CWE:
 

Tytuł
Data
Autor
Med.
Simple Issue Tracker System 1.0 SQL Injection
13.10.2021
Bekir Bugra Turkoglu
Med.
IFSC Code Finder Project 1.0 SQL Injection
11.10.2021
Yash Mahajan
Med.
Loan Management System 1.0 SQL Injection
11.10.2021
Merve Oral
Med.
Odine Solutions GateKeeper 1.0 SQL Injection
06.10.2021
Emel Basayar
Med.
Young Entrepreneur E-Negosyo System 1.0 SQL Injection
05.10.2021
Jordan Glover
Med.
Vehicle Service Management System 1.0 SQL Injection
05.10.2021
Richard Jones
Med.
Local Offices Contact Directory Site SQL Injection
05.10.2021
nu11secur1ty
Med.
Blood Bank System 1.0 SQL Injection
03.10.2021
Nitin Sharma
Med.
Exam Form Submission System 1.0 SQL Injection
02.10.2021
Nitin Sharma
Med.
PASS-PHP 1.0 SQL Injection / Cross Site Scripting
28.09.2021
nu11secur1ty
Med.
Pharmacy Point Of Sale System 1.0 SQL Injection
24.09.2021
Janik Wehrli
Med.
Simple Attendance System 1.0 SQL Injection
17.09.2021
Abdullah Khawaja
Med.
Support Board 3.3.3 SQL Injection
15.09.2021
John Jefferson Li
Med.
AHSS-PHP 1.0 Cross Site Scripting / SQL Injection
15.09.2021
nu11secur1ty
Med.
OpenSIS Community 8.0 SQL Injection
11.09.2021
Eric Salario
Med.
Traffic Offense Management System 1.0 SQL Injection / Remote Code Execution
01.09.2021
Tagoletta
Med.
Simple Image Gallery System 1.0 id SQL Injection
29.08.2021
Azumah Foresight Xorla...
Med.
Crime Records Management System 1.0 SQL Injection
23.08.2021
Davide Taraschi
Med.
COMMAX Smart Home IoT Control System CDP-1020n SQL Injection
17.08.2021
LiquidWorm
Med.
4images 1.8 SQL Injection
13.08.2021
Andrey Stoykov
Med.
RATES SYSTEM 1.0 SQL Injection
12.08.2021
Halit Akaydin
Med.
Care2x Integrated Hospital Info System 2.7 SQL Injection
30.07.2021
securityforeveryone
Med.
TripSpark VEO Transportation SQL Injection
28.07.2021
Sedric Louissaint
Med.
Customer Relationship Management System (CRM) 1.0 Sql Injection Authentication Bypass
27.07.2021
Shafique_Wasta
Med.
Zabbix 5.x SQL Injection / Cross Site Scripting
26.07.2021
Taurus Omar
Med.
Schoolsindia SQL Injection
26.07.2021
h4shur
Med.
WordPress LearnPress SQL Injection
21.07.2021
nhattruong
High
KevinLAB BEMS 1.0 Unauthenticated SQL Injection / Authentication Bypass
21.07.2021
LiquidWorm
Med.
PEEL Shopping 9.3.0 SQL Injection
19.07.2021
faisalfs10x
High
Church Management System 1.0 Shell Upload / SQL Injection
09.07.2021
Eleonora Guardini
Med.
Online Covid Vaccination Scheduler System 1.0 SQL Injection
07.07.2021
faisalfs10x
Med.
Online Voting System 1.0 SQL Injection
03.07.2021
deathflash1411
Med.
Garbage Collection Management System 1.0 SQL Injection
02.07.2021
ircashem
Med.
Doctors Patients Management System 1.0 SQL Injection
30.06.2021
Murat Demirci
Med.
phpAbook 0.9i SQL Injection
30.06.2021
Alejandro Perez
Med.
Personnel Record Management System 1.0 SQL Injection
29.06.2021
Richard Jones
Med.
WordPress Poll, Survey, Questionnaire And Voting System 1.5.2 SQL Injection
28.06.2021
Toby Jackson
Med.
Simple Client Management System 1.0 SQL Injection
25.06.2021
Baris Yildizoglu
Med.
Unified Office Total Connect Now 1.0 SQL Injection
22.06.2021
Ajaikumar Nadar
Med.
Small CRM 3.0 Authentication Bypass SQL Injection
22.06.2021
BHAVESH KAUL
Med.
Grocery Crud 1.6.4 SQL Injection
11.06.2021
TonyShavez
Med.
Zenario CMS 8.8.52729 SQL Injection
11.06.2021
Avinash R
Med.
Online Movie Ticket Booking - SQL injection
09.06.2021
Mostafa Farzaneh
Med.
Rocket.Chat 3.12.1 NoSQL Injection / Code Execution
08.06.2021
enox
High
Cacti 1.2.12 SQL Injection / Remote Command Execution
02.06.2021
h00die
Med.
WordPress WP Statistics 13.0.7 SQL Injection
25.05.2021
Mansoor R
Med.
EgavilanMedia PHPCRUD 1.0 SQL Injection
18.05.2021
Dimitrios Mitakos
Low
Bello WordPress Theme <= 1.5.9 - Unauthenticated Blind SQL Injection
17.05.2021
m0ze
Low
Goto WordPress Theme 2.0 - Unauthenticated Blind SQL Injection
17.05.2021
m0ze
High
Printable Staff ID Card Creator System 1.0 Shell Upload / SQL Injection
17.05.2021
bwnz
Med.
