Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by CWE-89
Total 14524 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-43228 1 Barangay Management System Project 1 Barangay Management System 2024-11-21 N/A 7.2 HIGH
Barangay Management System v1.0 was discovered to contain a SQL injection vulnerability via the hidden_id parameter at /clearance/clearance.php.
CVE-2022-43227 1 Online Diagnostic Lab Management System Project 1 Online Diagnostic Lab Management System 2024-11-21 N/A 7.2 HIGH
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /odlms/admin/?page=appointments/view_appointment.
CVE-2022-43226 1 Online Diagnostic Lab Management System Project 1 Online Diagnostic Lab Management System 2024-11-21 N/A 8.8 HIGH
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /odlms/?page=appointments/view_appointment.
CVE-2022-43216 2024-11-21 N/A 9.1 CRITICAL
AbrhilSoft Employee's Portal before v5.6.2 was discovered to contain a SQL injection vulnerability in the login page.
CVE-2022-43215 1 Billing System Project 1 Billing System 2024-11-21 N/A 9.8 CRITICAL
Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the endDate parameter at getOrderReport.php.
CVE-2022-43214 1 Billing System Project 1 Billing System 2024-11-21 N/A 9.8 CRITICAL
Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the orderId parameter at printOrder.php.
CVE-2022-43213 1 Billing System Project Project 1 Billing System Project 2024-11-21 N/A 9.8 CRITICAL
Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at editorder.php.
CVE-2022-43212 1 Billing System Project Project Project 1 Billing System Project 2024-11-21 N/A 9.8 CRITICAL
Billing System Project v1.0 was discovered to contain a SQL injection vulnerability via the orderId parameter at fetchOrderData.php.
CVE-2022-43179 1 Online Leave Management System Project 1 Online Leave Management System 2024-11-21 N/A 7.2 HIGH
Online Leave Management System v1.0 was discovered to contain a SQL injection vulnerability via the component /admin/?page=user/manage_user&id=.
CVE-2022-43168 1 Rukovoditel 1 Rukovoditel 2024-11-21 N/A 9.8 CRITICAL
Rukovoditel v3.2.1 was discovered to contain a SQL injection vulnerability via the reports_id parameter.
CVE-2022-43163 1 Online Diagnostic Lab Management System Project 1 Online Diagnostic Lab Management System 2024-11-21 N/A 7.2 HIGH
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /clients/view_client.php.
CVE-2022-43162 1 Online Diagnostic Lab Management System Project 1 Online Diagnostic Lab Management System 2024-11-21 N/A 7.2 HIGH
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /tests/view_test.php.
CVE-2022-43135 1 Online Diagnostic Lab Management System Project 1 Online Diagnostic Lab Management System 2024-11-21 N/A 9.8 CRITICAL
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the username parameter at /diagnostic/login.php.
CVE-2022-43127 1 Online Diagnostic Lab Management System Project 1 Online Diagnostic Lab Management System 2024-11-21 N/A 7.2 HIGH
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /appointments/update_status.php.
CVE-2022-43126 1 Online Diagnostic Lab Management System Project 1 Online Diagnostic Lab Management System 2024-11-21 N/A 7.2 HIGH
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/tests/manage_test.php.
CVE-2022-43125 1 Online Diagnostic Lab Management System Project 1 Online Diagnostic Lab Management System 2024-11-21 N/A 7.2 HIGH
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /appointments/manage_appointment.php.
CVE-2022-43124 1 Online Diagnostic Lab Management System Project 1 Online Diagnostic Lab Management System 2024-11-21 N/A 7.2 HIGH
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/?page=user/manage_user.
CVE-2022-43086 1 Codeastro 1 Restaurant Pos System 2024-11-21 N/A 4.9 MEDIUM
Restaurant POS System v1.0 was discovered to contain a SQL injection vulnerability via update_customer.php.
CVE-2022-43081 1 Fast Food Ordering System Project 1 Fast Food Ordering System 2024-11-21 N/A 7.5 HIGH
Fast Food Ordering System v1.0 was discovered to contain a SQL injection vulnerability via the component /fastfood/purchase.php.
CVE-2022-43068 1 Online Diagnostic Lab Management System Project 1 Online Diagnostic Lab Management System 2024-11-21 N/A 7.2 HIGH
Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=delete_reservation.