Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-01-30 | CVE-2025-0846 | SQL Injection vulnerability in 1000Projects Employee Task Management System 1.0 A vulnerability was found in 1000 Projects Employee Task Management System 1.0. | 9.8 |
| 2025-01-29 | CVE-2025-0843 | SQL Injection vulnerability in Needyamin Library Card System 1.0 A vulnerability was found in needyamin Library Card System 1.0. | 9.8 |
| 2025-01-29 | CVE-2025-0842 | SQL Injection vulnerability in Needyamin Library Card System 1.0 A vulnerability was found in needyamin Library Card System 1.0 and classified as critical. | 9.8 |
| 2025-01-29 | CVE-2025-0803 | SQL Injection vulnerability in Gymmanagementsystem GYM Management System 1.0 A vulnerability, which was classified as critical, has been found in Codezips Gym Management System 1.0. | 9.8 |
| 2025-01-28 | CVE-2024-11135 | SQL Injection vulnerability in Imithemes Eventer The Eventer plugin for WordPress is vulnerable to SQL Injection via the 'event' parameter in the 'eventer_get_attendees' function in all versions up to, and including, 3.9.8 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 7.5 |
| 2025-01-28 | CVE-2023-50316 | SQL Injection vulnerability in IBM Sterling B2B Integrator IBM Sterling B2B Integrator 6.0.0.0 through 6.1.2.5 and 6.2.0.0 through 6.2.0.1 is vulnerable to SQL injection. | 9.8 |
| 2025-01-27 | CVE-2024-54145 | SQL Injection vulnerability in Cacti Cacti is an open source performance and fault management framework. | 8.8 |
| 2025-01-27 | CVE-2024-54146 | SQL Injection vulnerability in Cacti Cacti is an open source performance and fault management framework. | 8.8 |
| 2025-01-25 | CVE-2024-35148 | IBM Maximo Application Suite 8.10.10, 8.11.7, and 9.0 - Monitor Component is vulnerable to SQL injection. | 6.3 |
| 2025-01-24 | CVE-2024-13594 | SQL Injection vulnerability in Neofix Simple Downloads List The Simple Downloads List plugin for WordPress is vulnerable to SQL Injection via the 'category' attribute of the 'neofix_sdl' shortcode in all versions up to, and including, 1.4.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 6.5 |