Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-11 | CVE-2024-25722 | SQL Injection vulnerability in Qanything qanything_kernel/connector/database/mysql/mysql_client.py in qanything.ai QAnything before 1.2.0 allows SQL Injection. | 9.8 |
| 2024-02-10 | CVE-2024-0594 | SQL Injection vulnerability in Getawesomesupport Awesome Support The Awesome Support – WordPress HelpDesk & Support Plugin plugin for WordPress is vulnerable to union-based SQL Injection via the 'q' parameter of the wpas_get_users action in all versions up to, and including, 6.1.7 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 8.8 |
| 2024-02-09 | CVE-2024-25302 | SQL Injection vulnerability in Remyandrade Event Student Attendance System 1.0 Sourcecodester Event Student Attendance System 1.0, allows SQL Injection via the 'student' parameter. | 9.8 |
| 2024-02-09 | CVE-2024-25307 | SQL Injection vulnerability in Code-Projects Cinema Seat Reservation System 1.0 Code-projects Cinema Seat Reservation System 1.0 allows SQL Injection via the 'id' parameter at "/Cinema-Reservation/booking.php?id=1." | 9.8 |
| 2024-02-09 | CVE-2024-25310 | SQL Injection vulnerability in Code-Projects Simple School Management System 1.0 Code-projects Simple School Managment System 1.0 allows SQL Injection via the 'id' parameter at "School/delete.php?id=5." | 8.8 |
| 2024-02-09 | CVE-2024-25314 | SQL Injection vulnerability in Hotel Management System Project Hotel Management System 1.0 Code-projects Hotel Managment System 1.0, allows SQL Injection via the 'sid' parameter in Hotel/admin/show.php?sid=2. | 9.8 |
| 2024-02-09 | CVE-2024-25315 | SQL Injection vulnerability in Hotel Management System Project Hotel Management System 1.0 Code-projects Hotel Managment System 1.0, allows SQL Injection via the 'rid' parameter in Hotel/admin/roombook.php?rid=2. | 9.8 |
| 2024-02-09 | CVE-2024-25316 | SQL Injection vulnerability in Hotel Management System Project Hotel Management System 1.0 Code-projects Hotel Managment System 1.0 allows SQL Injection via the 'eid' parameter in Hotel/admin/usersettingdel.php?eid=2. | 9.8 |
| 2024-02-09 | CVE-2024-25318 | SQL Injection vulnerability in Hotel Management System Project Hotel Management System 1.0 Code-projects Hotel Managment System 1.0 allows SQL Injection via the 'pid' parameter in Hotel/admin/print.php?pid=2. | 8.8 |
| 2024-02-09 | CVE-2024-25304 | SQL Injection vulnerability in Code-Projects Simple School Management System 1.0 Code-projects Simple School Managment System 1.0 allows SQL Injection via the 'apass' parameter at "School/index.php." | 8.8 |