Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-30 | CVE-2024-8327 | SQL Injection vulnerability in Easy Test Online Learning and Testing Platform Project Easy Test Online Learning and Testing Platform Easy test Online Learning and Testing Platform from HWA JIUH DIGITAL TECHNOLOGY does not properly validate a specific page parameter, allowing remote attackers with regular privilege to inject arbitrary SQL commands to read, modify, and delete database contents. | 8.8 |
| 2024-08-30 | CVE-2024-8329 | SQL Injection vulnerability in 6Shr System Project 6Shr System 6SHR system from Gether Technology does not properly validate the specific page parameter, allowing remote attackers with regular privilege to inject SQL command to read, modify, and delete database contents. | 8.8 |
| 2024-08-29 | CVE-2024-6670 | SQL Injection vulnerability in Progress Whatsup Gold In WhatsUp Gold versions released before 2024.0.0, a SQL Injection vulnerability allows an unauthenticated attacker to retrieve the users encrypted password. | 9.8 |
| 2024-08-29 | CVE-2024-6671 | SQL Injection vulnerability in Progress Whatsup Gold In WhatsUp Gold versions released before 2024.0.0, if the application is configured with only a single user, a SQL Injection vulnerability allows an unauthenticated attacker to retrieve the users encrypted password. | 9.8 |
| 2024-08-29 | CVE-2024-6672 | SQL Injection vulnerability in Progress Whatsup Gold In WhatsUp Gold versions released before 2024.0.0, a SQL Injection vulnerability allows an authenticated low-privileged attacker to achieve privilege escalation by modifying a privileged user's password. | 8.8 |
| 2024-08-29 | CVE-2024-41370 | SQL Injection vulnerability in Organizr 1.90 Organizr v1.90 was discovered to contain a SQL injection vulnerability via chat/setlike.php. | 9.8 |
| 2024-08-29 | CVE-2024-41372 | SQL Injection vulnerability in Organizr 1.90 Organizr v1.90 was discovered to contain a SQL injection vulnerability via chat/settyping.php. | 9.8 |
| 2024-08-29 | CVE-2024-43943 | SQL Injection vulnerability in Wpsoul Greenshift Woocommerce Addon Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Wpsoul Greenshift Woocommerce Addon allows SQL Injection.This issue affects Greenshift Woocommerce Addon: from n/a before 1.9.8. | 8.8 |
| 2024-08-29 | CVE-2024-43965 | SQL Injection vulnerability in Smackcoders Sendgrid Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Smackcoders SendGrid for WordPress allows SQL Injection.This issue affects SendGrid for WordPress: from n/a through 1.4. | 9.8 |
| 2024-08-29 | CVE-2024-38793 | SQL Injection vulnerability in Pricelisto Great Restaurant Menu WP Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in PriceListo Best Restaurant Menu by PriceListo allows SQL Injection.This issue affects Best Restaurant Menu by PriceListo: from n/a through 1.4.1. | 8.8 |