Hexagon G!nius Auskunftsportal SQL Injection
15.05.2021
Marcel Keiffenheim
Med.
Dental Clinic Appointment Reservation System 1.0 SQL Injection
13.05.2021
Mesut Cetin
Med.
ERPNext 12.18.0 / 13.0.0 SQL Injection
11.05.2021
Stefan Pietsch
Med.
Timeclock 1.04 Time and Boolean Based Blind SQL Injection # Date: May 3rd 2021
08.05.2021
Tyler Butler
Med.
Voting System 1.0 SQL Injection
07.05.2021
secure77
Low
b2evolution 7-2-2 SQL Injection
06.05.2021
nu11secur1ty
Med.
Gadget Works Online Ordering System 1.0 SQL Injection
04.05.2021
Richard Jones
Med.
Piwigo 11.3.0 SQL Injection
30.04.2021
nu11secur1ty
High
Cacti 1.2.12 filter SQL Injection / Remote Code Execution
29.04.2021
Leonardo Paiva
Med.
SEO Panel 4.8.0 order_col Blind SQL Injection
27.04.2021
nu11secur1ty
High
Cockpit CMS 0.11.1 NoSQL Injection / Remote Command Execution
21.04.2021
h00die
Med.
Digital Crime Report Management System 1.0 SQL Injection
15.04.2021
Galuh Muhammad Iman Ak...
Med.
CITSmart ITSM 9.1.2.27 SQL Injection
15.04.2021
skys
Med.
PrestaShop 1.7.6.7 SQL Injection
09.04.2021
Vanshal Gaur
Med.
Basic Shopping Cart 1.0 SQL Injection
05.04.2021
Viren Saroha
Med.
Simple Food Website 1.0 SQL Injection
05.04.2021
Richard Jones
Med.
Latrix 0.6.0 SQL Injection
03.04.2021
cptsticky
Med.
Project Expense Monitoring System 1.0 SQL Injection
29.03.2021
Richard Jones
Med.
Ovidentia 6 SQL Injection
26.03.2021
Felipe Prates Donato
Med.
WoWonder Social Network Platform 3.1 event_id SQL Injection
24.03.2021
securityforeveryone.co...
Med.
SEO Panel 4.8.0 SQL Injection
18.03.2021
Piyush Patil
High
Alphaware E-Commerce System 1.0 Shell Upload / SQL Injection
16.03.2021
Christian Vierschillin...
Med.
Monitoring Of Students Cyber Accounts System 1.0 SQL Injection
13.03.2021
Richard Jones
Med.
Monitoring System (Dashboard) 1.0 SQL Injection
13.03.2021
Richard Jones
Med.
QCubed 3.1.1 SQL Injection
13.03.2021
Wolfgang Hotwagner
Med.
Online Ordering System 1.0 Blind SQL Injection (Unauthenticated)
11.03.2021
Suraj Bhosale
Med.
Joomla JCK Editor 6.4.4 SQL Injection
09.03.2021
Nicholas Ferreira
Med.
Local Services Search Engine Management System 1.0 SQL Injection
04.03.2021
Tushar Vaidya
Med.
CASAP Automated Enrollment System 1.1 SQL Injection
02.03.2021
nu11secur1ty
Med.
LayerBB 1.1.4 search_query SQL Injection
24.02.2021
Görkem Haşin
Med.
Online Exam System With Timer 1.0 SQL Injection
22.02.2021
Suresh Kumar
Med.
Beauty Parlour Management System 1.0 sername SQL Injection
21.02.2021
Thinkland Security Tea...
Med.
WordPress Plugin Supsystic Ultimate Maps 1.1.12 sidx SQL injection
21.02.2021
Erik David Martin
Med.
Teachers Record Management System 1.0 searchteacher SQL Injection
19.02.2021
Soham Bakore, Nakul Ra...
Med.
Billing Management System 2.0 email SQL injection Auth Bypass
17.02.2021
Pintu Solanki
Med.
Student Record System 4.0 cid SQL Injection
14.02.2021
Jannick Tiger
Med.
Doctor Appointment System 1.0 SQL Injection
09.02.2021
Nakul Ratti
Med.
WordPress Supsystic Data Tables Generator 1.9.96 XSS / SQL Injection
08.02.2021
Erik David Martin
Med.
Custom CMS Jogjasite - SQL-Injection Vulnerability
06.02.2021
Gh05t666nero
Med.
User Management System 1.0 uid SQL Injection
03.02.2021
Zeyad Azima
Med.
Simple Public Chat Room 1.0 SQL Injection
31.01.2021
Richard Jones
Med.
Aplikasi PPDB Online - SQL-Injection Vulnerability
30.01.2021
Gh05t666nero
Med.
Online Grading System 1.0 SQL Injection
30.01.2021
Ruchi Tiwari
Med.
Simple College Website 1.0 SQL Injection
27.01.2021
Marco Catalano
Med.
ERPNext 12.14.0 SQL Injection (Authenticated)
22.01.2021
Hodorsec
Med.
Apartment Visitors Management System 1.0 SQL Injection
22.01.2021
Cankat Cakmak
Med.
Cemetry Mapping and Information System 1.0 Multiple SQL Injections
15.01.2021
Mesut Cetin
High
E-Learning System 1.0 SQL Injection / Shell Upload
15.01.2021
Saurav Shukla
Med.
Online Hotel Reservation System 1.0 SQL Injection
15.01.2021
Mesut Cetin
Med.
flatCore CMS XSS / File Disclosure / SQL Injection
14.01.2021
Calvin Phang


Common Weakness Enumeration (CWE)

CVE
Szczegóły
Opis
2021-10-15
Waiting for details
CVE-2021-42334

Updating...
 

 

 
Waiting for details
CVE-2021-42333

Updating...
 

 

 
Waiting for details
CVE-2021-41148

Updating...
 

 
Tuleap Open ALM is a libre and open source tool for end to end traceability of application and system developments. Prior to version 11.16.99.173 of Community Edition and versions 11.16-6 and 11.15-8 of Enterprise Edition, an attacker with the ability to add one the CI widget to its personal dashboard could execute arbitrary SQL queries. Tuleap Community Edition 11.16.99.173, Tuleap Enterprise Edition 11.16-6, and Tuleap Enterprise Edition 11.15-8 contain a patch for this issue.

 
Waiting for details
CVE-2021-41147

Updating...
 

 
Tuleap Open ALM is a libre and open source tool for end to end traceability of application and system developments. Prior to version 11.16.99.173 of Community Edition and versions 11.16-6 and 11.15-8 of Enterprise Edition, an attacker with admin rights in one agile dashboard service can execute arbitrary SQL queries. Tuleap Community Edition 11.16.99.173, Tuleap Enterprise Edition 11.16-6, and Tuleap Enterprise Edition 11.15-8 contain a patch for this issue.

 
2021-10-12
Waiting for details
CVE-2021-33736

Updating...
 

 
A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted requests to the webserver of the affected application.

 
Waiting for details
CVE-2021-33735

Updating...
 

 
A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted requests to the webserver of the affected application.

 
Waiting for details
CVE-2021-33734

Updating...
 

 
A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted requests to the webserver of the affected application.

 
Waiting for details
CVE-2021-33733

Updating...
 

 
A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted requests to the webserver of the affected application.

 
Waiting for details
CVE-2021-33732

Updating...
 

 
A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted requests to the webserver of the affected application.

 
Waiting for details
CVE-2021-33731

Updating...
 

 
A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted requests to the webserver of the affected application.

 

 


Copyright 2021, cxsecurity.com

 

Back to Top