• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-89

CVE-2020-23630

February 26, 2023 by

A blind SQL injection vulnerability exists in zzcms ver201910 based on time (cookie injection).

CVE-2020-23262

February 26, 2023 by

An issue was discovered in ming-soft MCMS v5.0, where a malicious user can exploit SQL injection without logging in through /mcms/view.do.

CVE-2020-23282

February 26, 2023 by

SQL injection in Logon Page in MV’s mConnect application, v02.001.00, allows an attacker to use a non existing user with a generic password to connect to the application and get access to unauthorized information.

CVE-2020-23149

February 26, 2023 by

The dbName parameter in ajaxDbInstall.php of rConfig 3.9.5 is unsanitized, allowing attackers to perform a SQL injection and access sensitive database information.

CVE-2020-23150

February 26, 2023 by

A SQL injection vulnerability in config.inc.php of rConfig 3.9.5 allows attackers to access sensitive database information via a crafted GET request to install/lib/ajaxHandlers/ajaxDbInstall.php.

CVE-2020-23045

February 26, 2023 by

Macrob7 Macs Framework Content Management System – 1.14f was discovered to contain a SQL injection vulnerability via the ‘roleId’ parameter of the `editRole` and `deletUser` modules.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 430
  • Go to page 431
  • Go to page 432
  • Go to page 433
  • Go to page 434
  • Interim pages omitted …
  • Go to page 956
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE