CWE-89

CVE-2022-33095

February 23, 2023 by godfreyd94

74cmsSE v3.5.1 was discovered to contain a SQL injection vulnerability via the keyword parameter at /home/jobfairol/resumelist.

CVE-2022-33096

February 23, 2023 by godfreyd94

74cmsSE v3.5.1 was discovered to contain a SQL injection vulnerability via the keyword parameter at /home/resume/index.

CVE-2022-33097

February 23, 2023 by godfreyd94

74cmsSE v3.5.1 was discovered to contain a SQL injection vulnerability via the keyword parameter at /home/campus/campus_job.

CVE-2022-33114

February 23, 2023 by godfreyd94

Jfinal CMS v5.1.0 was discovered to contain a SQL injection vulnerability via the attrVal parameter at /jfinal_cms/system/dict/list.

CVE-2022-32964

February 23, 2023 by godfreyd94

OMICARD EDM’s API function has insufficient validation for user input. An unauthenticated remote attacker can inject arbitrary SQL commands to access, modify, delete database or disrupt service.

CVE-2022-32991

February 23, 2023 by godfreyd94

Web Based Quiz System v1.0 was discovered to contain a SQL injection vulnerability via the eid parameter at welcome.php.