Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by CWE-89
Total 17774 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-28111 1 Pagehelper Project 1 Pagehelper 2024-11-21 7.5 HIGH 9.8 CRITICAL
MyBatis PageHelper v1.x.x-v3.7.0 v4.0.0-v5.0.0,v5.1.0-v5.3.0 was discovered to contain a time-blind SQL injection vulnerability via the orderBy parameter.
CVE-2022-28110 1 Hotel Management System Project 1 Hotel Management System 2024-11-21 7.5 HIGH 9.8 CRITICAL
Hotel Management System v1.0 was discovered to contain a SQL injection vulnerability via the username parameter at the login page.
CVE-2022-28105 1 Online Sports Complex Booking System Project 1 Online Sports Complex Booking System 2024-11-21 7.5 HIGH 9.8 CRITICAL
Online Sports Complex Booking System v1.0 was discovered to contain a blind SQL injection vulnerability via the id parameter in /scbs/view_facility.php.
CVE-2022-28099 1 Poultry Farm Management System Project 1 Poultry Farm Management System 2024-11-21 6.5 MEDIUM 8.8 HIGH
Poultry Farm Management System v1.0 was discovered to contain a SQL injection vulnerability via the Item parameter at /farm/store.php.
CVE-2022-28080 1 Event Management System Project 1 Event Management System 2024-11-21 6.5 MEDIUM 8.8 HIGH
Royal Event Management System v1.0 was discovered to contain a SQL injection vulnerability via the todate parameter.
CVE-2022-28079 1 College Management System Project 1 College Management System 2024-11-21 6.5 MEDIUM 8.8 HIGH
College Management System v1.0 was discovered to contain a SQL injection vulnerability via the course_code parameter.
CVE-2022-28060 1 Victor Cms Project 1 Victor Cms 2024-11-21 5.0 MEDIUM 7.5 HIGH
SQL Injection vulnerability in Victor CMS v1.0, via the user_name parameter to /includes/login.php.
CVE-2022-28036 1 Thedigitalcraft 1 Atomcms 2024-11-21 7.5 HIGH 9.8 CRITICAL
AtomCMS 2.0 is vulnerable to SQL Injection via Atom.CMS_admin_ajax_navigation.php
CVE-2022-28035 1 Thedigitalcraft 1 Atomcms 2024-11-21 7.5 HIGH 9.8 CRITICAL
Atom.CMS 2.0 is vulnerable to SQL Injection via Atom.CMS_admin_ajax_blur-save.php
CVE-2022-28034 1 Thedigitalcraft 1 Atomcms 2024-11-21 7.5 HIGH 9.8 CRITICAL
AtomCMS 2.0 is vulnerabie to SQL Injection via Atom.CMS_admin_ajax_list-sort.php
CVE-2022-28033 1 Thedigitalcraft 1 Atomcms 2024-11-21 7.5 HIGH 9.8 CRITICAL
Atom.CMS 2.0 is vulnerable to SQL Injection via Atom.CMS_admin_uploads.php
CVE-2022-28032 1 Thedigitalcraft 1 Atomcms 2024-11-21 7.5 HIGH 9.8 CRITICAL
AtomCMS 2.0 is vulnerable to SQL Injection via Atom.CMS_admin_ajax_pages.php
CVE-2022-28030 1 Simple Real Estate Portal System Project 1 Simple Real Estate Portal System 2024-11-21 7.5 HIGH 9.8 CRITICAL
Simple Real Estate Portal System v1.0 was discovered to contain a SQL injection vulnerability via /reps/classes/Master.php?f=delete_estate.
CVE-2022-28029 1 Simple Real Estate Portal System Project 1 Simple Real Estate Portal System 2024-11-21 7.5 HIGH 9.8 CRITICAL
Simple Real Estate Portal System v1.0 was discovered to contain a SQL injection vulnerability via /reps/classes/Master.php?f=delete_type.
CVE-2022-28028 1 Simple Real Estate Portal System Project 1 Simple Real Estate Portal System 2024-11-21 7.5 HIGH 9.8 CRITICAL
Simple Real Estate Portal System v1.0 was discovered to contain a SQL injection vulnerability via /reps/classes/Master.php?f=delete_amenity.
CVE-2022-28023 1 Purchase Order Management System Project 1 Purchase Order Management System 2024-11-21 7.5 HIGH 9.8 CRITICAL
Purchase Order Management System v1.0 was discovered to contain a SQL injection vulnerability via /purchase_order/classes/Master.php?f=delete_supplier.
CVE-2022-28022 1 Purchase Order Management System Project 1 Purchase Order Management System 2024-11-21 7.5 HIGH 9.8 CRITICAL
Purchase Order Management System v1.0 was discovered to contain a SQL injection vulnerability via /purchase_order/classes/Master.php?f=delete_item.
CVE-2022-28020 1 Attendance And Payroll System Project 1 Attendance And Payroll System 2024-11-21 6.5 MEDIUM 8.8 HIGH
Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component \admin\position_edit.php.
CVE-2022-28019 1 Attendance And Payroll System Project 1 Attendance And Payroll System 2024-11-21 6.5 MEDIUM 8.8 HIGH
Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component \admin\employee_edit.php.
CVE-2022-28018 1 Attendance And Payroll System Project 1 Attendance And Payroll System 2024-11-21 6.5 MEDIUM 8.8 HIGH
Attendance and Payroll System v1.0 was discovered to contain a SQL injection vulnerability via the component \admin\schedule_edit.php.