Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

DATE CVE VULNERABILITY TITLE RISK
2016-10-28 CVE-2016-7919 SQL Injection vulnerability in Moodle 3.1.2
Moodle 3.1.2 allows remote attackers to obtain sensitive information via unspecified vectors, related to a "SQL Injection" issue affecting the Administration panel function in the installation process component.
network
low complexity
moodle CWE-89
7.5
7.5
2016-10-27 CVE-2016-6443 SQL Injection vulnerability in Cisco products
A vulnerability in the Cisco Prime Infrastructure and Evolved Programmable Network Manager SQL database interface could allow an authenticated, remote attacker to impact system confidentiality by executing a subset of arbitrary SQL queries that can cause product instability.
network
low complexity
cisco CWE-89
8.8
8.8
2016-10-27 CVE-2016-1000122 SQL Injection vulnerability in Huge-It Slider 1.0.9
XSS and SQLi in Huge IT Joomla Slider v1.0.9 extension
network
low complexity
huge-it CWE-89
7.2
7.2
2016-10-27 CVE-2016-1000120 SQL Injection vulnerability in Huge-It Catalog 1.0.4
SQLi and XSS in Huge IT catalog extension v1.0.4 for Joomla
network
low complexity
huge-it CWE-89
7.2
7.2
2016-10-21 CVE-2016-1000119 SQL Injection vulnerability in Huge-It Catalog 1.0.4
SQLi and XSS in Huge IT catalog extension v1.0.4 for Joomla
network
low complexity
huge-it CWE-89
7.2
7.2
2016-10-21 CVE-2016-1000118 SQL Injection vulnerability in Huge-It Slideshow 1.0.4
XSS & SQLi in HugeIT slideshow v1.0.4
network
low complexity
huge-it CWE-89
7.2
7.2
2016-10-21 CVE-2016-1000117 SQL Injection vulnerability in Huge-It Slideshow 1.0.4
XSS & SQLi in HugeIT slideshow v1.0.4
network
low complexity
huge-it CWE-89
7.2
7.2
2016-10-21 CVE-2016-1000116 SQL Injection vulnerability in Huge-It Portfolio Gallery Manager 1.1.5
Huge-IT Portfolio Gallery manager v1.1.0 SQL Injection and XSS
network
low complexity
huge-it CWE-89
7.2
7.2
2016-10-21 CVE-2016-1000115 SQL Injection vulnerability in Huge-It Portfolio Gallery Manager 1.1.0
Huge-IT Portfolio Gallery manager v1.1.0 SQL Injection and XSS
network
low complexity
huge-it CWE-89
7.2
7.2
2016-10-16 CVE-2016-0249 SQL Injection vulnerability in IBM Security Guardium
SQL injection vulnerability in IBM Security Guardium Database Activity Monitor 8.2 before p310, 9.x through 9.5 before p700, and 10.x through 10.1 before p100 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
network
low complexity
ibm CWE-89
8.6
8.6