• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-89

CVE-2018-20779

February 26, 2023 by

Traq 3.7.1 allows SQL Injection via a tickets?search= URI.

CVE-2018-20730

February 26, 2023 by

A SQL injection vulnerability in NeDi before 1.7Cp3 allows any user to execute arbitrary SQL read commands via the query.php component.

CVE-2018-20678

February 26, 2023 by

LibreNMS through 1.47 allows SQL injection via the html/ajax_table.php sort[hostname] parameter, exploitable by authenticated users during a search.

CVE-2018-20713

February 26, 2023 by

Shopware before 5.4.3 allows SQL Injection by remote authenticated users, aka SW-21404.

CVE-2018-20715

February 26, 2023 by

The DB abstraction layer of OXID eSales 4.10.6 is vulnerable to SQL injection via the oxid or synchoxid parameter to the oxConfig::getRequestParameter() method in core/oxconfig.php.

CVE-2018-20716

February 26, 2023 by

CubeCart before 6.1.13 has SQL Injection via the validate[] parameter of the “I forgot my Password!” feature.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 319
  • Go to page 320
  • Go to page 321
  • Go to page 322
  • Go to page 323
  • Interim pages omitted …
  • Go to page 956
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE