Search Results (36977 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2022-30818 1 Wedding Management System Project 1 Wedding Management System 2024-11-21 7.2 High
Wedding Management System v1.0 is vulnerable to SQL injection via /Wedding-Management/admin/blog_events_edit.php?id=31.
CVE-2022-30817 1 Simple Bus Ticket Booking System Project 1 Simple Bus Ticket Booking System 2024-11-21 9.8 Critical
Simple Bus Ticket Booking System 1.0 is vulnerable to SQL Injection via /SimpleBusTicket/index.php.
CVE-2022-30816 1 Elitecms 1 Elite Cms 2024-11-21 9.8 Critical
elitecms 1.01 is vulnerable to SQL Injection via /admin/edit_sidebar.php.
CVE-2022-30815 1 Elitecms 1 Elite Cms 2024-11-21 9.8 Critical
elitecms 1.01 is vulnerable to SQL Injection via admin/edit_sidebar.php?page=2&sidebar=
CVE-2022-30814 1 Elitecms 1 Elite Cms 2024-11-21 9.8 Critical
elitecms v1.01 is vulnerable to SQL Injection via /admin/add_sidebar.php.
CVE-2022-30813 1 Elitecms 1 Elite Cms 2024-11-21 9.8 Critical
elitecms 1.01 is vulnerable to SQL Injection via /admin/add_post.php.
CVE-2022-30810 1 Elitecms 1 Elite Cms 2024-11-21 9.8 Critical
elitecms v1.01 is vulnerable to SQL Injection via admin/edit_post.php.
CVE-2022-30809 1 Elitecms 1 Elite Cms 2024-11-21 9.8 Critical
elitecms 1.01 is vulnerable to SQL Injection via /admin/edit_page.php?page=.
CVE-2022-30799 1 Online Ordering System Project 1 Online Ordering System 2024-11-21 7.2 High
Online Ordering System v1.0 by oretnom23 has SQL injection via store/orderpage.php.
CVE-2022-30798 1 Online Ordering System Project 1 Online Ordering System 2024-11-21 7.2 High
Online Ordering System v1.0 by oretnom23 is vulnerable to SQL Injection via admin/viewreport.php.
CVE-2022-30797 1 Online Ordering System Project 1 Online Ordering System 2024-11-21 9.8 Critical
Online Ordering System 1.0 by oretnom23 is vulnerable to SQL Injection via admin/vieworders.php.
CVE-2022-30795 1 Online Ordering System Project 1 Online Ordering System 2024-11-21 7.2 High
Online Ordering System v1.0 by oretnom23 is vulnerable to SQL Injection via admin/editproductimage.php.
CVE-2022-30794 1 Online Ordering System Project 1 Online Ordering System 2024-11-21 7.2 High
Online Ordering System v1.0 by oretnom23 is vulnerable to SQL Injection via admin/editproductetails.php.
CVE-2022-30765 1 Janeczku 1 Calibre-web 2024-11-21 9.8 Critical
Calibre-Web before 0.6.18 allows user table SQL Injection.
CVE-2022-30746 1 Samsung 1 Smartthings 2024-11-21 7.5 High
Missing caller check in Smart Things prior to version 1.7.85.12 allows attacker to access senstive information remotely using javascript interface API.
CVE-2022-30731 1 Samsung 1 My Files 2024-11-21 5.1 Medium
Improper access control vulnerability in My Files prior to version 13.1.00.193 allows attackers to access arbitrary private files in My Files application.
CVE-2022-30634 3 Golang, Microsoft, Netapp 3 Go, Windows, Cloud Insights Telegraf Agent 2024-11-21 7.5 High
Infinite loop in Read in crypto/rand before Go 1.17.11 and Go 1.18.3 on Windows allows attacker to cause an indefinite hang by passing a buffer larger than 1 << 32 - 1 bytes.
CVE-2022-30619 1 Agilepoint 1 Agilepoint Nx 2024-11-21 5.9 Medium
Editable SQL Queries behind Base64 encoding sending from the Client-Side to The Server-Side for a particular API used in legacy Work Center module. He attack is available for any authenticated user, in any kind of rule. under the function : /AgilePointServer/Extension/FetchUsingEncodedData in the parameter: EncodedData
CVE-2022-30599 3 Fedoraproject, Moodle, Redhat 3 Fedora, Moodle, Enterprise Linux 2024-11-21 9.8 Critical
A flaw was found in moodle where an SQL injection risk was identified in Badges code relating to configuring criteria.
CVE-2022-30594 4 Debian, Linux, Netapp and 1 more 24 Debian Linux, Linux Kernel, 8300 and 21 more 2024-11-21 7.8 High
The Linux kernel before 5.17.2 mishandles seccomp permissions. The PTRACE_SEIZE code path allows attackers to bypass intended restrictions on setting the PT_SUSPEND_SECCOMP flag.