• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-89

CVE-2021-38733

February 23, 2023 by

SEMCMS SHOP v 1.1 is vulnerable to SQL Injection via Ant_BlogCat.php.

CVE-2021-38734

February 23, 2023 by

SEMCMS SHOP v 1.1 is vulnerable to SQL Injection via Ant_Menu.php.

CVE-2021-3860

February 23, 2023 by

JFrog Artifactory before 7.25.4 (Enterprise+ deployments only), is vulnerable to Blind SQL Injection by a low privileged authenticated user due to incomplete validation when performing an SQL query.

CVE-2021-38574

February 23, 2023 by

An issue was discovered in Foxit Reader and PhantomPDF before 10.1.4. It allows SQL Injection via crafted data at the end of a string.

CVE-2021-38481

February 23, 2023 by

The scheduler service running on a specific TCP port enables the user to start and stop jobs. There is no sanitation of the supplied JOB ID provided to the function. An attacker may send a malicious payload that can enable the user to execute another SQL expression by sending a specific string.

CVE-2021-38390

February 23, 2023 by

A Blind SQL injection vulnerability exists in the /DataHandler/HandlerEnergyType.ashx endpoint of Delta Electronics DIAEnergie Version 1.7.5 and prior. The application does not properly validate the user-controlled value supplied through the parameter egyid before using it as part of an SQL query. A remote, unauthenticated attacker can exploit this issue to execute arbitrary code in the context of NT SERVICEMSSQLSERVER.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 596
  • Go to page 597
  • Go to page 598
  • Go to page 599
  • Go to page 600
  • Interim pages omitted …
  • Go to page 956
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE