PT-2026-39159

Improper neutralization of special elements in .NET allows an unauthorized attacker to perform spoofing over a network...

CVE-2025-36424

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server could allow a user to cause a denial of service due to improper neutralization of special elements in data query logic...

CVE-2025-49854

CVE-2025-49854 describes an SQL Injection in WordPress Slim SEO (versions n/a through 4.5.4) due to improper neutralization of input in SQL commands. Public sources (NVD, CVE List, Patchstack entry) confirm the vulnerability exists in Slim SEO and has a patch/update path: upgrading to a version l...

The vulnerability of the bgpattrpsid_sub() function in the networking routing implementation software for Unix-like systems allows a attacker to cause a service failure.

The vulnerability of the bgpattrpsidsub function in the networking routing implementation software for Unix-like systems in FRRouting is related to the lack of measures taken to neutralize special elements. Exploiting this vulnerability can allow a malicious actor to cause service failures remote...

CVE-2023-39980

A vulnerability that allows the unauthorized disclosure of authenticated information has been identified in MXsecurity versions prior to v1.0.1. This vulnerability arises when special elements are not neutralized correctly, allowing remote attackers to alter SQL commands...

Forcepoint Cloud Security Gateway SQL注入漏洞

Forcepoint Cloud Security Gateway is a converged cloud security service from Forcepoint. An SQL injection vulnerability exists in the Forcepoint Cloud Security Gateway CSG Portal that stems from improper neutralization of special elements...