Data Manipulation

S-CMS index.php SQL injection | CVE-2023-7189

January 2, 2024

NAME__________S-CMS index.php SQL injectionPlatforms Affected:S-CMS S-CMS 2.0_build20220529-20231006Risk Level:5.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________S-CMS is vulnerable to SQL injection. A remote authenticated attacker could...

NOKIA NFM-T SQL injection | CVE-2022-39822

December 28, 2023

NAME__________NOKIA NFM-T SQL injectionPlatforms Affected:NOKIA NFM-T R19.9Risk Level:5.4Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________NOKIA NFM-T is vulnerable to SQL injection. A remote authenticated attacker...

GilaCMS SQL injection | CVE-2020-26623

December 27, 2023

NAME__________GilaCMS SQL injectionPlatforms Affected:Risk Level:7.2Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________GilaCMS is vulnerable to SQL injection. A remote authenticated attacker could send specially crafted...

GilaCMS SQL injection | CVE-2020-26625

December 27, 2023

GilaCMS SQL injection | CVE-2020-26624

December 27, 2023

Hospital Management System SQL injection | CVE-2020-26627

December 27, 2023

NAME__________Hospital Management System SQL injectionPlatforms Affected:Risk Level:7.2Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Hospital Management System is vulnerable to SQL injection. A remote authenticated attacker...

Hospital Management System SQL injection | CVE-2020-26628

December 27, 2023

IBM Financial Transaction Manager for SWIFT Services data manipulation | CVE-2023-49880

December 25, 2023

NAME__________IBM Financial Transaction Manager for SWIFT Services data manipulationPlatforms Affected:IBM Financial Transaction Manager for SWIFT Services 3.2.4Risk Level:7.5Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________In...

Apache Superset SQL injection | CVE-2023-49736

December 20, 2023

NAME__________Apache Superset SQL injectionPlatforms Affected:Apache Superset 2.1.2 Apache Superset 3.0.0Risk Level:5.4Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Apache Superset is vulnerable to SQL injection. A...

SchedMD Slurm SQL injection | CVE-2023-49934

December 19, 2023

NAME__________SchedMD Slurm SQL injectionPlatforms Affected:SchedMD Slurm 22.05 SchedMD Slurm 23.02Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________SchedMD Slurm is vulnerable to SQL injection. A...

Apache StreamPark (incubating) SQL injection | CVE-2023-30867

December 19, 2023

NAME__________Apache StreamPark (incubating) SQL injectionPlatforms Affected:Apache StreamPark (incubating) 2.0.0 Apache StreamPark (incubating) 2.1.1Risk Level:5.4Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Apache StreamPark (incubating) is vulnerable...

3CX SQL injection | CVE-2023-49954

December 19, 2023

NAME__________3CX SQL injectionPlatforms Affected:3CX 3CX 15.5.8801.3 3CX 3CX 18.0.9.23Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________3CX is vulnerable to SQL injection. A remote attacker...

GLPI SQL injection | CVE-2023-43813

December 18, 2023

NAME__________GLPI SQL injectionPlatforms Affected:GLPI GLPI 10.0.10Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________GLPI is vulnerable to SQL injection. A remote authenticated attacker could send...

Dell PowerProtect DD appliance SQL injection | CVE-2023-44284

December 16, 2023

NAME__________Dell PowerProtect DD appliance SQL injectionPlatforms Affected:Dell PowerProtect DD 7.13.0.10 Dell PowerProtect DD LTS 7.10.1.15 Dell PowerProtect DD 6.2.1.110 Dell...

Joomla! S5 Register extension SQL injection | CVE-2023-49707

December 15, 2023

NAME__________Joomla! S5 Register extension SQL injectionPlatforms Affected:Joomla! S5 Register extension for Joomla!Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Joomla! S5 Register extension is vulnerable...

Joomla! Starshop extension SQL injection | CVE-2023-49708

December 15, 2023

NAME__________ Joomla! Starshop extension SQL injection Platforms Affected:Joomla Starshop extension for Joomla!Risk Level:6.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Joomla! Starshop extension is vulnerable to...

Simple Student Attendance System SQL injection | CVE-2023-6619

December 13, 2023

NAME__________Simple Student Attendance System SQL injectionPlatforms Affected:Sourcecodester Simple Student Attendance System 1.0Risk Level:5.5Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Simple Student Attendance System is vulnerable...

SAP NetWeaver AS ABAP and ABAP Platform SQL injection | CVE-2023-49581

December 13, 2023

NAME__________SAP NetWeaver AS ABAP and ABAP Platform SQL injectionPlatforms Affected:SAP NetWeaver AS ABAP SAP_BASIS 731 SAP NetWeaver AS ABAP SAP_BASIS...

Matrimonial Site SQL injection | CVE-2023-6652

December 12, 2023

NAME__________Matrimonial Site SQL injectionPlatforms Affected:SourceCode and Projects Matrimonial Site 1.0Risk Level:7.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Matrimonial Site is vulnerable to SQL injection. A...

Simple Student Attendance System SQL injection | CVE-2023-6658

December 12, 2023

Simple Student Attendance System SQL injection | CVE-2023-6657

December 12, 2023

Student Clearance System SQL injection | CVE-2023-6659

December 12, 2023

NAME__________Student Clearance System SQL injectionPlatforms Affected:CampCodes Student Clearance System 1.0Risk Level:6.3Exploitability:HighConsequences:Data Manipulation DESCRIPTION__________Student Clearance System is vulnerable to SQL injection....

osCommerce SQL injection | CVE-2023-6579

December 9, 2023

NAME__________osCommerce SQL injectionPlatforms Affected:Risk Level:7.3Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________osCommerce is vulnerable to SQL injection. A remote attacker could send specially crafted SQL...

Restaurant Table Booking System SQL injection | CVE-2023-48016

December 5, 2023

NAME__________Restaurant Table Booking System SQL injectionPlatforms Affected:PHPGurukul Restaurant Table Booking System 1.0Risk Level:6.5Exploitability:UnprovenConsequences:Data Manipulation DESCRIPTION__________Restaurant Table Booking System is vulnerable...

Data Manipulation

S-CMS index.php SQL injection | CVE-2023-7189

NOKIA NFM-T SQL injection | CVE-2022-39822

GilaCMS SQL injection | CVE-2020-26623

GilaCMS SQL injection | CVE-2020-26625

GilaCMS SQL injection | CVE-2020-26624

Hospital Management System SQL injection | CVE-2020-26627

Hospital Management System SQL injection | CVE-2020-26628

IBM Financial Transaction Manager for SWIFT Services data manipulation | CVE-2023-49880

Apache Superset SQL injection | CVE-2023-49736

SchedMD Slurm SQL injection | CVE-2023-49934

Apache StreamPark (incubating) SQL injection | CVE-2023-30867

3CX SQL injection | CVE-2023-49954

GLPI SQL injection | CVE-2023-43813

Dell PowerProtect DD appliance SQL injection | CVE-2023-44284

Joomla! S5 Register extension SQL injection | CVE-2023-49707

Joomla! Starshop extension SQL injection | CVE-2023-49708

Simple Student Attendance System SQL injection | CVE-2023-6619

SAP NetWeaver AS ABAP and ABAP Platform SQL injection | CVE-2023-49581

Matrimonial Site SQL injection | CVE-2023-6652

Simple Student Attendance System SQL injection | CVE-2023-6658

Simple Student Attendance System SQL injection | CVE-2023-6657

Student Clearance System SQL injection | CVE-2023-6659

osCommerce SQL injection | CVE-2023-6579

Restaurant Table Booking System SQL injection | CVE-2023-48016

[DARKVAULT] – Ransomware Victim: yoniot[.]cn

[AKIRA] – Ransomware Victim: A Bar A Ranch

CVE Alert: CVE-2024-13131

CVE Alert: CVE-2024-13132

CVE Alert: CVE-2024-13130

You may have missed