PT-2026-39159

Improper neutralization of special elements in .NET allows an unauthorized attacker to perform spoofing over a network...

CVE-2025-36424

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server could allow a user to cause a denial of service due to improper neutralization of special elements in data query logic...

CVE-2025-49854

CVE-2025-49854 describes an SQL Injection in WordPress Slim SEO (versions n/a through 4.5.4) due to improper neutralization of input in SQL commands. Public sources (NVD, CVE List, Patchstack entry) confirm the vulnerability exists in Slim SEO and has a patch/update path: upgrading to a version l...

CVE-2023-39980

A vulnerability that allows the unauthorized disclosure of authenticated information has been identified in MXsecurity versions prior to v1.0.1. This vulnerability arises when special elements are not neutralized correctly, allowing remote attackers to alter SQL commands...

Forcepoint Cloud Security Gateway SQL注入漏洞

Forcepoint Cloud Security Gateway is a converged cloud security service from Forcepoint. An SQL injection vulnerability exists in the Forcepoint Cloud Security Gateway CSG Portal that stems from improper neutralization of special elements...