Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
code injection vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2018-3810
Authentication Bypass vulnerability in the Oturia Smart Google Code Inserter plugin prior to 3.5 for WordPress allows unauthenticated malicious users to insert arbitrary JavaScript or HTML code (via the sgcgoogleanalytic parameter) that runs on all pages served by WordPress. The ...
Oturia Smart Google Code Inserter
1 EDB exploit
1 Github repository
NA
CVE-2024-25220
Task Manager App v1.0 exists to contain a SQL injection vulnerability via the taskID parameter at /TaskManager/EditTask.php.
Task Manager In Php With Source Code Project Task Manager In Php With Source Code 1.0
NA
CVE-2024-25222
Task Manager App v1.0 exists to contain a SQL injection vulnerability via the projectID parameter at /TaskManager/EditProject.php.
Task Manager In Php With Source Code Project Task Manager In Php With Source Code 1.0
NA
CVE-2023-42359
SQL injection vulnerability in Exam Form Submission in PHP with Source Code v.1.0 allows a remote malicious user to escalate privileges via the val-username parameter in /index.php.
Exam Form Submission In Php With Source Code Project Exam Form Submission In Php With Source Code 1.0
NA
CVE-2023-46021
SQL Injection vulnerability in cancel.php in Code-Projects Blood Bank 1.0 allows malicious users to run arbitrary commands via the 'reqid' parameter.
Code-projects Blood Bank 1.0
1 Github repository
NA
CVE-2023-46582
SQL injection vulnerability in Inventory Management v.1.0 allows a local malicious user to execute arbitrary SQL commands via the id paramter in the deleteProduct.php component.
Code-projects Inventory Management 1.0
1 Github repository
NA
CVE-2023-46581
SQL injection vulnerability in Inventory Management v.1.0 allows a local malicious user to execute arbitrary code via the name, uname and email parameters in the registration.php component.
Code-projects Inventory Management 1.0
1 Github repository
NA
CVE-2023-7129
A vulnerability, which was classified as critical, was found in code-projects Voting System 1.0. Affected is an unknown function of the component Voters Login. The manipulation of the argument voter leads to sql injection. The exploit has been disclosed to the public and may be u...
Code-projects Voting System 1.0
NA
CVE-2023-7128
A vulnerability, which was classified as critical, has been found in code-projects Voting System 1.0. This issue affects some unknown processing of the file /admin/ of the component Admin Login. The manipulation of the argument username leads to sql injection. The exploit has bee...
Code-projects Voting System 1.0
NA
CVE-2023-48078
SQL Injection vulnerability in add.php in Simple CRUD Functionality v1.0 allows malicious users to run arbitrary SQL commands via the 'title' parameter.
Code-projects Simple Crud Functionality 1.0
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »