CVE-2025-47538

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in wpdever Cart tracking for WooCommerce allows SQL Injection. This issue affects Cart tracking for WooCommerce: from n/a through 1.0.17...

Online Nurse Hiring System view-request.php File SQL Injection Vulnerability

Online Nurse Hiring System is an online nurse hiring system. Online Nurse Hiring System suffers from a SQL injection vulnerability that originates from the lack of validation of the viewid parameter in the file /admin/view-request.php against an externally-entered SQL statement. An attacker can u...

WordPress plugin YaySMTP SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A SQL injection...

WeGIA SQL注入漏洞

WeGIA is a web manager for welfare organizations. WeGIA suffers from a SQL injection vulnerability that stems from the application's lack of validation of externally entered SQL statements, which can be exploited by an attacker to cause a data leak or complete database corruption...

Nipah virus Testing Management System patient-search-report.php file SQL Injection Vulnerability

Nipah Virus Testing Management System is an online virus diagnostic platform. The Nipah Virus Testing Management System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter searchdata in the file...

itsourcecode Gym Management System 安全漏洞

itsourcecode Gym Management System is an open source gym management system by itsourcecode. A security vulnerability exists in version 1.0 of itsourcecode Gym Management System, which originates from a SQL injection due to incorrect manipulation of parameter IDs in file/ajax.php...

The vulnerability of TP-Link M7450 router’s microprogramming software lies in the lack of protective measures for the SQL query structure, allowing attackers to execute arbitrary code.

The vulnerability of TP-Link M7450 router’s microprogramming software is related to the lack of measures taken to protect the SQL query structure during the processing of the username and password fields. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary cod...

Tcman Gim SQL注入漏洞

Tcman Gim is a facility management software from the Spanish company Tcman designed for use on mobile devices. A SQL injection vulnerability exists in Tcman Gim version v11, which stems from an SQL injection in the createNotificationAndroid endpoint Sender and email parameters...

CVE-2025-44074

SeaCMS v13.3 was discovered to contain a SQL injection vulnerability via the component admintopic.php...

CVE-2025-4283

A vulnerability was found in SourceCodester/oretnom23 Stock Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /classes/Login.php?f=login. The manipulation of the argument Username leads to sql injection. The attack may be initiated remotely...

U.S. Dept Of Defense: SQL Injection - data[account][id] parameter

A SQL injection vulnerability was discovered in the "dataaccountid" parameter on the website. The vulnerability allowed for the manipulation of SQL queries executed by the backend database. The impact of this vulnerability was not specified...

Kashipara Online Service Management Portal 安全漏洞

Kashipara Online Service Management Portal is an online service management portal from Kashipara. A security vulnerability exists in Kashipara Online Service Management Portal version V1.0, which stems from improper handling of the rPassword parameter in the /osms/Requester/Requesterchangepass.ph...

PHPGurukul Emergency Ambulance Hiring Portal 注入漏洞

PHPGurukul Emergency Ambulance Hiring Portal is an emergency ambulance hiring portal from PHPGurukul. An injection vulnerability exists in version 1.0 of the PHPGurukul Emergency Ambulance Hiring Portal, which stems from improper handling of the parameter mobnum in the file /admin/contact-us.php,...

The vulnerability of TP-Link M7200 4G LTE Mobile Wi-Fi Router’s microprogramming software lies in the lack of measures taken to protect the SQL query structure, allowing attackers to execute arbitrary code.

The vulnerability of TP-Link M7200 4G LTE Mobile Wi-Fi Router’s microprogramming software is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by introducing specially crafted SQL code remotel...

The vulnerability of TP-Link M7000 4G LTE Mobile Wi-Fi Router’s microprogramming software lies in the lack of measures taken to protect the SQL query structure, allowing attackers to execute arbitrary code.

The vulnerability of TP-Link M7000 4G LTE Mobile Wi-Fi Router’s microprogramming software is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by introducing specially crafted SQL code remotel...

The vulnerability of TP-Link M7650 4G LTE Mobile Wi-Fi Router’s microprogramming software lies in the lack of measures taken to protect the SQL query structure, allowing attackers to execute arbitrary code.

The vulnerability of TP-Link M7650 4G LTE Mobile Wi-Fi Router’s microprogramming software is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by introducing specially crafted SQL code remotel...

The vulnerability of the Login Dashboard component of TP-Link’s router software lies in the lack of protective measures for the SQL query structure, allowing attackers to execute arbitrary code.

The vulnerability of the Login Dashboard component of TP-Link’s microprogramming router TL-WR840N relates to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by introducing specially crafted SQL code...

itsourcecode Content Management System 安全漏洞

itsourcecode Content Management System is an open source content management system from itsourcecode. A security vulnerability exists in version 1.0 of itsourcecode Content Management System, which is caused by a SQL injection attack due to an incorrect manipulation of the Search parameter in the...

SourceCodester Simple To-Do List System 安全漏洞

SourceCodester Simple To-Do List System is a SourceCodester open source simple to-do list system. A security vulnerability exists in SourceCodester Simple To-Do List System version 1.0, which is caused by SQL injection due to incorrect manipulation of the parameter ID in the file /deletetask.php...

Code-Projects Nero Social Networking Site 注入漏洞

Nero Social Networking Site is a social networking site. Nero Social Networking Site suffers from a SQL injection vulnerability that originates from the incorrect manipulation of multiple parameters in the file /index.php, which can be exploited by an attacker to execute illegal SQL commands to...