• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-89

CVE-2018-8943

February 26, 2023 by

There is a SQL injection in the PHPSHE 1.6 userbank parameter.

CVE-2018-8953

February 26, 2023 by

CA Workload Automation AE before r11.3.6 SP7 allows remote attackers to a perform SQL injection via a crafted HTTP request.

CVE-2018-8914

February 26, 2023 by

SQL injection vulnerability in UPnP DMA in Synology Media Server before 1.7.6-2842 and before 1.4-2654 allows remote attackers to execute arbitrary SQL commands via the ObjectID parameter.

CVE-2018-8820

February 26, 2023 by

An issue was discovered in Square 9 GlobalForms 6.2.x. A Time Based SQL injection vulnerability in the “match” parameter allows remote authenticated attackers to execute arbitrary SQL commands. It is possible to upgrade access to full server compromise via xp_cmdshell. In some cases, the authentication requirement for the attack can be met by sending the default admin credentials.

CVE-2018-8824

February 26, 2023 by

modules/bamegamenu/ajax_phpcode.php in the Responsive Mega Menu (Horizontal+Vertical+Dropdown) Pro module 1.0.32 for PrestaShop 1.5.5.0 through 1.7.2.5 allows remote attackers to execute a SQL Injection through function calls in the code parameter.

CVE-2018-8802

February 26, 2023 by

SQL injection vulnerability in the management interface in ePortal Manager allows remote attackers to execute arbitrary SQL commands via unspecified parameters.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 292
  • Go to page 293
  • Go to page 294
  • Go to page 295
  • Go to page 296
  • Interim pages omitted …
  • Go to page 956
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE