• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-89

CVE-2022-29600

February 23, 2023 by godfreyd94

The oelib (aka One is Enough Library) extension through 4.1.5 for TYPO3 allows SQL Injection.

CVE-2022-29601

February 23, 2023 by godfreyd94

The seminars (aka Seminar Manager) extension through 4.1.3 for TYPO3 allows SQL Injection.

CVE-2022-29603

February 23, 2023 by godfreyd94

A SQL Injection vulnerability exists in UniverSIS UniverSIS-API through 1.2.1 via the $select parameter to multiple API endpoints. A remote authenticated attacker could send crafted SQL statements to a vulnerable endpoint (such as /api/students/me/messages/) to, for example, retrieve personal information or change grades.

CVE-2022-29498

February 23, 2023 by godfreyd94

Blazer before 2.6.0 allows SQL Injection. In certain circumstances, an attacker could get a user to run a query they would not have normally run.

CVE-2022-29535

February 23, 2023 by godfreyd94

Zoho ManageEngine OPManager through 125588 allows SQL Injection via a few default reports.

CVE-2022-29419

February 23, 2023 by godfreyd94

SQL Injection (SQLi) vulnerability in Don Crowther’s 3xSocializer plugin <= 0.98.22 at WordPress possible for users with a low role like a subscriber or higher.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 853
  • Go to page 854
  • Go to page 855
  • Go to page 856
  • Go to page 857
  • Interim pages omitted …
  • Go to page 956
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE