• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-89

CVE-2019-10692

February 26, 2023 by

In the wp-google-maps plugin before 7.11.18 for WordPress, includes/class.rest-api.php in the REST API does not sanitize field names before a SELECT statement.

CVE-2019-10707

February 26, 2023 by

MKCMS V5.0 has SQL injection via the bplay.php play parameter.

CVE-2019-10708

February 26, 2023 by

S-CMS PHP v1.0 has SQL injection via the 4/js/scms.php?action=unlike id parameter.

CVE-2019-10653

February 26, 2023 by

An issue was discovered in Hsycms V1.1. There is a SQL injection vulnerability via a /news/*.html page.

CVE-2019-10663

February 26, 2023 by

Grandstream UCM6204 before 1.0.19.20 devices allow remote authenticated users to conduct SQL injection attacks via the sord parameter in a listCodeblueGroup API call to the /cgi? URI.

CVE-2019-10232

February 26, 2023 by

Teclib GLPI through 9.3.3 has SQL injection via the “cycle” parameter in /scripts/unlock_tasks.php.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 546
  • Go to page 547
  • Go to page 548
  • Go to page 549
  • Go to page 550
  • Interim pages omitted …
  • Go to page 956
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE