Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

DATE	CVE	VULNERABILITY TITLE	RISK
2018-06-12	CVE-2017-18289	SQL Injection vulnerability in Pvpgn Stats 2.4.6 An issue was discovered in PvPGN Stats 2.4.6. network low complexity pvpgn CWE-89 critical	9.8
2018-06-12	CVE-2017-18288	SQL Injection vulnerability in Pvpgn Stats 2.4.6 An issue was discovered in PvPGN Stats 2.4.6. network low complexity pvpgn CWE-89 critical	9.8
2018-06-12	CVE-2017-18287	SQL Injection vulnerability in Pvpgn Stats 2.4.6 An issue was discovered in PvPGN Stats 2.4.6. network low complexity pvpgn CWE-89 critical	9.8
2018-06-12	CVE-2018-12254	SQL Injection vulnerability in Harmistechnology EK Rishta 2.10 router.php in the Harmis Ek rishta (aka ek-rishta) 2.10 component for Joomla! allows SQL Injection via the PATH_INFO to a home/requested_user/Sent%20interest/ URI. network low complexity harmistechnology CWE-89	8.8
2018-06-11	CVE-2018-12110	SQL Injection vulnerability in Portfoliocms Project Portfoliocms 1.0.5 portfolioCMS 1.0.5 has SQL Injection via the admin/portfolio.php preview parameter. network low complexity portfoliocms-project CWE-89	7.2
2018-06-08	CVE-2018-0225	SQL Injection vulnerability in Cisco Appdynamics APP IQ The Enterprise Console in Cisco AppDynamics App iQ Platform before 4.4.3.10598 (HF4) allows SQL injection, aka the Security Advisory 2089 issue. network low complexity cisco CWE-89 critical	9.8
2018-06-08	CVE-2018-12055	SQL Injection vulnerability in Schools Alert Management Script Project Schools Alert Management Script Multiple SQL Injections exist in PHP Scripts Mall Schools Alert Management Script via crafted POST data in contact_us.php, faq.php, about.php, photo_gallery.php, privacy.php, and so on. network low complexity schools-alert-management-script-project CWE-89 critical	9.8
2018-06-08	CVE-2018-12052	SQL Injection vulnerability in Schools Alert Management Script Project Schools Alert Management Script SQL Injection exists in PHP Scripts Mall Schools Alert Management Script via the q Parameter in get_sec.php. network low complexity schools-alert-management-script-project CWE-89 critical	9.8
2018-06-07	CVE-2011-0467	SQL Injection vulnerability in Suse Studio Onsite and Studio Onsite Appliance A vulnerability in the listing of available software of SUSE Studio Onsite, SUSE Studio Onsite 1.1 Appliance allows authenticated users to execute arbitrary SQL statements via SQL injection. network low complexity suse CWE-89	8.8
2018-06-07	CVE-2018-12039	SQL Injection vulnerability in Joyplus-Cms Project Joyplus-Cms 1.6.0 joyplus-cms 1.6.0 allows Remote Code Execution because of an Arbitrary SQL command execution issue in manager/index.php involving use of a "/!select/" substring in place of a select substring. network low complexity joyplus-cms-project CWE-89 critical	9.8