CVE-2026-1577

IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 for Linux, UNIX and Windows includes Db2 Connect Server could allow an authenticated user to cause a denial of service due to improper neutralization of special elements in data query logic...

AKCE SKSPro SQL注入漏洞

AKCE SKSPro is a medical quality management system developed by the Turkish company AKCE. Versions of AKCE SKSPro prior to 07012026 contained an SQL injection vulnerability. This vulnerability stemmed from improper handling of special elements used in SQL commands, which could lead to SQL...

CVE-2025-36424

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server could allow a user to cause a denial of service due to improper neutralization of special elements in data query logic...

CVE-2025-36427

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server could allow a user to cause a denial of service due to insufficient validation of special elements in data query logic...

CVE-2025-36424

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server could allow a user to cause a denial of service due to improper neutralization of special elements in data query logic...

UBUNTU-CVE-2025-36427

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server could allow a user to cause a denial of service due to insufficient validation of special elements in data query logic...

CVE-2025-36423

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server 12.1.0 - 12.1.3 could allow a local user to cause a denial of service due to improper neutralization of special elements in data query logic...

CVE-2025-36424

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server could allow a user to cause a denial of service due to improper neutralization of special elements in data query logic...

PT-2026-5451

Name of the Vulnerable Software and Affected Versions IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server versions 11.5.0 through 11.5.9 IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server versions 12.1.0 through 12.1.3 Description The software may allow a local user to...

The vulnerability of the Redmine project and task management web application, related to insufficient neutralization of special elements in the query, allows a hacker to gain access to confidential data.

The vulnerability of the Redmine project and task management web application relates to the insufficient neutralization of certain elements in the query. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain access to confidential data...

The vulnerability of the evolution-data-server database server, related to insufficient neutralization of special elements in queries, allows attackers to compromise data integrity.

The vulnerability of the evolution-data-server database server is related to a STARTTLS framing error, which can affect SMTP and POP3 protocols. Exploiting this vulnerability allows an attacker to compromise the integrity of data...