The vulnerability of the NetMRI network monitoring program lies in its failure to protect the SQL query structure, allowing attackers to execute arbitrary code.

The vulnerability of the NetMRI network monitoring program lies in the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the “Tekon” SCADA system, related to the failure to implement protective measures for the SQL query structure, allows attackers to gain unauthorized access to protected information.

The vulnerability of the SCADA system “Tekon” is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information...

SUSE CVE-2025-53549

The Matrix Rust SDK is a collection of libraries that make it easier to build Matrix clients in Rust. An SQL injection vulnerability in the EventCache::findeventwithrelations method of matrix-sdk 0.11 and 0.12 allows malicious room members to execute arbitrary SQL commands in Matrix clients that...

WeGIA SQL注入漏洞

WeGIA is a web manager for welfare organizations. WeGIA suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the /WeGIA/html/socio/sistema/processadeletarsocio.php endpoint. An attacker could exploit this vulnerability to...

Code-Projects Job Diary 注入漏洞

Job Diary is a job diary software. Job Diary suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter ID in the file /view-emp.php. An attacker can exploit this vulnerability to execute illegal SQL commands to steal...

CVE-2025-7512

A vulnerability was found in code-projects Modern Bag 1.0. It has been classified as critical. Affected is an unknown function of the file /contact-back.php. The manipulation of the argument contact-name leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

PHPGurukul Student Result Management System 注入漏洞

Student Result Management System is a student result management system. Student Result Management System suffers from a SQL injection vulnerability that stems from an error in the parameter nid in the file /notice-details.php that lacks validation of externally entered SQL statements. An attacker...

Code-Projects Online Book Shop 注入漏洞

Code-Projects Online Book Shop is Code-Projects open source an online bookstore . Code-Projects Online Book Shop version 1.0 suffers from an injection vulnerability that stems from SQL injection due to incorrect manipulation of the parameter cid in the file /getdoctordaybooking.php...

Code-Projects Online Appointment Booking System 注入漏洞

Online Appointment Booking System is an online appointment booking system. Online Appointment Booking System suffers from a SQL injection vulnerability that stems from an error in the parameter doctorname in the file /ulocateus.php that lacks validation of externally entered SQL statements. An...

PHPGurukul Vehicle Parking Management System 安全漏洞

Vehicle Parking Management System is a parking management system. Vehicle Parking Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter del in the file /admin/manage-category.php. An attacker...

CVE-2025-7481

A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13. It has been classified as critical. This affects an unknown part of the file /users/profile.php. The manipulation of the argument firstname leads to sql injection. It is possible to initiate the attack remotely. The...

Code-Projects Simple Car Rental System 注入漏洞

Code-Projects Simple Car Rental System is an open source car rental software from Code-Projects. An injection vulnerability exists in Code-Projects Simple Car Rental System version 1.0, which originates from SQL injection due to incorrect manipulation of the parameter ID in the file...

PHPGurukul Vehicle Parking Management System 注入漏洞

Vehicle Parking Management System is a parking management system. Vehicle Parking Management System suffers from a SQL injection vulnerability that stems from an error in the parameter email in the file /users/forgot-password.php that lacks validation of externally entered SQL statements. An...

CampCodes Online Movie Theater Seat Reservation 注入漏洞

CampCodes Online Movie Theater Seat Reservation is an online theater seat reservation system from CampCodes Philippines. An injection vulnerability exists in CampCodes Online Movie Theater Seat Reservation version 1.0, which stems from a parameter mid operation resulting in SQL injection...

CampCodes Online Movie Theater Seat Reservation 注入漏洞

CampCodes Online Movie Theater Seat Reservation is an online theater seat reservation system from CampCodes Philippines. An injection vulnerability exists in CampCodes Online Movie Theater Seat Reservation version 1.0, which stems from a parameter ID manipulation leading to SQL injection...

VulnCheck KEV: CVE-2025-25257

An improper neutralization of special elements used in an SQL command 'SQL Injection' vulnerability CWE-89 vulnerability in Fortinet FortiWeb 7.6.0 through 7.6.3, FortiWeb 7.4.0 through 7.4.7, FortiWeb 7.2.0 through 7.2.10, FortiWeb 7.0.0 through 7.0.10 allows an unauthenticated attacker to execu...

CampCodes Online Recruitment Management System 安全漏洞

CampCodes Online Recruitment Management System is a recruitment management system from CampCodes Philippines, Inc. A security vulnerability exists in CampCodes Online Recruitment Management System version 1.0, which originates from a parameter ID operation leading to SQL injection...

CampCodes Online Movie Theater Seat Reservation 注入漏洞

CampCodes Online Movie Theater Seat Reservation is an online theater seat reservation system from CampCodes Philippines. An injection vulnerability exists in CampCodes Online Movie Theater Seat Reservation version 1.0, which stems from SQL injection due to incorrect manipulation of the parameter ...

CVE-2025-53549 Matrix Rust SDK allows SQL injection in the EventCache implementation

The Matrix Rust SDK is a collection of libraries that make it easier to build Matrix clients in Rust. An SQL injection vulnerability in the EventCache::findeventwithrelations method of matrix-sdk 0.11 and 0.12 allows malicious room members to execute arbitrary SQL commands in Matrix clients that...

CampCodes Payroll Management System 注入漏洞

CampCodes Payroll Management System is a payroll management system from CampCodes Philippines. An injection vulnerability exists in CampCodes Payroll Management System version 1.0, which is caused by a SQL injection due to incorrect manipulation of the parameter ID in file/ajax.php...