Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-02 | CVE-2019-12350 | SQL Injection vulnerability in Zzcms 2019 An issue was discovered in zzcms 2019. | 9.8 |
| 2022-06-02 | CVE-2019-12351 | SQL Injection vulnerability in Zzcms 2019 An issue was discovered in zzcms 2019. | 9.8 |
| 2022-06-02 | CVE-2021-26633 | SQL Injection vulnerability in Maxb Maxboard SQL injection and Local File Inclusion (LFI) vulnerabilities in MaxBoard can cause information leakage and privilege escalation. | 9.8 |
| 2022-06-02 | CVE-2021-44095 | SQL Injection vulnerability in Hospital Management System Project Hospital Management System 1.0 A SQL injection vulnerability exists in ProjectWorlds Hospital Management System in php 1.0 on login page that allows a remote attacker to compromise Application SQL database. | 9.8 |
| 2022-06-02 | CVE-2021-44096 | SQL Injection vulnerability in Egavilanmedia User Registration and Login System With Admin Panel 1.0 EGavilan Media User-Registration-and-Login-System-With-Admin-Panel 1.0 is vulnerable to SQL Injection via profile_action - update_user. | 9.8 |
| 2022-06-02 | CVE-2021-44097 | SQL Injection vulnerability in Contact-Form-With-Messages-Entry-Management Project Contact-Form-With-Messages-Entry-Management 1.0 EGavilan Media Contact-Form-With-Messages-Entry-Management 1.0 is vulnerable to SQL Injection via Addmessage.php. | 9.8 |
| 2022-06-02 | CVE-2021-44098 | SQL Injection vulnerability in Egavilanmedia Expense Management System 1.0 EGavilan Media Expense-Management-System 1.0 is vulnerable to SQL Injection via /expense_action.php. | 9.8 |
| 2022-06-02 | CVE-2022-24240 | SQL Injection vulnerability in Aceware Aceweb Online Portal 3.5.065 ACEweb Online Portal 3.5.065 was discovered to contain a SQL injection vulnerability via the criteria parameter in showschedule.awp. | 9.8 |
| 2022-06-02 | CVE-2022-29659 | SQL Injection vulnerability in Responsive Online Blog Project Responsive Online Blog 1.0 Responsive Online Blog v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at single.php. | 9.8 |
| 2022-06-02 | CVE-2022-30352 | SQL Injection vulnerability in PHPabook Project PHPabook 0.9I phpABook 0.9i is vulnerable to SQL Injection due to insufficient sanitization of user-supplied data in the "auth_user" parameter in index.php script. | 9.8 |