Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-04 | CVE-2022-29155 | SQL Injection vulnerability in multiple products In OpenLDAP 2.x before 2.5.12 and 2.6.x before 2.6.2, a SQL injection vulnerability exists in the experimental back-sql backend to slapd, via a SQL statement within an LDAP query. | 9.8 |
| 2022-05-04 | CVE-2021-42235 | SQL Injection vulnerability in Enhancesoft Osticket SQL injection in osTicket before 1.14.8 and 1.15.4 login and password reset process allows attackers to access the osTicket administration profile functionality. | 9.8 |
| 2022-05-04 | CVE-2022-28512 | SQL Injection vulnerability in Fantastic Blog Project Fantastic Blog 1.0 A SQL injection vulnerability exists in Sourcecodester Fantastic Blog CMS 1.0 . | 9.8 |
| 2022-05-04 | CVE-2022-28552 | SQL Injection vulnerability in Chshcms Cscms 4.1 Cscms 4.1 is vulnerable to SQL Injection. | 8.8 |
| 2022-05-04 | CVE-2022-28099 | SQL Injection vulnerability in Poultry Farm Management System Project Poultry Farm Management System 1.0 Poultry Farm Management System v1.0 was discovered to contain a SQL injection vulnerability via the Item parameter at /farm/store.php. | 8.8 |
| 2022-05-04 | CVE-2022-28111 | SQL Injection vulnerability in Pagehelper Project Pagehelper MyBatis PageHelper v1.x.x-v3.7.0 v4.0.0-v5.0.0,v5.1.0-v5.3.0 was discovered to contain a time-blind SQL injection vulnerability via the orderBy parameter. | 9.8 |
| 2022-05-04 | CVE-2021-42185 | SQL Injection vulnerability in Wdja 2.1 wdja v2.1 is affected by a SQL injection vulnerability in the foreground search function. | 9.8 |
| 2022-05-04 | CVE-2022-27420 | SQL Injection vulnerability in Hospital Management System Project Hospital Management System 1.0 Hospital Management System v1.0 was discovered to contain a SQL injection vulnerability via the patient_contact parameter in patientsearch.php. | 9.8 |
| 2022-05-04 | CVE-2022-27431 | SQL Injection vulnerability in Wuzhicms Wuzhi CMS 4.1.0 Wuzhicms v4.1.0 was discovered to contain a SQL injection vulnerability via the groupid parameter at /coreframe/app/member/admin/group.php. | 9.8 |
| 2022-05-03 | CVE-2022-27413 | SQL Injection vulnerability in Hospital Management System Project Hospital Management System 1.0 Hospital Management System v1.0 was discovered to contain a SQL injection vulnerability via the adminname parameter in admin.php. | 9.8 |