Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

DATE CVE VULNERABILITY TITLE RISK
2024-08-23 CVE-2024-5556 SQL Injection vulnerability in Zohocorp Manageengine Adaudit Plus
Zohocorp ManageEngine ADAudit Plus versions below 8000 are vulnerable to the authenticated SQL injection in reports module.
network
low complexity
zohocorp CWE-89
8.8
2024-08-23 CVE-2024-5586 SQL Injection vulnerability in Zohocorp Manageengine Adaudit Plus
Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to the authenticated SQL injection in extranet lockouts report option.
network
low complexity
zohocorp CWE-89
8.8
2024-08-22 CVE-2024-8086 SQL Injection vulnerability in Janobe E-Commerce System 1.0
A vulnerability has been found in SourceCodester E-Commerce System 1.0 and classified as critical.
network
low complexity
janobe CWE-89
critical
9.8
2024-08-22 CVE-2024-8087 SQL Injection vulnerability in Janobe E-Commerce System 1.0
A vulnerability was found in SourceCodester E-Commerce System 1.0 and classified as critical.
network
low complexity
janobe CWE-89
critical
9.8
2024-08-22 CVE-2024-8081 SQL Injection vulnerability in Kevinwong Payroll Management System 1.0
A vulnerability classified as critical was found in itsourcecode Payroll Management System 1.0.
network
low complexity
kevinwong CWE-89
critical
9.8
2024-08-22 CVE-2024-8083 SQL Injection vulnerability in Oretnom23 Online Computer and Laptop Store 1.0
A vulnerability, which was classified as critical, has been found in SourceCodester Online Computer and Laptop Store 1.0.
network
low complexity
oretnom23 CWE-89
8.8
2024-08-22 CVE-2024-8080 SQL Injection vulnerability in Online Health Care System Project Online Health Care System 1.0
A vulnerability classified as critical has been found in SourceCodester Online Health Care System 1.0.
network
low complexity
online-health-care-system-project CWE-89
critical
9.8
2024-08-21 CVE-2024-42781 SQL Injection vulnerability in Lopalopa Music Management System 1.0
A SQL injection vulnerability in "/music/ajax.php?action=login" of Kashipara Music Management System v1.0 allows remote attackers to execute arbitrary SQL commands and bypass Login via the email parameter.
network
low complexity
lopalopa CWE-89
critical
9.8
2024-08-21 CVE-2024-42782 SQL Injection vulnerability in Lopalopa Music Management System 1.0
A SQL injection vulnerability in "/music/ajax.php?action=find_music" in Kashipara Music Management System v1.0 allows an attacker to execute arbitrary SQL commands via the "search" parameter.
network
low complexity
lopalopa CWE-89
critical
9.8
2024-08-21 CVE-2024-42783 SQL Injection vulnerability in Lopalopa Music Management System 1.0
Kashipara Music Management System v1.0 is vulnerable to SQL Injection via /music/manage_playlist_items.php.
network
low complexity
lopalopa CWE-89
critical
9.8