High

DATE	CVE	VULNERABILITY TITLE	RISK
2020-01-09	CVE-2019-20179	SQL Injection vulnerability in Soplanning SOPlanning 1.45 has SQL injection via the user_list.php "by" parameter. network low complexity soplanning CWE-89	8.8
2020-01-07	CVE-2014-8673	SQL Injection vulnerability in Soplanning Multiple SQL vulnerabilities exist in planning.php, user_list.php, projets.php, user_groupes.php, and groupe_list.php in Simple Online Planning (SOPPlanning)before 1.33. network low complexity soplanning CWE-89	7.5