CVE-2022-43709 The Admin CP's Users module has a SQL injection vulnerability that allows remote users to modify the query string.
The SQL query string is sanitized before being sent to the database, but if an attacker could control the input to the query, it could
CVE-2022-44785 - Appalti & Contratti 9.12.2 SQL Injection Deep Dive — Unauthenticated Exploitation Exposed
Appalti & Contratti is a software used by several organizations for managing contracts and tenders, especially in public administration. In late 2022, a critical security
CVE-2022-43143 - Exploiting XSS in Beekeeper Studio v3.6.6 - A Simple Guide
---
Beekeeper Studio is a popular open-source SQL editor and database manager, loved by many developers for its ease of use. But in version 3.
CVE-2022-38148 Silverstripe silverstripe/framework through 4.11 allows SQL Injection.
This could allow attackers to execute arbitrary SQL commands against the database or obtain sensitive information by injecting valid data into forms. This issue has
CVE-2022-1578 - How a Simple CSRF Flaw in “My wpdb” WordPress Plugin Could Let Attackers Run Arbitrary SQL Queries
WordPress is the world’s most popular content management system, but its security is only as strong as the plugins it runs. In April 2022,
Episode
00:00:00
00:00:00