Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-05-03 | CVE-2022-27413 | SQL Injection vulnerability in Hospital Management System Project Hospital Management System 1.0 Hospital Management System v1.0 was discovered to contain a SQL injection vulnerability via the adminname parameter in admin.php. | 9.8 |
| 2022-05-03 | CVE-2022-28585 | SQL Injection vulnerability in Phome Empirecms 7.5 EmpireCMS 7.5 has a SQL injection vulnerability in AdClass.php | 9.8 |
| 2022-05-03 | CVE-2022-27962 | SQL Injection vulnerability in Bluecms Project Bluecms 1.6 Bluecms 1.6 has a SQL injection vulnerability at cooike. | 9.8 |
| 2022-05-03 | CVE-2022-28505 | SQL Injection vulnerability in Jflyfox Jfinal CMS 5.1.0 Jfinal_cms 5.1.0 is vulnerable to SQL Injection via com.jflyfox.system.log.LogController.java. | 7.2 |
| 2022-05-02 | CVE-2022-1372 | SQL Injection vulnerability in Deltaww Diaenergie 1.08.00/1.7.5/1.8.0 Delta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection vulnerability exists in dlSlog.aspx. | 9.8 |
| 2022-05-02 | CVE-2022-0773 | SQL Injection vulnerability in Documentor Project Documentor 1.5.3 The Documentor WordPress plugin through 1.5.3 fails to sanitize and escape user input before it is being interpolated in an SQL statement and then executed, leading to an SQL Injection exploitable by unauthenticated users. | 9.8 |
| 2022-05-02 | CVE-2022-27466 | SQL Injection vulnerability in Mingsoft Mcms 5.2.27 MCMS v5.2.27 was discovered to contain a SQL injection vulnerability in the orderBy parameter at /dict/list.do. | 9.8 |
| 2022-04-29 | CVE-2022-28452 | SQL Injection vulnerability in Redplanetcomputers Laundry Management System 1.0 Red Planet Laundry Management System 1.0 is vulnerable to SQL Injection. | 9.8 |
| 2022-04-29 | CVE-2021-41942 | SQL Injection vulnerability in Msvod CMS 10 The Magic CMS MSVOD v10 video system has a SQL injection vulnerability. | 7.5 |
| 2022-04-29 | CVE-2022-1531 | SQL Injection vulnerability in RTX Project RTX SQL injection vulnerability in ARAX-UI Synonym Lookup functionality in GitHub repository rtxteam/rtx prior to checkpoint_2022-04-20 . | 9.8 |