• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-89

CVE-2018-17398

February 26, 2023 by

SQL Injection exists in the AMGallery 1.2.3 component for Joomla! via the filter_category_id parameter.

CVE-2018-17399

February 26, 2023 by

SQL Injection exists in the Jimtawl 2.2.7 component for Joomla! via the id parameter.

CVE-2018-17254

February 26, 2023 by

The JCK Editor component 6.4.4 for Joomla! allows SQL Injection via the jtreelink/dialogs/links.php parent parameter.

CVE-2018-17283

February 26, 2023 by

Zoho ManageEngine OpManager before 12.3 Build 123196 does not require authentication for /oputilsServlet requests, as demonstrated by a /oputilsServlet?action=getAPIKey request that can be leveraged against Firewall Analyzer to add an admin user via /api/json/v2/admin/addUser or conduct a SQL Injection attack via the /api/json/device/setManaged name parameter.

CVE-2018-17232

February 26, 2023 by

SQL injection vulnerability in archivebot.py in docmarionum1 Slack ArchiveBot (aka slack-archive-bot) before 2018-09-19 allows remote attackers to execute arbitrary SQL commands via the text parameter to cursor.execute().

CVE-2018-17243

February 26, 2023 by

Global Search in Zoho ManageEngine OpManager before 12.3 123205 allows SQL Injection.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 344
  • Go to page 345
  • Go to page 346
  • Go to page 347
  • Go to page 348
  • Interim pages omitted …
  • Go to page 956
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE