Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

DATE CVE VULNERABILITY TITLE RISK
2024-11-28 CVE-2024-11962 SQL Injection vulnerability in Fabianros Simple CAR Rental System 1.0
A vulnerability classified as critical was found in code-projects Simple Car Rental System 1.0.
network
low complexity
fabianros CWE-89
critical
 9.8
9.8
2024-11-28 CVE-2024-11963 SQL Injection vulnerability in Fabianros Responsive Hotel Site 1.0
A vulnerability, which was classified as critical, has been found in code-projects Responsive Hotel Site 1.0.
network
low complexity
fabianros CWE-89
8.8
8.8
2024-11-27 CVE-2024-11009 The Internal Linking for SEO traffic & Ranking – Auto internal links (100% automatic) plugin for WordPress is vulnerable to time-based SQL Injection via the ‘post_id’ parameter in all versions up to, and including, 1.2.1 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.
network
low complexity
CWE-89
4.9
4.9
2024-11-27 CVE-2024-11025 An authenticated attacker with low privileges may use a SQL Injection vulnerability in the affected products administration panel to gain read and write access to a specific log file of the device.
network
low complexity
CWE-89
5.4
5.4
2024-11-27 CVE-2024-11818 SQL Injection vulnerability in PHPgurukul User Registration & Login and User Management System 1.0
A vulnerability classified as critical has been found in PHPGurukul User Registration & Login and User Management System 1.0.
network
low complexity
phpgurukul CWE-89
critical
 9.8
9.8
2024-11-27 CVE-2024-11819 SQL Injection vulnerability in 1000Projects Portfolio Management System MCA 1.0
A vulnerability classified as critical was found in 1000 Projects Portfolio Management System MCA 1.0.
network
low complexity
1000projects CWE-89
critical
 9.8
9.8
2024-11-26 CVE-2024-11817 SQL Injection vulnerability in PHPgurukul User Registration & Login and User Management System 1.0
A vulnerability was found in PHPGurukul User Registration & Login and User Management System 1.0.
network
low complexity
phpgurukul CWE-89
critical
 9.8
9.8
2024-11-26 CVE-2024-11744 SQL Injection vulnerability in 1000Projects Portfolio Management System MCA 1.0
A vulnerability has been found in 1000 Projects Portfolio Management System MCA 1.0 and classified as critical.
network
low complexity
1000projects CWE-89
critical
 9.8
9.8
2024-11-25 CVE-2024-11663 SQL Injection vulnerability in Codezips E-Commerce Site 1.0
A vulnerability classified as critical was found in Codezips E-Commerce Site 1.0.
network
low complexity
codezips CWE-89
critical
 9.8
9.8
2024-11-25 CVE-2024-11649 SQL Injection vulnerability in 1000Projects Beauty Parlour Management System 1.0
A vulnerability has been found in 1000 Projects Beauty Parlour Management System 1.0 and classified as critical.
network
low complexity
1000projects CWE-89
critical
 9.8
9.8