VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
> Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2024-12-09
CVE-2024-12360
SQL Injection vulnerability in Online Class and Exam Scheduling System Project Online Class and Exam Scheduling System 1.0
A vulnerability was found in code-projects Online Class and Exam Scheduling System 1.0.
network
low complexity
online-class-and-exam-scheduling-system-project
CWE-89
8.8
8.8
2024-12-09
CVE-2024-12351
SQL Injection vulnerability in Jwillber Jfinalcms 1.0
A vulnerability classified as critical has been found in JFinalCMS 1.0.
network
low complexity
jwillber
CWE-89
8.8
8.8
2024-12-07
CVE-2024-8679
The Library Management System – Manage e-Digital Books Library plugin for WordPress is vulnerable to SQL Injection via the ‘value' parameter of the owt_lib_handler AJAX action in all versions up to, and including, 3.0.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.
network
low complexity
CWE-89
6.8
6.8
2024-12-06
CVE-2024-11729
The KiviCare – Clinic & Patient Management System (EHR) plugin for WordPress is vulnerable to SQL Injection via the 'service_list[0][service_id]' parameter of the get_widget_payment_options AJAX action in all versions up to, and including, 3.6.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.
network
low complexity
CWE-89
6.5
6.5
2024-12-06
CVE-2024-11730
The KiviCare – Clinic & Patient Management System (EHR) plugin for WordPress is vulnerable to SQL Injection via the 'sort[]' parameter of the static_data_list AJAX action in all versions up to, and including, 3.6.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.
network
low complexity
CWE-89
6.5
6.5
2024-12-05
CVE-2024-12234
SQL Injection vulnerability in 1000Projects Beauty Parlour Management System 1.0
A vulnerability was found in 1000 Projects Beauty Parlour Management System 1.0.
network
low complexity
1000projects
CWE-89
critical
9.8
9.8
2024-12-05
CVE-2024-12229
SQL Injection vulnerability in PHPgurukul Complaint Management System 1.0
A vulnerability classified as critical was found in PHPGurukul Complaint Management System 1.0.
network
low complexity
phpgurukul
CWE-89
critical
9.8
9.8
2024-12-05
CVE-2024-12230
SQL Injection vulnerability in PHPgurukul Complaint Management System 1.0
A vulnerability, which was classified as critical, has been found in PHPGurukul Complaint Management System 1.0.
network
low complexity
phpgurukul
CWE-89
critical
9.8
9.8
2024-12-05
CVE-2024-12228
SQL Injection vulnerability in PHPgurukul Complaint Management System 1.0
A vulnerability classified as critical has been found in PHPGurukul Complaint Management System 1.0.
network
low complexity
phpgurukul
CWE-89
critical
9.8
9.8
2024-12-05
CVE-2024-12187
SQL Injection vulnerability in 1000Projects Library Management System 1.0
A vulnerability was found in 1000 Projects Library Management System 1.0.
network
low complexity
1000projects
CWE-89
critical
9.8
9.8
«
Previous
1
2
3
(current)
4
5
...
610
611
»
Next