• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-89

CVE-2018-12482

February 26, 2023 by

OCS Inventory 2.4.1 contains multiple SQL injections in the search engine. Authentication is needed in order to exploit the issues.

CVE-2018-12295

February 26, 2023 by

SQL injection in folderViewSpecific.psp in Seagate NAS OS version 4.3.15.1 allows attackers to execute arbitrary SQL commands via the dirId URL parameter.

CVE-2018-12250

February 26, 2023 by

An issue was discovered in Elite CMS Pro 2.01. In /admin/add_sidebar.php, the ?page= parameter is vulnerable to SQL injection.

CVE-2018-12254

February 26, 2023 by

router.php in the Harmis Ek rishta (aka ek-rishta) 2.10 component for Joomla! allows SQL Injection via the PATH_INFO to a home/requested_user/Sent%20interest/ URI.

CVE-2018-12110

February 26, 2023 by

portfolioCMS 1.0.5 has SQL Injection via the admin/portfolio.php preview parameter.

CVE-2018-12039

February 26, 2023 by

joyplus-cms 1.6.0 allows Remote Code Execution because of an Arbitrary SQL command execution issue in manager/index.php involving use of a “/!select/” substring in place of a select substring.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 362
  • Go to page 363
  • Go to page 364
  • Go to page 365
  • Go to page 366
  • Interim pages omitted …
  • Go to page 956
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE