• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-89

CVE-2022-23168

February 23, 2023 by

The attacker could get access to the database. The SQL injection is in the username parameter at the login panel: username: admin’–

CVE-2022-23169

February 23, 2023 by

attacker needs to craft a SQL payload. the vulnerable parameter is “agentid” must be authenticated to the admin panel.

CVE-2022-23046

February 23, 2023 by

PhpIPAM v1.4.4 allows an authenticated admin user to inject SQL sentences in the “subnet” parameter while searching a subnet via app/admin/routing/edit-bgp-mapping-search.php

CVE-2022-2298

February 23, 2023 by

A vulnerability has been found in SourceCodester Clinics Patient Management System 2.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /pms/index.php of the component Login Page. The manipulation of the argument user_name with the input admin’ or ‘1’=’1 leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

CVE-2022-22880

February 23, 2023 by

Jeecg-boot v3.0 was discovered to contain a SQL injection vulnerability via the code parameter in /jeecg-boot/sys/user/queryUserByDepId.

CVE-2022-22881

February 23, 2023 by

Jeecg-boot v3.0 was discovered to contain a SQL injection vulnerability via the code parameter in /sys/user/queryUserComponentData.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 913
  • Go to page 914
  • Go to page 915
  • Go to page 916
  • Go to page 917
  • Interim pages omitted …
  • Go to page 956
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE