CWE-74: Injection

This SQL injection vulnerability in Medical Store Management System 1.0 allows attackers to manipulate database queries through the productNameTxt par...

This is a critical SQL injection vulnerability in zhilink ADP Application Developer Platform 1.0.0 that allows remote attackers to execute arbitrary S...

This critical SQL injection vulnerability in Wanzhou WOES Intelligent Optimization Energy Saving System 1.0 allows remote attackers to execute arbitra...

This critical SQL injection vulnerability in Wanzhou WOES Intelligent Optimization Energy Saving System 1.0 allows attackers to execute arbitrary SQL ...

This critical SQL injection vulnerability in Wanzhou WOES Intelligent Optimization Energy Saving System 1.0 allows remote attackers to execute arbitra...

CVE-2025-8701 is a critical SQL injection vulnerability in Wanzhou WOES Intelligent Optimization Energy Saving System 1.0. Attackers can exploit the /...

This critical SQL injection vulnerability in Human Resource Integrated System 1.0 allows remote attackers to execute arbitrary SQL commands via the 'c...

This critical SQL injection vulnerability in Campcodes Online Hotel Reservation System 1.0 allows attackers to manipulate database queries via the roo...

This critical SQL injection vulnerability in Kehua Charging Pile Cloud Platform 1.0 allows remote attackers to execute arbitrary SQL commands via the ...

This critical SQL injection vulnerability in Shanghai Lingdang Information Technology's Lingdang CRM allows remote attackers to execute arbitrary SQL ...

This critical SQL injection vulnerability in Campcodes Courier Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the...

A critical SQL injection vulnerability in Campcodes Courier Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the ID...

A critical SQL injection vulnerability exists in Jingmen Zeyou Large File Upload Control versions up to 6.3. Attackers can remotely exploit this vulne...

This critical SQL injection vulnerability in Campcodes Courier Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the...

A critical SQL injection vulnerability in Campcodes Courier Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the ID...

CVE-2025-8186 is a critical SQL injection vulnerability in Campcodes Courier Management System 1.0 that allows remote attackers to execute arbitrary S...

This critical SQL injection vulnerability in Food Review System 1.0 allows remote attackers to execute arbitrary SQL commands via the 'occasion' param...

This critical SQL injection vulnerability in deerwms deer-wms-2 allows remote attackers to execute arbitrary SQL commands via the params[dataScope] pa...

A critical SQL injection vulnerability in deerwms deer-wms-2 allows remote attackers to execute arbitrary SQL commands via the params[dataScope] param...

This critical SQL injection vulnerability in PHPGurukul Login and User Management System 3.3 allows remote attackers to execute arbitrary SQL commands...

This critical SQL injection vulnerability in PHPGurukul User Registration & Login and User Management 3.3 allows remote attackers to execute arbitrary...

A critical SQL injection vulnerability in itsourcecode Insurance Management System 1.0 allows remote attackers to execute arbitrary SQL commands via t...

A critical SQL injection vulnerability in PHPGurukul BP Monitoring Management System 1.0 allows remote attackers to execute arbitrary SQL commands via...

A critical SQL injection vulnerability in deerwms deer-wms-2 allows remote attackers to execute arbitrary SQL commands via the params[dataScope] param...

This critical SQL injection vulnerability in deerwms deer-wms-2 allows remote attackers to execute arbitrary SQL commands via the params[dataScope] pa...

This critical SQL injection vulnerability in deerwms deer-wms-2 allows remote attackers to execute arbitrary SQL commands via the 'ancestors' paramete...

This critical vulnerability in TOTOLINK T6 routers allows remote attackers to execute arbitrary commands via command injection in the MQTT packet hand...

This critical SQL injection vulnerability in the fuyang_lipengjun platform allows remote attackers to execute arbitrary SQL commands via the beanName/...

This CVE describes a critical SQL injection vulnerability in the fuyang_lipengjun platform's ScheduleJobController. Attackers can exploit this by mani...

This critical vulnerability in D-Link DIR-817L routers allows remote attackers to execute arbitrary commands via command injection in the ssdpcgi comp...

This critical SQL injection vulnerability in PHPGurukul Online Banquet Booking System 1.0 allows attackers to manipulate database queries through the ...

This critical SQL injection vulnerability in Onyx's chat interface allows attackers to execute arbitrary SQL commands through the generate_simple_sql ...

This critical SQL injection vulnerability in TDuckCloud tduck-platform allows remote attackers to execute arbitrary SQL commands by manipulating the f...

This critical SQL injection vulnerability in Metasoft MetaCRM allows attackers to execute arbitrary SQL commands by manipulating the workerid paramete...

A critical SQL injection vulnerability exists in Patient Record Management System 1.0 where attackers can manipulate the itr_no parameter in /xray_for...

This critical vulnerability in TOTOLINK T6 routers allows remote attackers to execute arbitrary commands via command injection in the delDevice functi...

This critical SQL injection vulnerability in FoxCMS allows remote attackers to execute arbitrary SQL commands through the batchCope function in Video....

A critical SQL injection vulnerability exists in PHPGurukul Online Fire Reporting System 1.2, specifically in the /admin/completed-requests.php file v...

This critical SQL injection vulnerability in PHPGurukul Online Fire Reporting System 1.2 allows remote attackers to manipulate database queries via th...

This critical SQL injection vulnerability in code-projects Voting System 1.0 allows remote attackers to execute arbitrary SQL commands via the firstna...

This critical SQL injection vulnerability in code-projects Voting System 1.0 allows remote attackers to manipulate database queries through the ID par...

This critical SQL injection vulnerability in PHPGurukul User Registration & Login and User Management System 3.3 allows remote attackers to manipulate...

This critical vulnerability in TOTOLINK T6 routers allows remote attackers to execute arbitrary commands via command injection in the HTTP POST reques...

This critical SQL injection vulnerability in PHPGurukul Vehicle Parking Management System allows remote attackers to execute arbitrary SQL commands vi...

This critical SQL injection vulnerability in PHPGurukul Vehicle Parking Management System 1.13 allows remote attackers to execute arbitrary SQL comman...

This critical SQL injection vulnerability in PHPGurukul Vehicle Parking Management System allows remote attackers to execute arbitrary SQL commands vi...

This critical SQL injection vulnerability in PHPGurukul Vehicle Parking Management System allows attackers to manipulate database queries through the ...

This critical vulnerability in Tenda O3V2 routers allows remote attackers to execute arbitrary commands via command injection in the httpd component. ...

This critical SQL injection vulnerability in the Pharmacy Management System allows attackers to execute arbitrary SQL commands by manipulating med_nam...

This critical vulnerability in D-Link DIR-645 routers allows remote attackers to execute arbitrary commands via command injection in the ssdpcgi compo...