Cisco Prime Infrastructure and Evolved Programmable Network Manager Blind SQL Injection Vulnerability

A vulnerability in a subset of REST APIs of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager EPNM could allow an authenticated, low-privileged, remote attacker to conduct a blind SQL injection attack. This vulnerability is due to insufficient validation of user-supplied...

CVE-2025-52830

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in BSecure - Your Universal Checkout bSecure - Your Universal Checkout bsecure allows Blind SQL Injection.This issue affects bSecure - Your Universal Checkout: from n/a through = 1.7.9...

CVE-2025-52830

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in bSecure – Your Universal Checkout bSecure – Your Universal Checkout bsecure allows Blind SQL Injection.This issue affects bSecure – Your Universal Checkout: from n/a through = 1.7.9...

CVE-2025-30947

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in gopiplus Cool fade popup cool-fade-popup allows Blind SQL Injection.This issue affects Cool fade popup: from n/a through = 10.1...

PT-2025-27940 · Unknown · Bsecure - Your Universal Checkout

Name of the Vulnerable Software and Affected Versions: bSecure - Your Universal Checkout versions 1.7.9 and earlier Description: The issue is related to an SQL Injection vulnerability, specifically a Blind SQL Injection, which affects the bSecure - Your Universal Checkout software. This...

CVE-2024-12150

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Eron Software Wowwo CRM allows Blind SQL Injection. This issue affects Wowwo CRM. NOTE: The vendor did not inform about the completion of the fixing process within the specified time. The CVE will ...

CVE-2024-12150 SQLi in Eron Software's Wowwo CRM

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Eron Software Wowwo CRM allows Blind SQL Injection.This issue affects Wowwo CRM. NOTE: The vendor did not inform about the completion of the fixing process within the specified time. The CVE will b...

CVE-2024-12150

CVE-2024-12150 affects Eron Software Wowwo CRM. The vulnerability is an improper neutralization of special elements in SQL commands, enabling a blind SQL injection. Root cause appears to be insufficient input sanitization in SQL queries used by Wowwo CRM. Public details on affected versions, expl...

CVE-2025-47573

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in mojoomla School Management allows Blind SQL Injection. This issue affects School Management: from n/a through 92.0.0...

CVE-2025-39479

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in smartiolabs Smart Notification allows Blind SQL Injection. This issue affects Smart Notification: from n/a through 10.3...

CVE-2025-48274

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in wpjobportal WP Job Portal wp-job-portal allows Blind SQL Injection.This issue affects WP Job Portal: from n/a through = 2.3.2...

CVE-2025-47573

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in mojoomla School Management allows Blind SQL Injection. This issue affects School Management: from n/a through 92.0.0...

CVE-2025-47573

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in mojoomla School Management allows Blind SQL Injection. This issue affects School Management: from n/a through 92.0.0...

CVE-2025-39479

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in smartiolabs Smart Notification allows Blind SQL Injection. This issue affects Smart Notification: from n/a through 10.3...

CVE-2025-30562

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in wpdistillery Navigation Tree Elementor navigation-tree-elementor allows Blind SQL Injection.This issue affects Navigation Tree Elementor: from n/a through = 1.0.1...

CVE-2025-30562

The CVE-2025-30562 entry concerns wpdistillery Navigation Tree Elementor (WordPress plugin) with an SQL Injection vulnerability described as Blind SQL Injection affecting Navigation Tree Elementor versions up to 1.0.1. CVSS 3.1 base score 8.5 (HIGH): attack vector NETWORK, authentication LOW, use...

CVE-2025-39479

CVE-2025-39479 is an SQL Injection vulnerability in the WordPress Smart Notification plugin (versions up to and including 10.3), allowing blind SQLi. The NVD/NIST summary lists impact as Privilege Level: none required, User interaction: none, with a CVSS v3.1 base score of 9.3 (critical) and netw...

CVE-2025-47573

CVE-2025-47573 is an SQL Injection vulnerability in the mojoomla WordPress School Management plugin (affected versions n/a–92.0.0) due to improper neutralization of special elements in SQL commands, enabling Blind SQL Injection. Public sources in the provided documents identify the issue but do n...

CVE-2025-48274 WordPress WP Job Portal <= 2.3.2 - SQL Injection Vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in wpjobportal WP Job Portal allows Blind SQL Injection. This issue affects WP Job Portal: from n/a through 2.3.2...

WordPress plugin School Management SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerabili...