Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-04-21 | CVE-2022-28015 | SQL Injection vulnerability in Attendance and Payroll System Project Attendance and Payroll System 1.0 Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component \admin\cashadvance_edit.php. | 8.8 |
| 2022-04-21 | CVE-2022-28016 | SQL Injection vulnerability in Attendance and Payroll System Project Attendance and Payroll System 1.0 Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component \admin\deduction_edit.php. | 8.8 |
| 2022-04-21 | CVE-2022-28017 | SQL Injection vulnerability in Attendance and Payroll System Project Attendance and Payroll System 1.0 Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component \admin\overtime_edit.php. | 8.8 |
| 2022-04-21 | CVE-2022-28018 | SQL Injection vulnerability in Attendance and Payroll System Project Attendance and Payroll System 1.0 Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component \admin\schedule_edit.php. | 8.8 |
| 2022-04-21 | CVE-2022-28019 | SQL Injection vulnerability in Attendance and Payroll System Project Attendance and Payroll System 1.0 Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component \admin\employee_edit.php. | 8.8 |
| 2022-04-21 | CVE-2022-28020 | SQL Injection vulnerability in Attendance and Payroll System Project Attendance and Payroll System 1.0 Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component \admin\position_edit.php. | 8.8 |
| 2022-04-21 | CVE-2022-28022 | SQL Injection vulnerability in Purchase Order Management System Project Purchase Order Management System 1.0 Purchase Order Management System v1.0 was discovered to contain a SQL injection vulnerability via /purchase_order/classes/Master.php?f=delete_item. | 9.8 |
| 2022-04-21 | CVE-2022-28023 | SQL Injection vulnerability in Purchase Order Management System Project Purchase Order Management System 1.0 Purchase Order Management System v1.0 was discovered to contain a SQL injection vulnerability via /purchase_order/classes/Master.php?f=delete_supplier. | 9.8 |
| 2022-04-21 | CVE-2022-28024 | SQL Injection vulnerability in Student Grading System Project Student Grading System 1.0 Student Grading System v1.0 was discovered to contain a SQL injection vulnerability via /student-grading-system/rms.php?page=grade. | 9.8 |
| 2022-04-21 | CVE-2022-28025 | SQL Injection vulnerability in Student Grading System Project Student Grading System 1.0 Student Grading System v1.0 was discovered to contain a SQL injection vulnerability via /student-grading-system/rms.php?page=school_year. | 9.8 |