Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by CWE-89
Total 14524 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-38284 1 Jflyfox 1 Jfinal Cms 2024-11-21 N/A 7.2 HIGH
JFinal CMS 5.1.0 is vulnerable to SQL Injection via /system/department/list.
CVE-2022-38283 1 Jflyfox 1 Jfinal Cms 2024-11-21 N/A 7.2 HIGH
JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/video/list.
CVE-2022-38282 1 Jflyfox 1 Jfinal Cms 2024-11-21 N/A 7.2 HIGH
JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/videoalbum/list.
CVE-2022-38281 1 Jflyfox 1 Jfinal Cms 2024-11-21 N/A 7.2 HIGH
JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/site/list.
CVE-2022-38280 1 Jflyfox 1 Jfinal Cms 2024-11-21 N/A 7.2 HIGH
JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/image/list.
CVE-2022-38279 1 Jflyfox 1 Jfinal Cms 2024-11-21 N/A 7.2 HIGH
JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/imagealbum/list.
CVE-2022-38278 1 Jflyfox 1 Jfinal Cms 2024-11-21 N/A 7.2 HIGH
JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/friendlylink/list.
CVE-2022-38277 1 Jflyfox 1 Jfinal Cms 2024-11-21 N/A 7.2 HIGH
JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/folderrollpicture/list.
CVE-2022-38276 1 Jflyfox 1 Jfinal Cms 2024-11-21 N/A 7.2 HIGH
JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/foldernotice/list.
CVE-2022-38275 1 Jflyfox 1 Jfinal Cms 2024-11-21 N/A 7.2 HIGH
JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/contact/list.
CVE-2022-38274 1 Jflyfox 1 Jfinal Cms 2024-11-21 N/A 7.2 HIGH
JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/comment/list.
CVE-2022-38273 1 Jflyfox 1 Jfinal Cms 2024-11-21 N/A 7.2 HIGH
JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/article/list_approve.
CVE-2022-38272 1 Jflyfox 1 Jfinal Cms 2024-11-21 N/A 7.2 HIGH
JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/article/list.
CVE-2022-38269 1 School Activity Updates With Sms Notification Project 1 School Activity Updates With Sms Notification 2024-11-21 N/A 7.2 HIGH
School Activity Updates with SMS Notification v1.0 was discovered to contain a SQL injection vulnerability via the component /modules/modstudent/index.php?view=edit&id=.
CVE-2022-38268 1 School Activity Updates With Sms Notification Project 1 School Activity Updates With Sms Notification 2024-11-21 N/A 7.2 HIGH
School Activity Updates with SMS Notification v1.0 was discovered to contain a SQL injection vulnerability via the component /modules/autonumber/index.php?view=edit&id=.
CVE-2022-38267 1 School Activity Updates With Sms Notification Project 1 School Activity Updates With Sms Notification 2024-11-21 N/A 7.2 HIGH
School Activity Updates with SMS Notification v1.0 was discovered to contain a SQL injection vulnerability via the component /modules/user/index.php?view=edit&id=.
CVE-2022-38265 1 Apartment Visitor Management System Project 1 Apartment Visitor Management System 2024-11-21 N/A 7.2 HIGH
Apartment Visitor Management System v1.0 was discovered to contain a SQL injection vulnerability via the editid parameter at /avms/edit-apartment.php.
CVE-2022-38260 1 Interview Management System Project 1 Interview Management System 2024-11-21 N/A 7.2 HIGH
Interview Management System v1.0 was discovered to contain a SQL injection vulnerability via the component /interview/delete.php?action=questiondelete&id=.
CVE-2022-38255 1 Interview Management System Project 1 Interview Management System 2024-11-21 N/A 7.2 HIGH
Interview Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /interview/editQuestion.php.
CVE-2022-38250 1 Nagios 1 Nagios Xi 2024-11-21 N/A 9.8 CRITICAL
Nagios XI v5.8.6 was discovered to contain a SQL injection vulnerability via the mib_name parameter at the Manage MIBs page.