Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

DATE CVE VULNERABILITY TITLE RISK
2025-04-30 CVE-2025-2890 The tagDiv Opt-In Builder plugin for WordPress is vulnerable to time-based SQL Injection via the ‘subscriptionCouponId’ parameter in all versions up to, and including, 1.7 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.
network
low complexity
CWE-89
6.5
6.5
2025-04-29 CVE-2025-4072 SQL Injection vulnerability in PHPgurukul Online Nurse Hiring System 1.0
A vulnerability was found in PHPGurukul Online Nurse Hiring System 1.0 and classified as critical.
network
low complexity
phpgurukul CWE-89
8.8
8.8
2025-04-29 CVE-2025-4073 SQL Injection vulnerability in PHPgurukul Student Record System 3.20
A vulnerability was found in PHPGurukul Student Record System 3.20.
network
low complexity
phpgurukul CWE-89
critical
 9.8
9.8
2025-04-29 CVE-2025-4070 SQL Injection vulnerability in PHPgurukul Rail Pass Management System 1.0
A vulnerability, which was classified as critical, was found in PHPGurukul Rail Pass Management System 1.0.
network
low complexity
phpgurukul CWE-89
critical
 9.8
9.8
2025-04-29 CVE-2025-4071 SQL Injection vulnerability in PHPgurukul Covid19 Testing Management System 1.0
A vulnerability has been found in PHPGurukul COVID19 Testing Management System 1.0 and classified as critical.
network
low complexity
phpgurukul CWE-89
critical
 9.8
9.8
2025-04-28 CVE-2025-4039 SQL Injection vulnerability in PHPgurukul Rail Pass Management System 1.0
A vulnerability was found in PHPGurukul Rail Pass Management System 1.0.
network
low complexity
phpgurukul CWE-89
critical
 9.8
9.8
2025-04-28 CVE-2025-4026 SQL Injection vulnerability in PHPgurukul Nipah Virus Testing Management System 1.0
A vulnerability, which was classified as critical, has been found in PHPGurukul Nipah Virus Testing Management System 1.0.
network
low complexity
phpgurukul CWE-89
critical
 9.8
9.8
2025-04-28 CVE-2025-4027 SQL Injection vulnerability in PHPgurukul OLD AGE Home Management System 1.0
A vulnerability, which was classified as critical, was found in PHPGurukul Old Age Home Management System 1.0.
network
low complexity
phpgurukul CWE-89
critical
 9.8
9.8
2025-04-28 CVE-2025-4020 SQL Injection vulnerability in PHPgurukul OLD AGE Home Management System 1.0
A vulnerability was found in PHPGurukul Old Age Home Management System 1.0 and classified as critical.
network
low complexity
phpgurukul CWE-89
critical
 9.8
9.8
2025-04-27 CVE-2025-3968 SQL Injection vulnerability in Code-Projects News Publishing Site Dashboard 1.0
A vulnerability was found in codeprojects News Publishing Site Dashboard 1.0.
network
low complexity
code-projects CWE-89
8.8
8.8