• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-89

CVE-2018-7177

February 26, 2023 by

SQL Injection exists in the Saxum Numerology 3.0.4 component for Joomla! via the publicid parameter.

CVE-2018-7107

February 26, 2023 by

A potential security vulnerability has been identified in HPE Device Entitlement Gateway (DEG) v3.2.4, v3.3 and v3.3.1. The vulnerability could be remotely exploited to allow local SQL injection and elevation of privilege.

CVE-2018-7065

February 26, 2023 by

An authenticated SQL injection vulnerability in Aruba ClearPass Policy Manager can lead to privilege escalation. All versions of ClearPass are affected by multiple authenticated SQL injection vulnerabilities. In each case, an authenticated administrative user of any type could exploit this vulnerability to gain access to “appadmin” credentials, leading to complete cluster compromise. Resolution: Fixed in 6.7.6 and 6.6.10-hotfix.

CVE-2018-7033

February 26, 2023 by

SchedMD Slurm before 17.02.10 and 17.11.x before 17.11.5 allows SQL Injection attacks against SlurmDBD.

CVE-2018-6883

February 26, 2023 by

Piwigo before 2.9.3 has SQL injection in admin/tags.php in the administration panel, via the tags array parameter in an admin.php?page=tags request. The attacker must be an administrator.

CVE-2018-6893

February 26, 2023 by

controllers/member/Api.php in dayrui FineCms 5.2.0 has SQL Injection: a request with s=member,c=api,m=checktitle, and the parameter ‘module’ with a SQL statement, lacks effective filtering.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 299
  • Go to page 300
  • Go to page 301
  • Go to page 302
  • Go to page 303
  • Interim pages omitted …
  • Go to page 956
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE