• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-89

CVE-2022-3714

February 23, 2023 by godfreyd94

A vulnerability classified as critical has been found in SourceCodester Online Medicine Ordering System 1.0. Affected is an unknown function of the file admin/?page=orders/view_order. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. VDB-212346 is the identifier assigned to this vulnerability.

CVE-2022-37152

February 23, 2023 by godfreyd94

An issue was discovered in Online Diagnostic Lab Management System 1.0, There is a SQL injection vulnerability via “dob” parameter in “/classes/Users.php?f=save_client”

CVE-2022-37178

February 23, 2023 by godfreyd94

An issue was discovered in 72crm 9.0. There is a SQL Injection vulnerability in View the task calendar.

CVE-2022-37185

February 23, 2023 by godfreyd94

SQL injection vulnerability exists in the school information query interface (repschoolproj.php) of the EMS 6.2 system of the Office of the Thai Basic Education Commission, which can lead to data leakage.

CVE-2022-37199

February 23, 2023 by godfreyd94

JFinal CMS 5.1.0 is vulnerable to SQL Injection via /jfinal_cms/system/user/list.

CVE-2022-3720

February 23, 2023 by godfreyd94

The Event Monster WordPress plugin before 1.2.0 does not validate and escape some parameters before using them in SQL statements, which could lead to SQL Injection exploitable by high privilege users

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 757
  • Go to page 758
  • Go to page 759
  • Go to page 760
  • Go to page 761
  • Interim pages omitted …
  • Go to page 956
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE