Total
18012 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2022-30809 | 1 Elitecms | 1 Elite Cms | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
elitecms 1.01 is vulnerable to SQL Injection via /admin/edit_page.php?page=.
|
|||||
| CVE-2022-30799 | 1 Online Ordering System Project | 1 Online Ordering System | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Online Ordering System v1.0 by oretnom23 has SQL injection via store/orderpage.php.
|
|||||
| CVE-2022-30798 | 1 Online Ordering System Project | 1 Online Ordering System | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Online Ordering System v1.0 by oretnom23 is vulnerable to SQL Injection via admin/viewreport.php.
|
|||||
| CVE-2022-30797 | 1 Online Ordering System Project | 1 Online Ordering System | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
Online Ordering System 1.0 by oretnom23 is vulnerable to SQL Injection via admin/vieworders.php.
|
|||||
| CVE-2022-30795 | 1 Online Ordering System Project | 1 Online Ordering System | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Online Ordering System v1.0 by oretnom23 is vulnerable to SQL Injection via admin/editproductimage.php.
|
|||||
| CVE-2022-30794 | 1 Online Ordering System Project | 1 Online Ordering System | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Online Ordering System v1.0 by oretnom23 is vulnerable to SQL Injection via admin/editproductetails.php.
|
|||||
| CVE-2022-30765 | 1 Janeczku | 1 Calibre-web | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
Calibre-Web before 0.6.18 allows user table SQL Injection.
|
|||||
| CVE-2022-30619 | 1 Agilepoint | 1 Agilepoint Nx | 2024-11-21 | 6.5 MEDIUM | 5.9 MEDIUM |
|
Editable SQL Queries behind Base64 encoding sending from the Client-Side to The Server-Side for a particular API used in legacy Work Center module. He attack is available for any authenticated user, in any kind of rule. under the function : /AgilePointServer/Extension/FetchUsingEncodedData in the parameter: EncodedData
|
|||||
| CVE-2022-30599 | 3 Fedoraproject, Moodle, Redhat | 3 Fedora, Moodle, Enterprise Linux | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
A flaw was found in moodle where an SQL injection risk was identified in Badges code relating to configuring criteria.
|
|||||
| CVE-2022-30518 | 1 Chatbot Application With A Suggestion Feature Project | 1 Chatbot Application With A Suggestion Feature | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
ChatBot Application with a Suggestion Feature 1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /simple_chat_bot/admin/responses/view_response.php.
|
|||||
| CVE-2022-30516 | 1 Hospital Management System Project | 1 Hospital Management System | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
In Hospital-Management-System v1.0, the editid parameter in the doctor.php page is vulnerable to SQL injection attacks.
|
|||||
| CVE-2022-30512 | 1 School Dormitory Management System Project | 1 School Dormitory Management System | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
School Dormitory Management System 1.0 is vulnerable to SQL Injection via accounts/payment_history.php:31.
|
|||||
| CVE-2022-30511 | 1 School Dormitory Management System Project | 1 School Dormitory Management System | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
School Dormitory Management System 1.0 is vulnerable to SQL Injection via accounts/view_details.php:4.
|
|||||
| CVE-2022-30510 | 1 School Dormitory Management System Project | 1 School Dormitory Management System | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
School Dormitory Management System 1.0 is vulnerable to SQL Injection via reports/daily_collection_report.php:59.
|
|||||
| CVE-2022-30500 | 1 Jflyfox | 1 Jfinal Cms | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
Jfinal cms 5.1.0 is vulnerable to SQL Injection.
|
|||||
| CVE-2022-30496 | 1 Mv | 1 Idce | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
|
SQL injection in Logon Page of IDCE MV's application, version 1.0, allows an attacker to inject SQL payloads in the user field, connecting to a database to access enterprise's private and sensitive information.
|
|||||
| CVE-2022-30493 | 1 Automotive Shop Management System Project | 1 Automotive Shop Management System | 2024-11-21 | 10.0 HIGH | 9.8 CRITICAL |
|
In oretnom23 Automotive Shop Management System v1.0, the product id parameter suffers from a blind SQL Injection Vulnerability allowing remote attackers to dump all database credential and gain admin access(privilege escalation).
|
|||||
| CVE-2022-30490 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
Badminton Center Management System V1.0 is vulnerable to SQL Injection via parameter 'id' in /bcms/admin/court_rentals/update_status.php.
|
|||||
| CVE-2022-30481 | 1 Food-order-and-table-reservation-system Project | 1 Food-order-and-table-reservation-system | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
Food-order-and-table-reservation-system- 1.0 is vulnerable to SQL Injection in categorywise-menu.php via the catid parameters.
|
|||||
| CVE-2022-30478 | 1 Ecommerce-project-with-php-and-mysqli-fruits-bazar Project | 1 Ecommerce-project-with-php-and-mysqli-fruits-bazar | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
Ecommerce-project-with-php-and-mysqli-Fruits-Bazar 1.0 is vulnerable to SQL Injection in \search_product.php via the keyword parameters.
|
|||||
| CVE-2022-30469 | 1 Afian | 1 Filerun | 2024-11-21 | 6.5 MEDIUM | 8.8 HIGH |
|
In Afian Filerun 20220202, lack of sanitization of the POST parameter "metadata[]" in `/?module=fileman§ion=get&page=grid` leads to SQL injection.
|
|||||
| CVE-2022-30463 | 1 Automotive Shop Management System Project | 1 Automotive Shop Management System | 2024-11-21 | 6.5 MEDIUM | 8.8 HIGH |
|
Automotive Shop Management System v1.0 is vulnerable to SQL Injection via /asms/classes/Master.php?f=delete_product.
|
|||||
| CVE-2022-30461 | 1 Water Billing System Project | 1 Water Billing System | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
Water-billing-management-system v1.0 is vulnerable to SQL Injection via /wbms/classes/Master.php?f=delete_client, id
|
|||||
| CVE-2022-30459 | 1 Chatbot App With Suggestion Project | 1 Chatbot App With Suggestion | 2024-11-21 | 6.5 MEDIUM | 8.8 HIGH |
|
ChatBot App with Suggestion in PHP/OOP v1.0 is vulnerable to SQL Injection via /simple_chat_bot/classes/Master.php?f=delete_response, id.
|
|||||
| CVE-2022-30455 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
Badminton Center Management System 1.0 is vulnerable to SQL Injection via /bcms/classes/Master.php?f=delete_court_rental, id.
|
|||||
| CVE-2022-30454 | 1 Merchandise Online Store Project | 1 Merchandise Online Store | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
Merchandise Online Store 1.0 is vulnerable to SQL Injection via /vloggers_merch/classes/Master.php?f=delete_product.
|
|||||
| CVE-2022-30452 | 1 Shopwind | 1 Shopwind | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
ShopWind <= v3.4.2 has a Sql injection vulnerability in Database.php
|
|||||
| CVE-2022-30451 | 1 Waimairencms Project | 1 Waimairencms | 2024-11-21 | 6.5 MEDIUM | 8.8 HIGH |
|
An authenticated user could execute code via a SQLi vulnerability in waimairenCMS before version 9.1.
|
|||||
| CVE-2022-30449 | 1 Hospital Management System Project | 1 Hospital Management System | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
Hospital Management System in PHP with Source Code (HMS) 1.0 was discovered to contain a SQL injection vulnerability via the editid parameter in room.php.
|
|||||
| CVE-2022-30417 | 1 Covid 19 Travel Pass Management System Project | 1 Covid 19 Travel Pass Management System | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Covid-19 Travel Pass Management System v1.0 is vulnerable to SQL Injection via ctpms/admin/?page=user/manage_user&id=.
|
|||||
| CVE-2022-30415 | 1 Covid 19 Travel Pass Management System Project | 1 Covid 19 Travel Pass Management System | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Covid-19 Travel Pass Management System v1.0 is vulnerable to SQL Injection via /ctpms/admin/applications/update_status.php?id=.
|
|||||
| CVE-2022-30414 | 1 Covid 19 Travel Pass Management System Project | 1 Covid 19 Travel Pass Management System | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Covid-19 Travel Pass Management System v1.0 is vulnerable to SQL Injection via /ctpms/admin/?page=applications/view_application&id=.
|
|||||
| CVE-2022-30413 | 1 Covid 19 Travel Pass Management System Project | 1 Covid 19 Travel Pass Management System | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
Covid-19 Travel Pass Management System v1.0 is vulnerable to SQL Injection via /ctpms/classes/Master.php?f=delete_application.
|
|||||
| CVE-2022-30412 | 1 Covid 19 Travel Pass Management System Project | 1 Covid 19 Travel Pass Management System | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Covid-19 Travel Pass Management System v1.0 is vulnerable to SQL Injection via /ctpms/admin/individuals/update_status.php?id=.
|
|||||
| CVE-2022-30411 | 1 Covid 19 Travel Pass Management System Project | 1 Covid 19 Travel Pass Management System | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Covid-19 Travel Pass Management System v1.0 is vulnerable to SQL Injection via /ctpms/admin/?page=individuals/view_individual&id=.
|
|||||
| CVE-2022-30407 | 1 Pharmacy Sales And Inventory System Project | 1 Pharmacy Sales And Inventory System | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
Pharmacy Sales And Inventory System v1.0 is vulnerable to SQL Injection via /pharmacy-sales-and-inventory-system/manage_user.php?id=.
|
|||||
| CVE-2022-30404 | 1 College Management System Project | 1 College Management System | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
College Management System v1.0 is vulnerable to SQL Injection via /College_Management_System/admin/display-teacher.php?teacher_id=.
|
|||||
| CVE-2022-30403 | 1 Merchandise Online Store Product | 1 Merchandise Online Store | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/?p=products&c=.
|
|||||
| CVE-2022-30402 | 1 Merchandise Online Store Project | 1 Merchandise Online Store | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/admin/?page=maintenance/manage_sub_category&id=.
|
|||||
| CVE-2022-30401 | 1 Merchandise Online Store Project | 1 Merchandise Online Store | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/?p=view_product&id=.
|
|||||