Total
11593 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2022-40117 | 1 Online Banking System Project | 1 Online Banking System | 2022-09-26 | N/A | 9.8 CRITICAL |
| Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via the cust_id parameter at /net-banking/delete_customer.php. | |||||
| CVE-2022-40118 | 1 Online Banking System Project | 1 Online Banking System | 2022-09-26 | N/A | 9.8 CRITICAL |
| Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via the cust_id parameter at /net-banking/send_funds_action.php. | |||||
| CVE-2022-40119 | 1 Online Banking System Project | 1 Online Banking System | 2022-09-26 | N/A | 9.8 CRITICAL |
| Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via the search_term parameter at /net-banking/transactions.php. | |||||
| CVE-2022-40120 | 1 Online Banking System Project | 1 Online Banking System | 2022-09-26 | N/A | 9.8 CRITICAL |
| Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via the search_term parameter at /net-banking/customer_transactions.php. | |||||
| CVE-2022-40121 | 1 Online Banking System Project | 1 Online Banking System | 2022-09-26 | N/A | 9.8 CRITICAL |
| Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via the search parameter at /net-banking/manage_customers.php. | |||||
| CVE-2022-40122 | 1 Online Banking System Project | 1 Online Banking System | 2022-09-26 | N/A | 9.8 CRITICAL |
| Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via the cust_id parameter at /net-banking/edit_customer_action.php. | |||||
| CVE-2022-40446 | 1 Zzcms | 1 Zzcms | 2022-09-23 | N/A | 7.2 HIGH |
| ZZCMS 2022 was discovered to contain a SQL injection vulnerability via the component /admin/sendmailto.php?tomail=&groupid=. | |||||
| CVE-2022-40091 | 1 Online Tours And Travels Management System Project | 1 Online Tours And Travels Management System | 2022-09-23 | N/A | 7.2 HIGH |
| Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /tour/admin/update_packages.php. | |||||
| CVE-2022-40092 | 1 Online Tours And Travels Management System Project | 1 Online Tours And Travels Management System | 2022-09-23 | N/A | 7.2 HIGH |
| Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /tour/admin/update_payment.php. | |||||
| CVE-2022-40093 | 1 Online Tours And Travels Management System Project | 1 Online Tours And Travels Management System | 2022-09-23 | N/A | 7.2 HIGH |
| Online Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /tour/admin/update_tax.php. | |||||
| CVE-2022-32299 | 1 Youdiancms | 1 Youdiancms | 2022-09-23 | 6.5 MEDIUM | 8.8 HIGH |
| YoudianCMS v9.5.0 was discovered to contain a SQL injection vulnerability via the id parameter at /App/Lib/Action/Admin/SiteAction.class.php. | |||||
| CVE-2022-32300 | 1 Youdiancms | 1 Youdiancms | 2022-09-23 | 6.5 MEDIUM | 8.8 HIGH |
| YoudianCMS v9.5.0 was discovered to contain a SQL injection vulnerability via the MailSendID parameter at /App/Lib/Action/Admin/MailAction.class.php. | |||||
| CVE-2022-32301 | 1 Youdiancms | 1 Youdiancms | 2022-09-23 | 7.5 HIGH | 9.8 CRITICAL |
| YoudianCMS v9.5.0 was discovered to contain a SQL injection vulnerability via the IdList parameter at /App/Lib/Action/Home/ApiAction.class.php. | |||||
| CVE-2022-40447 | 1 Zzcms | 1 Zzcms | 2022-09-22 | N/A | 7.2 HIGH |
| ZZCMS 2022 was discovered to contain a SQL injection vulnerability via the keyword parameter at /admin/baojia_list.php. | |||||
| CVE-2022-40933 | 1 Online Pet Shop Web Application Project | 1 Online Pet Shop Web Application | 2022-09-22 | N/A | 7.2 HIGH |
| Online Pet Shop We App v1.0 by oretnom23 is vulnerable to SQL injection via /pet_shop/classes/Master.php?f=delete_order,id. | |||||
| CVE-2022-40934 | 1 Online Pet Shop Web Application Project | 1 Online Pet Shop Web Application | 2022-09-22 | N/A | 7.2 HIGH |
| Online Pet Shop We App v1.0 is vulnerable to SQL injection via /pet_shop/classes/Master.php?f=delete_sub_category,id | |||||
| CVE-2022-40935 | 1 Online Pet Shop Web Application Project | 1 Online Pet Shop Web Application | 2022-09-22 | N/A | 7.2 HIGH |
| Online Pet Shop We App v1.0 is vulnerable to SQL Injection via /pet_shop/classes/Master.php?f=delete_category,id. | |||||
| CVE-2022-40026 | 1 Simple Task Managing System Project | 1 Simple Task Managing System | 2022-09-22 | N/A | 7.2 HIGH |
| SourceCodester Simple Task Managing System v1.0 was discovered to contain a SQL injection vulnerability via the bookId parameter at board.php. | |||||
| CVE-2022-40030 | 1 Simple Task Managing System Project | 1 Simple Task Managing System | 2022-09-22 | N/A | 9.8 CRITICAL |
| SourceCodester Simple Task Managing System v1.0 was discovered to contain a SQL injection vulnerability via the bookId parameter at changeStatus.php. | |||||
| CVE-2022-23767 | 2 Hanssak, Microsoft | 3 Securegate, Weblink, Windows | 2022-09-22 | N/A | 9.8 CRITICAL |
| This vulnerability of SecureGate is SQL-Injection using login without password. A path traversal vulnerability is also identified during file transfer. An attacker can take advantage of these vulnerabilities to perform various attacks such as obtaining privileges and executing remote code, thereby taking over the victim’s system. | |||||