Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sql injection vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-33266
SQL Injection vulnerability in Helloshop deliveryorderautoupdate v.2.8.1 and before allows an malicious user to run arbitrary SQL commands via the DeliveryorderautoupdateOrdersModuleFrontController::initContent function.
NA
CVE-2024-33268
SQL Injection vulnerability in Digincube mdgiftproduct prior to 1.4.1 allows an malicious user to run arbitrary SQL commands via the MdGiftRule::addGiftToCart method.
NA
CVE-2024-33269
SQL Injection vulnerability in Prestaddons flashsales 1.9.7 and before allows an malicious user to run arbitrary SQL commands via the FsModel::getFlashSales method.
NA
CVE-2024-33272
SQL injection vulnerability in KnowBand for PrestaShop autosuggest prior to 2.0.0 allows an malicious user to run arbitrary SQL commands via the AutosuggestSearchModuleFrontController::initContent(), and AutosuggestSearchModuleFrontController::getKbProducts() components.
NA
CVE-2024-33276
SQL Injection vulnerability in FME Modules preorderandnotication v.3.1.0 and before allows a remote malicious user to run arbitrary SQL commands via the PreorderModel::getIdProductAttributesByIdAttributes() method.
NA
CVE-2024-31821
SQL Injection vulnerability in Ecommerce-CodeIgniter-Bootstrap commit v. d22b54e8915f167a135046ceb857caaf8479c4da allows a remote malicious user to execute arbitrary code via the manageQuantitiesAndProcurement method of the Orders_model.php component.
NA
CVE-2024-33444
SQL injection vulnerability in onethink v.1.1 allows a remote malicious user to escalate privileges via a crafted script to the ModelModel.class.php component.
NA
CVE-2024-4307
SQL injection vulnerability in HubBank affecting version 1.0.2. This vulnerability could allow an malicious user to send a specially crafted SQL query to the database through different endpoints (/accounts/activities.php?id=1, /accounts/view-deposit.php?id=1, /accounts/view_cards...
NA
CVE-2024-4309
SQL injection vulnerability in HubBank affecting version 1.0.2. This vulnerability could allow an malicious user to send a specially crafted SQL query to the database through different endpoints (/user/transaction.php?id=1, /user/credit-debit_transaction.php?id=1,/user/view_trans...
NA
CVE-2024-4308
SQL injection vulnerability in HubBank affecting version 1.0.2. This vulnerability could allow an malicious user to send a specially crafted SQL query to the database through different endpoints (/admin/view_users.php?id=1,/admin/viewloan-trans.php?id=1,/admin/view-deposit.php?id...
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-35000
CVE-2024-4439
unauthorized
CVE-2024-0042
CVE-2024-31848
CVE-2023-40694
cache poisoning
CVE-2024-23707
firmware
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »