• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-89

CVE-2022-3243

February 23, 2023 by godfreyd94

The Import all XML, CSV & TXT WordPress plugin before 6.5.8 does not properly sanitise and escape imported data before using them back SQL statements, leading to SQL injection exploitable by high privilege users such as admin

CVE-2022-32297

February 23, 2023 by godfreyd94

Piwigo v12.2.0 was discovered to contain SQL injection vulnerability via the Search function.

CVE-2022-32299

February 23, 2023 by godfreyd94

YoudianCMS v9.5.0 was discovered to contain a SQL injection vulnerability via the id parameter at /App/Lib/Action/Admin/SiteAction.class.php.

CVE-2022-32300

February 23, 2023 by godfreyd94

YoudianCMS v9.5.0 was discovered to contain a SQL injection vulnerability via the MailSendID parameter at /App/Lib/Action/Admin/MailAction.class.php.

CVE-2022-32301

February 23, 2023 by godfreyd94

YoudianCMS v9.5.0 was discovered to contain a SQL injection vulnerability via the IdList parameter at /App/Lib/Action/Home/ApiAction.class.php.

CVE-2022-32302

February 23, 2023 by godfreyd94

Theme Park Ticketing System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at edit_ticket.php.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 797
  • Go to page 798
  • Go to page 799
  • Go to page 800
  • Go to page 801
  • Interim pages omitted …
  • Go to page 956
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE