Total
11593 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2023-31610 | 1 Openlinksw | 1 Virtuoso | 2023-05-23 | N/A | 7.5 HIGH |
| An issue in the _IO_default_xsputn component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements. | |||||
| CVE-2023-31842 | 1 Faculty Evaluation System Project | 1 Faculty Evaluation System | 2023-05-23 | N/A | 7.2 HIGH |
| Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/index.php?page=edit_faculty&id=. | |||||
| CVE-2023-31843 | 1 Faculty Evaluation System Project | 1 Faculty Evaluation System | 2023-05-23 | N/A | 7.2 HIGH |
| Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/admin/view_faculty.php?id=. | |||||
| CVE-2023-31844 | 1 Faculty Evaluation System Project | 1 Faculty Evaluation System | 2023-05-23 | N/A | 7.2 HIGH |
| Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/admin/manage_subject.php?id=. | |||||
| CVE-2023-31845 | 1 Faculty Evaluation System Project | 1 Faculty Evaluation System | 2023-05-23 | N/A | 7.2 HIGH |
| Sourcecodester Faculty Evaluation System v1.0 is vulnerable to SQL Injection via /eval/admin/manage_class.php?id=. | |||||
| CVE-2020-3378 | 1 Cisco | 12 1100-4g Integrated Services Router, 1100-4gltegb Integrated Services Router, 1100-4gltena Integrated Services Router and 9 more | 2023-05-23 | 4.0 MEDIUM | 4.3 MEDIUM |
| A vulnerability in the web-based management interface for Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to impact the integrity of an affected system by executing arbitrary SQL queries. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending crafted input that includes SQL statements to an affected system. A successful exploit could allow the attacker to modify entries in some database tables, affecting the integrity of the data. | |||||
| CVE-2019-16012 | 1 Cisco | 12 1100-4g Integrated Services Router, 1100-4gltegb Integrated Services Router, 1100-4gltena Integrated Services Router and 9 more | 2023-05-23 | 8.5 HIGH | 8.1 HIGH |
| A vulnerability in the web UI of Cisco SD-WAN Solution vManage software could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. The vulnerability exists because the web UI improperly validates SQL values. An attacker could exploit this vulnerability by authenticating to the application and sending malicious SQL queries to an affected system. A successful exploit could allow the attacker to modify values on, or return values from, the underlying database as well as the operating system. | |||||
| CVE-2023-31519 | 1 Pharmacy Management System Project | 1 Pharmacy Management System | 2023-05-22 | N/A | 9.8 CRITICAL |
| Pharmacy Management System v1.0 was discovered to contain a SQL injection vulnerability via the email parameter at login_core.php. | |||||
| CVE-2023-30192 | 1 Prestashop | 1 Possearchproducts | 2023-05-22 | N/A | 9.8 CRITICAL |
| Prestashop possearchproducts 1.7 is vulnerable to SQL Injection via PosSearch::find(). | |||||
| CVE-2023-28359 | 1 Rocket.chat | 1 Rocket.chat | 2023-05-22 | N/A | 5.3 MEDIUM |
| A NoSQL injection vulnerability has been identified in the listEmojiCustom method call within Rocket.Chat. This can be exploited by unauthenticated users when there is at least one custom emoji uploaded to the Rocket.Chat instance. The vulnerability causes a delay in the server response, with the potential for limited impact. | |||||
| CVE-2023-31621 | 1 Openlinksw | 1 Virtuoso | 2023-05-22 | N/A | 7.5 HIGH |
| An issue in the kc_var_col component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements. | |||||
| CVE-2023-31622 | 1 Openlinksw | 1 Virtuoso | 2023-05-22 | N/A | 7.5 HIGH |
| An issue in the sqlc_make_policy_trig component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements. | |||||
| CVE-2023-31623 | 1 Openlinksw | 1 Virtuoso | 2023-05-22 | N/A | 7.5 HIGH |
| An issue in the mp_box_copy component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements. | |||||
| CVE-2023-31624 | 1 Openlinksw | 1 Virtuoso | 2023-05-22 | N/A | 7.5 HIGH |
| An issue in the sinv_check_exp component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements. | |||||
| CVE-2023-31625 | 1 Openlinksw | 1 Virtuoso | 2023-05-22 | N/A | 7.5 HIGH |
| An issue in the psiginfo component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements. | |||||
| CVE-2023-31631 | 1 Openlinksw | 1 Virtuoso | 2023-05-22 | N/A | 7.5 HIGH |
| An issue in the sqlo_preds_contradiction component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements. | |||||
| CVE-2023-31630 | 1 Openlinksw | 1 Virtuoso | 2023-05-22 | N/A | 7.5 HIGH |
| An issue in the sqlo_query_spec component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements. | |||||
| CVE-2023-31629 | 1 Openlinksw | 1 Virtuoso | 2023-05-22 | N/A | 7.5 HIGH |
| An issue in the sqlo_union_scope component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements. | |||||
| CVE-2023-31628 | 1 Openlinksw | 1 Virtuoso | 2023-05-22 | N/A | 7.5 HIGH |
| An issue in the stricmp component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements. | |||||
| CVE-2023-31627 | 1 Openlinksw | 1 Virtuoso | 2023-05-22 | N/A | 7.5 HIGH |
| An issue in the strhash component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements. | |||||