Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

DATE	CVE	VULNERABILITY TITLE	RISK
2024-10-06	CVE-2024-9560	SQL Injection vulnerability in Esafenet CDG 5 A vulnerability was found in ESAFENET CDG V5. network low complexity esafenet CWE-89	8.8
2024-10-05	CVE-2024-47849	SQL Injection vulnerability in Mediawiki Cargo 3.6.0 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in The Wikimedia Foundation Mediawiki - Cargo allows SQL Injection.This issue affects Mediawiki - Cargo: from 3.6.X before 3.6.1. network low complexity mediawiki CWE-89 critical	9.8
2024-10-04	CVE-2024-7801	SQL Injection vulnerability in Microchip Timeprovider 4100 Firmware Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Microchip TimeProvider 4100 (Data plot modules) allows SQL Injection.This issue affects TimeProvider 4100: from 1.0 before 2.4.7. low complexity microchip CWE-89	6.5
2024-10-03	CVE-2024-42417	SQL Injection vulnerability in Deltaww Diaenergie Delta Electronics DIAEnergie is vulnerable to an SQL injection in the script Handler_CFG.ashx. network low complexity deltaww CWE-89	8.8
2024-10-03	CVE-2024-43699	SQL Injection vulnerability in Deltaww Diaenergie Delta Electronics DIAEnergie is vulnerable to an SQL injection in the script AM_RegReport.aspx. network low complexity deltaww CWE-89 critical	9.8
2024-10-03	CVE-2024-9460	SQL Injection vulnerability in Codezips Online Shopping Portal 1.0 A vulnerability was found in Codezips Online Shopping Portal 1.0. network low complexity codezips CWE-89 critical	9.8
2024-10-02	CVE-2024-9429	SQL Injection vulnerability in Code-Projects Restaurant Reservation System 1.0 A vulnerability has been found in code-projects Restaurant Reservation System 1.0 and classified as critical. network low complexity code-projects CWE-89 critical	9.8
2024-10-01	CVE-2024-45999	SQL Injection vulnerability in Magicbug Cloudlog A SQL Injection vulnerability was discovered in Cloudlog 2.6.15, specifically within the get_station_info()function located in the file /application/models/Oqrs_model.php. network low complexity magicbug CWE-89 critical	9.8
2024-10-01	CVE-2024-9018	SQL Injection vulnerability in Plugingarden WP Easy Gallery The WP Easy Gallery – WordPress Gallery Plugin plugin for WordPress is vulnerable to time-based SQL Injection via the ‘key’ parameter in all versions up to, and including, 4.8.5 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. network low complexity plugingarden CWE-89	8.8
2024-10-01	CVE-2024-9360	SQL Injection vulnerability in Code-Projects Restaurant Reservation System 1.0 A vulnerability was found in code-projects Restaurant Reservation System 1.0. network low complexity code-projects CWE-89 critical	9.8