Total
9311 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2022-36706 | 1 Ingredients Stock Management System Project | 1 Ingredients Stock Management System | 2022-09-01 | N/A | 9.8 CRITICAL |
| Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the Id parameter at /stocks/manage_stockout.php. | |||||
| CVE-2022-36733 | 1 Library Management System Project | 1 Library Management System | 2022-09-01 | N/A | 9.8 CRITICAL |
| Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the M_Id parameter at /admin/del.php. | |||||
| CVE-2022-36735 | 1 Library Management System Project | 1 Library Management System | 2022-09-01 | N/A | 9.8 CRITICAL |
| Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the bookId parameter at /admin/delete.php. | |||||
| CVE-2022-36734 | 1 Library Management System Project | 1 Library Management System | 2022-09-01 | N/A | 9.8 CRITICAL |
| Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the RollNo parameter at /admin/delstu.php. | |||||
| CVE-2022-36732 | 1 Library Management System Project | 1 Library Management System | 2022-09-01 | N/A | 9.8 CRITICAL |
| Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /librarian/dele.php. | |||||
| CVE-2022-36731 | 1 Library Management System Project | 1 Library Management System | 2022-09-01 | N/A | 9.8 CRITICAL |
| Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the RollNo parameter at /librarian/delstu.php. | |||||
| CVE-2022-36730 | 1 Library Management System Project | 1 Library Management System | 2022-08-31 | N/A | 9.8 CRITICAL |
| Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the bookId parameter at /librarian/delete.php. | |||||
| CVE-2022-36714 | 1 Library Management System Project | 1 Library Management System | 2022-08-31 | N/A | 9.8 CRITICAL |
| Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Section parameter at /staff/lab.php. | |||||
| CVE-2022-36713 | 1 Library Management System Project | 1 Library Management System | 2022-08-31 | N/A | 9.8 CRITICAL |
| Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the Section parameter at /librarian/lab.php. | |||||
| CVE-2022-36712 | 1 Library Management System Project | 1 Library Management System | 2022-08-31 | N/A | 9.8 CRITICAL |
| Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /staff/studentdetails.php. | |||||
| CVE-2022-36711 | 1 Library Management System Project | 1 Library Management System | 2022-08-31 | N/A | 9.8 CRITICAL |
| Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /staff/bookdetails.php. | |||||
| CVE-2022-36709 | 1 Library Management System Project | 1 Library Management System | 2022-08-31 | N/A | 9.8 CRITICAL |
| Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /staff/edit_book_details.php. | |||||
| CVE-2022-2559 | 1 Wpmanageninja | 1 Fluent Support | 2022-08-31 | N/A | 7.2 HIGH |
| The Fluent Support WordPress plugin before 1.5.8 does not properly sanitise, validate and escape various parameters before using them in an SQL statement, leading to an SQL Injection vulnerability exploitable by high privilege users | |||||
| CVE-2022-1123 | 1 Mapsmarker | 1 Leaflet Maps Marker | 2022-08-31 | N/A | 7.2 HIGH |
| The Leaflet Maps Marker (Google Maps, OpenStreetMap, Bing Maps) WordPress plugin before 3.12.5 does not properly sanitize some parameters before inserting them into SQL queries. As a result, high privilege users could perform SQL injection attacks. | |||||
| CVE-2022-36690 | 1 Ingredient Stock Management System Project | 1 Ingredient Stock Management System | 2022-08-31 | N/A | 8.8 HIGH |
| Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/?page=user/manage_user&id=. | |||||
| CVE-2022-36689 | 1 Ingredient Stock Management System Project | 1 Ingredient Stock Management System | 2022-08-31 | N/A | 8.8 HIGH |
| Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the month parameter at /admin/?page=reports/waste&month=. | |||||
| CVE-2022-36688 | 1 Ingredient Stock Management System Project | 1 Ingredient Stock Management System | 2022-08-31 | N/A | 8.8 HIGH |
| Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the month parameter at /admin/?page=reports/stockout&month=. | |||||
| CVE-2022-36686 | 1 Ingredient Stock Management System Project | 1 Ingredient Stock Management System | 2022-08-31 | N/A | 8.8 HIGH |
| Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the month parameter at /admin/?page=reports/stockin&month=. | |||||
| CVE-2022-36529 | 1 Kensite Cms Project | 1 Kensite Cms | 2022-08-31 | N/A | 8.8 HIGH |
| Kensite CMS v1.0 was discovered to contain multiple SQL injection vulnerabilities via the name and oldname parameters at /framework/mod/db/DBMapper.xml. | |||||
| CVE-2022-3012 | 1 Fast Food Ordering System Project | 1 Fast Food Ordering System | 2022-08-31 | N/A | 8.8 HIGH |
| A vulnerability was found in oretnom23 Fast Food Ordering System. It has been rated as critical. Affected by this issue is some unknown functionality of the file ffos/admin/reports/index.php. The manipulation of the argument date leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-207422 is the identifier assigned to this vulnerability. | |||||