships PRO Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Paid Memberships Pro.This issue affects Paid Memberships Pro: from n/a through 3.0.5. | 7.2 |
| 2024-07-09 | CVE-2024-37494 | SQL Injection vulnerability in Kainelabs Youzify Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in KaineLabs Youzify.This issue affects Youzify: from n/a through 1.2.5. | 8.8 |
| 2024-07-09 | CVE-2024-3604 | SQL Injection vulnerability in Hyumika Openstreetmap The OSM – OpenStreetMap plugin for WordPress is vulnerable to SQL Injection via the 'tagged_filter' attribute of the 'osm_map_v3' shortcode in all versions up to, and including, 6.0.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 8.8 |
| 2024-07-09 | CVE-2024-6166 | SQL Injection vulnerability in Unlimited-Elements Unlimited Elements for Elementor (Free Widgets, Addons, Templates) The Unlimited Elements For Elementor (Free Widgets, Addons, Templates) plugin for WordPress is vulnerable to time-based SQL Injection via the ‘addons_order’ parameter in all versions up to, and including, 1.5.112 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 8.8 |
| 2024-07-08 | CVE-2024-39677 | SQL Injection vulnerability in Nhibernate Nhibernate-Core NHibernate is an object-relational mapper for the .NET framework. | 9.8 |
| 2024-07-05 | CVE-2024-39027 | SQL Injection vulnerability in Seacms 12.9 SeaCMS v12.9 has an unauthorized SQL injection vulnerability. | 7.5 |
| 2024-07-03 | CVE-2024-6471 | SQL Injection vulnerability in Mayurik Online Tours & Travels Management System 1.0 A vulnerability classified as critical has been found in SourceCodester Online Tours & Travels Management 1.0. | 8.8 |
| 2024-07-02 | CVE-2024-6453 | SQL Injection vulnerability in Angeljudesuarez Farm Management System 1.0 A vulnerability was found in itsourcecode Farm Management System 1.0. | 8.8 |