• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-89

CVE-2020-8645

February 26, 2023 by

An issue was discovered in Simplejobscript.com SJS through 1.66. There is an unauthenticated SQL injection via the job applications search function. The vulnerable parameter is job_id. The function is getJobApplicationsByJobId(). The file is _lib/class.JobApplication.php.

CVE-2020-8656

February 26, 2023 by

An issue was discovered in EyesOfNetwork 5.3. The EyesOfNetwork API 2.4.2 is prone to SQL injection, allowing an unauthenticated attacker to perform various tasks such as authentication bypass via the username field to getApiKey in include/api_functions.php.

CVE-2020-8592

February 26, 2023 by

eG Manager 7.1.2 allows SQL Injection via the user parameter to com.eg.LoginHelperServlet (aka the Forgot Password feature).

CVE-2020-8596

February 26, 2023 by

participants-database.php in the Participants Database plugin 1.9.5.5 and previous versions for WordPress has a time-based SQL injection vulnerability via the ascdesc, list_filter_count, or sortBy parameters. It is possible to exfiltrate data and potentially execute code (if certain conditions are met).

CVE-2020-8520

February 26, 2023 by

SQL injection in order and column parameters in Records.php for phpzag live add edit delete data tables records with ajax php mysql

CVE-2020-8521

February 26, 2023 by

SQL injection with start and length parameters in Records.php for phpzag live add edit delete data tables records with ajax php mysql

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 379
  • Go to page 380
  • Go to page 381
  • Go to page 382
  • Go to page 383
  • Interim pages omitted …
  • Go to page 956
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE