Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-20 | CVE-2022-26632 | SQL Injection vulnerability in Multi-Vendor Online Groceries Management System Project Multi-Vendor Online Groceries Management System 1.0 Multi-Vendor Online Groceries Management System v1.0 was discovered to contain a blind SQL injection vulnerability via the id parameter in /products/view_product.php. | 9.8 |
| 2022-05-20 | CVE-2022-26633 | SQL Injection vulnerability in Simple Student Quarterly Result/Grade System Project Simple Student Quarterly Result/Grade System 1.0 Simple Student Quarterly Result/Grade System v1.0 was discovered to contain a SQL injection vulnerability via /sqgs/Actions.php. | 9.8 |
| 2022-05-20 | CVE-2022-28105 | SQL Injection vulnerability in Online Sports Complex Booking System Project Online Sports Complex Booking System 1.0 Online Sports Complex Booking System v1.0 was discovered to contain a blind SQL injection vulnerability via the id parameter in /scbs/view_facility.php. | 9.8 |
| 2022-05-20 | CVE-2022-30518 | SQL Injection vulnerability in Chatbot Application With a Suggestion Feature Project Chatbot Application With a Suggestion Feature 1.0 ChatBot Application with a Suggestion Feature 1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /simple_chat_bot/admin/responses/view_response.php. | 9.8 |
| 2022-05-20 | CVE-2022-30886 | SQL Injection vulnerability in School Dormitory Management System Project School Dormitory Management System 1.0 School Dormitory Management System v1.0 was discovered to contain a SQL injection vulnerability via the month parameter at /dms/admin/reports/daily_collection_report.php. | 9.8 |
| 2022-05-19 | CVE-2022-28961 | SQL Injection vulnerability in Spip Spip Web Framework v3.1.13 and below was discovered to contain multiple SQL injection vulnerabilities at /ecrire via the lier_trad and where parameters. | 8.8 |
| 2022-05-19 | CVE-2022-28962 | SQL Injection vulnerability in Online Sports Complex Booking System Project Online Sports Complex Booking System 1.0 Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/classes/Users.php?f=delete_client. | 9.8 |
| 2022-05-19 | CVE-2022-29304 | SQL Injection vulnerability in Online Sports Complex Booking System Project Online Sports Complex Booking System 1.0 Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /classes/master.php?f=delete_ Facility. | 8.8 |
| 2022-05-19 | CVE-2022-29652 | SQL Injection vulnerability in Online Sports Complex Booking System Project Online Sports Complex Booking System 1.0 Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/classes/Users.php?f=save_client. | 6.1 |
| 2022-05-19 | CVE-2021-37413 | SQL Injection vulnerability in Grandcom Dynweb GRANDCOM DynWEB before 4.2 contains a SQL Injection vulnerability in the admin login interface. | 9.8 |