Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-09 | CVE-2024-9874 | The Poll Maker – Versus Polls, Anonymous Polls, Image Polls plugin for WordPress is vulnerable to time-based SQL Injection via the ‘orderby’ parameter in all versions up to, and including, 5.4.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 4.9 |
| 2024-11-08 | CVE-2024-51030 | SQL Injection vulnerability in Oretnom23 CAB Management System 1.0 A SQL injection vulnerability in manage_client.php and view_cab.php of Sourcecodester Cab Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter, leading to unauthorized access and potential compromise of sensitive data within the database. | 6.5 |
| 2024-11-08 | CVE-2024-10998 | SQL Injection vulnerability in Bookstore Management System Project Bookstore Management System 1.0 A vulnerability was found in 1000 Projects Bookstore Management System 1.0. | 9.8 |
| 2024-11-08 | CVE-2024-10995 | SQL Injection vulnerability in Codezips Hospital Appointment System 1.0 A vulnerability was found in Codezips Hospital Appointment System 1.0 and classified as critical. | 9.8 |
| 2024-11-08 | CVE-2024-10996 | SQL Injection vulnerability in Bookstore Management System Project Bookstore Management System 1.0 A vulnerability was found in 1000 Projects Bookstore Management System 1.0. | 9.8 |
| 2024-11-08 | CVE-2024-10997 | SQL Injection vulnerability in Bookstore Management System Project Bookstore Management System 1.0 A vulnerability was found in 1000 Projects Bookstore Management System 1.0. | 9.8 |
| 2024-11-08 | CVE-2024-10987 | SQL Injection vulnerability in Anisha E-Health Care System 1.0 A vulnerability was found in code-projects E-Health Care System 1.0. | 6.5 |
| 2024-11-08 | CVE-2024-10988 | SQL Injection vulnerability in Anisha E-Health Care System 1.0 A vulnerability was found in code-projects E-Health Care System 1.0. | 9.1 |
| 2024-11-08 | CVE-2024-10989 | SQL Injection vulnerability in Anisha E-Health Care System 1.0 A vulnerability classified as critical has been found in code-projects E-Health Care System 1.0. | 6.5 |
| 2024-11-05 | CVE-2024-49772 | SQL Injection vulnerability in Salesagility Suitecrm SuiteCRM is an open-source, enterprise-ready Customer Relationship Management (CRM) software application. | 8.8 |