• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-89

CVE-2022-30599

February 23, 2023 by godfreyd94

A flaw was found in moodle where an SQL injection risk was identified in Badges code relating to configuring criteria.

CVE-2022-30619

February 23, 2023 by godfreyd94

Editable SQL Queries behind Base64 encoding sending from the Client-Side to The Server-Side for a particular API used in legacy Work Center module. He attack is available for any authenticated user, in any kind of rule. under the function : /AgilePointServer/Extension/FetchUsingEncodedData in the parameter: EncodedData

CVE-2022-30528

February 23, 2023 by godfreyd94

SQL Injection vulnerability in asith-eranga ISIC tour booking through version published on Feb 13th 2018, allows attackers to execute arbitrary commands via the username parameter to /system/user/modules/mod_users/controller.php.

CVE-2022-3059

February 23, 2023 by godfreyd94

The application was vulnerable to multiple instances of SQL injection (authenticated and unauthenticated) through a vulnerable parameter. Due to the stacked query support, complex SQL commands could be crafted and injected into the vulnerable parameter and using a sleep based inferential SQL injection it was possible to extract data from the database.

CVE-2022-30451

February 23, 2023 by godfreyd94

An authenticated user could execute code via a SQLi vulnerability in waimairenCMS before version 9.1.

CVE-2022-30452

February 23, 2023 by godfreyd94

ShopWind <= v3.4.2 has a Sql injection vulnerability in Database.php

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 831
  • Go to page 832
  • Go to page 833
  • Go to page 834
  • Go to page 835
  • Interim pages omitted …
  • Go to page 956
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE