CWE-89

CVE-2023-22959

February 22, 2023 by godfreyd94

WebChess through 0.9.0 and 1.0.0.rc2 allows SQL injection: mainmenu.php, chess.php, and opponentspassword.php (txtFirstName, txtLastName).

CVE-2023-23162

February 22, 2023 by godfreyd94

Art Gallery Management System Project v1.0 was discovered to contain a SQL injection vulnerability via the cid parameter at product.php.

CVE-2023-23163

February 22, 2023 by godfreyd94

Art Gallery Management System Project v1.0 was discovered to contain a SQL injection vulnerability via the editid parameter.

CVE-2023-23331

February 22, 2023 by godfreyd94

Amano Xoffice parking solutions 7.1.3879 is vulnerable to SQL Injection.

CVE-2023-23488

February 22, 2023 by godfreyd94

The Paid Memberships Pro WordPress Plugin, version < 2.9.8, is affected by an unauthenticated SQL injection vulnerability in the 'code' parameter of the '/pmpro/v1/order' REST route.

CVE-2023-23489

February 22, 2023 by godfreyd94

The Easy Digital Downloads WordPress Plugin, versions 3.1.0.2 & 3.1.0.3, is affected by an unauthenticated SQL injection vulnerability in the ‘s’ parameter of its ‘edd_download_search’ action.