nitaimaarek files profiles projects webhooks mail bin scripts games ai minecraft status about tools shortener qr virtual
sign in

DB

— database vulnerabilities from Exploit-DB

showing 400 of 9278 matching entries — refine your search to narrow it

EDB-IDdatetypeplatformdescription
526092026-06-05webappsmultipleWordPress Contest Gallery 28.1.4 - Unauthenticated Blind SQL Injection
526082026-06-01webappsphpDrupal Core 10.5.5 - Error-Based SQL Injection
526002026-05-29webappsmultipleMikroORM 7.0.13 - SQL Injection
525792026-05-27webappsmultipleOpenCATS 0.9.7.4 - SQL Injection
525552026-05-07webappsmultipleGhost CMS 6.19.0 - SQLi
524992026-04-08localwindowsSQLite 3.50.1 - Heap Overflow
524832026-03-03webappsphpWeGIA 3.5.0 - SQL Injection
524732026-02-04webappsmultipleFortiWeb Fabric Connector 7.6.x - SQL Injection to Remote Code Execution
524652025-12-25webappsmultipleWordPress Quiz Maker 6.7.0.56 - SQL Injection
524622025-12-16webappsmultipleSummar Employee Portal 3.98.0 - Authenticated SQL Injection
524562025-12-03webappsmultipleDjango 5.1.13 - SQL Injection
524512025-12-03webappsphpphpMyAdmin 5.0.0 - SQL Injection
524472025-12-03webappsphpopenSIS Community Edition 8.0 - SQL Injection
524442025-12-02webappsphpphpIPAM 1.5.1 - SQL Injection
524432025-12-02webappsphpPiwigo 13.6.0 - SQL Injection
524312025-09-16webappsmultipledotCMS 25.07.02-1 - Authenticated Blind SQL Injection
524302025-09-16webappsmultipleELEX WooCommerce WordPress Plugin 1.4.3 - SQL Injection
524202025-08-26webappsmultipleLingdang CRM 8.6.4.7 - SQL Injection
524142025-08-18remotephpPHPMyAdmin 3.0 - Bruteforce Login Bypass
524122025-08-18webappsmultipleBigAnt Office Messenger 5.6.06 - SQL Injection
523982025-08-11webappsmultipleprojectworlds Online Admission System 1.0 - SQL Injection
523882025-08-03webappsmultipleGandia Integra Total 4.4.2236.1 - SQL Injection
523842025-07-28webappsmultipleXWiki 14 - SQL Injection via getdeleteddocuments.vm
523832025-07-28webappsmultipleInvision Community 4.7.20 - (calendar/view.php) SQL Injection
523732025-07-22webappsphpJoomla JS Jobs plugin 1.4.2 - SQL injection
523142025-06-05webappsphpCloudClassroom PHP Project 1.0 - SQL Injection
523122025-05-29webappsmultipleCampcodes Online Hospital Management System 1.0 - SQL Injection
522852025-05-09webappsmultipleWordPress Depicter Plugin 3.6.1 - SQL Injection
522652025-04-18webappsphpKiviCare Clinic & Patient Management System (EHR) 3.6.4 - Unauthenticated SQL Injection
522632025-04-18webappsphpInventio Lite 4 - SQL Injection
522482025-04-16webappsmultipleWooCommerce Customers Manager 29.4 - Post-Authenticated SQL Injection
522472025-04-16webappsphpSmart Manager 8.27.0 - Post-Authenticated SQL Injection
522302025-04-16webappsphpZabbix 7.0.0 - SQL Injection
522202025-04-15hardwaremultipleABB Cylon Aspect 3.08.03 (CookieDB) - SQL Injection
521932025-04-14webappsmultiplePimcore customer-data-framework 4.2.0 - SQL injection
521922025-04-14webappsmultipleXinet Elegant 6 Asset Lib Web UI 6.1.655 - SQL Injection
521742025-04-11webappsphpNEWS-BUZZ News Management System 1.0 - SQL Injection
521712025-04-11webappsphpLearnPress WordPress LMS Plugin 4.2.7 - SQL Injection
521692025-04-11webappsphpRosarioSIS 7.6 - SQL Injection
521672025-04-11webappsphpGnuboard5 5.3.2.8 - SQL Injection
521572025-04-10webappsphpPandoraFMS 7.0NG.772 - SQL Injection
521542025-04-10webappsphpFeng Office 3.11.1.2 - SQL Injection
521522025-04-09webappsphpChurchCRM 5.9.1 - SQL Injection
521282025-04-06webappsjavaDataEase 2.4.0 - Database Configuration Information Exposure
521222025-04-05remotehardwareMicrochip TimeProvider 4100 Grandmaster (Data plot modules) 2.4.6 - SQL Injection
521002025-03-28webappsphpCodeCanyon RISE CRM 3.7.0 - SQL Injection
520942025-03-22webappsphpTeamPass 3.0.0.21 - SQL Injection
520912025-03-21webappsphpJasmin Ransomware - SQL Injection Login Bypass
520892025-03-20webappsphpJUX Real Estate 3.4.0 - SQL Injection
520802024-10-01webappsphpopenSIS 9.1 - SQLi (Authenticated)
520632024-08-04localwindowsOracle Database 12c Release 1 - Unquoted Service Path
520602024-07-01webappsphpXhibiter NFT Marketplace 1.10.2 - SQL Injection
520592024-07-01webappsphpAzon Dominator Affiliate Marketing Script - SQL Injection
520522024-06-14webappsphpBoelter Blue System Management 1.3 - SQL Injection
520462024-06-14webappsphpAEGON LIFE v1.0 Life Insurance Management System - SQL injection vulnerability.
520242024-05-31webappsphpBWL Advanced FAQ Manager 2.0.3 - Authenticated SQL Injection
520192024-05-19webappsphpWordpress Theme XStore 9.3.8 - SQLi
520172024-05-13webappsphpPrison Management System - SQL Injection Authentication Bypass
519902024-04-13webappsphpStock Management System v1.0 - Unauthenticated SQL Injection
519892024-04-13webappsphpOnline Fire Reporting System OFRS - SQL Injection Authentication Bypass
519852024-04-12webappsphpWBCE 1.6.0 - Unauthenticated SQL injection
519842024-04-12webappsphpMoodle 3.10.1 - Authenticated Blind Time-Based SQL Injection - _sort_ parameter
519742024-04-08webappsphpOpen Source Medicine Ordering System v1.0 - SQLi
519732024-04-08webappsphpDaily Expense Manager 1.0 - 'term' SQLi
519722024-04-08webappsphpBest Student Result Management System v1.0 - Multiple SQLi
519712024-04-08webappsphpHuman Resource Management System v1.0 - Multiple SQLi
519652024-04-03webappsphpComputer Laboratory Management System v1.0 - Multiple-SQLi
519582024-04-02webappsphpSmart School 6.4.1 - SQL Injection
519562024-04-02webappsphpElementor Website Builder < 3.12.2 - Admin+ SQLi
519532024-04-02webappsphpDaily Habit Tracker 1.0 - SQL Injection
519512024-04-02webappsphpEmployee Management System 1.0 - _txtusername_ and _txtpassword_ SQL Injection (Admin Login)
519502024-04-02webappsphpEmployee Management System 1.0 - _txtfullname_ and _txtphone_ SQL Injection
519402024-04-02webappsphpOpenCart Core 4.0.2.3 - 'search' SQLi
519382024-04-02webappsphpOnline Hotel Booking In PHP 1.0 - Blind SQL Injection (Unauthenticated)
519292024-03-28webappsphpPurei CMS 1.0 - SQL Injection
519252024-03-25webappsmultipleNagios XI Version 2024R1.01 - SQL Injection
519212024-03-25webappsphpMobileShop master v1.0 - SQL Injection Vuln.
519202024-03-25webappsphpInsurance Management System PHP and MySQL 1.0 - Multiple Stored XSS
519162024-03-20webappsphpCSZCMS v1.3.0 - SQL Injection (Authenticated)
519142024-03-20webappsphpTeacher Subject Allocation Management System 1.0 - 'searchdata' SQLi
519132024-03-20webappsphpSimple Task List 1.0 - 'status' SQLi
519122024-03-20webappsphpBlood Bank 1.0 - 'bid' SQLi
519112024-03-20webappsphpEmployee Management System 1.0 - 'admin_id' SQLi
519102024-03-18webappsphpQuick.CMS 6.7 - SQL Injection Login Bypass
518942024-03-16localwindowsLaborOfficeFree 19.10 - MySQL Root Password Calculator
518802024-03-12webappsphpClient Details System 1.0 - SQL Injection
518772024-03-12webappsphpHuman Resource Management System 1.0 - 'employeeid' SQL Injection
518712024-03-10webappsphpHide My WP < 6.2.9 - Unauthenticated SQLi
518622024-03-06webappsphpCVE-2023-50071 - Multiple SQL Injection
518452024-03-03remotephpEnrollment System v1.0 - SQL Injection
518442024-03-03remotephpAC Repair and Services System v1.0 - Multiple SQL Injection
518422024-03-03remotephpSimple Student Attendance System v1.0 - 'classid' Time Based Blind & Union Based SQL Injection
518412024-03-03remotephpSimple Student Attendance System v1.0 - Time Based Blind SQL Injection
518382024-03-03remotephpPetrol Pump Management Software v.1.0 - SQL Injection
518352024-02-28webappsphpWP Fastest Cache 1.2.2 - Unauthenticated SQL Injection
518332024-02-28webappsphpBlood Bank v1.0 - Multiple SQL Injection
518182024-02-27webappsphpdawa-pharma 1.0-2022 - Multiple-SQLi
518132024-02-26remotephpFAQ Management System v1.0 - 'faq' SQL Injection
518122024-02-26remotephpFlashcard Quiz App v1.0 - 'card' SQL Injection
518112024-02-26webappsphpOnline Shopping System Advanced - Sql Injection
518102024-02-26webappsphptaskhub 2.8.7 - SQL Injection
518082024-02-26remotephpSimple Inventory Management System v1.0 - 'email' SQL Injection
518062024-02-19webappsphpJFrog Artifactory < 7.25.4 - Blind SQL Injection
518032024-02-19webappsphpEmployee Management System v1 - 'email' SQL Injection
517912024-02-09webappsphpOnline Nurse Hiring System 1.0 - Time-Based SQL Injection
517902024-02-09webappsphpRail Pass Management System 1.0 - Time-Based SQL Injection
517782024-02-05webappsphpCurfew e-Pass Management System 1.0 - FromDate SQL Injection
517592024-01-31webappsphp101 News 1.0 - Multiple-SQLi
517582024-01-31webappsphpAcademy LMS 6.2 - SQL Injection
517542024-01-29webappsphpPHP Shopping Cart 4.2 - Multiple-SQLi
517532024-01-29webappsphpFundraising Script 1.0 - SQLi
517512024-01-29webappsphpBank Locker Management System - SQL Injection
517492024-01-29remotephpEquipment Rental Script-1.0 - SQLi
517452023-10-09webappsphpShuttle-Booking-Software v1.0 - Multiple-SQLi
517292023-10-09webappsphpClcknshop 1.0.0 - SQL Injection
517142023-09-08webappsphpSPA-Cart eCommerce CMS 1.9.0.3 - SQL Injection
517122023-09-04webappsphpBus Reservation System 1.1 - Multiple-SQLi
517112023-09-04webappsphpWP Statistics Plugin 13.1.5 current_page_id - Time based SQL injection (Unauthenticated)
517012023-09-04webappsphpCredit Lite 1.5.4 - SQL Injection
516952023-08-24webappsphpUser Registration & Login and User Management System v3.0 - SQL Injection (Unauthenticated)
516922023-08-21webappsphpTaskhub CRM Tool 2.8.6 - SQL Injection
516912023-08-21webappsphpOVOO Movie Portal CMS v3.3.3 - SQL Injection
516902023-08-21webappsphpGlobal - Multi School Management System Express v1.0- SQL Injection
516892023-08-21webappsphpColor Prediction Game v1.0 - SQL Injection
516552023-08-04webappsphpWordPress adivaha Travel Plugin 2.3 - SQL Injection
516322023-07-28webappsphpWordPress Plugin AN_Gradebook 5.0.1 - SQLi
516102023-07-20webappsphpWifi Soft Unibox Administration 3.0 & 3.1 - SQL Injection
515962023-07-19webappsphpVaidya-Mitra 1.0 - Multiple SQLi
515872023-07-15webappsphpNews Portal v4.0 - SQL Injection (Unauthorized)
515732023-07-07webappsphpFaculty Evaluation System v1.0 - SQL Injection
515702023-07-06webappsphpLost and Found Information System v1.0 - SQL Injection
515682023-07-04webappsphpBeauty Salon Management System v1.0 - SQLi
515602023-07-03webappsphpWP AutoComplete 1.0.4 - Unauthenticated SQLi
515272023-06-19webappsphpJobpilot v2.61 - SQL Injection
515262023-06-19webappsphpGroomify v1.0 - SQL Injection
515252023-06-19webappsphpThe Shop v2.5 - SQL Injection
515212023-06-14webappsphpOnline Thesis Archiving System v1.0 - Multiple-SQLi
515042023-06-04webappsphpMotoCMS Version 3.4.3 - SQL Injection
515012023-06-04webappsphpEnrollment System Project v1.0 - SQL Injection Authentication Bypass (SQLI)
514912023-05-31webappsphpSCRMS 2023-05-27 1.0 - Multiple SQL Injection
514822023-05-24webappsphpService Provider Management System v1.0 - SQL Injection
514742023-05-23webappsphpQuicklancer v1.0 - SQL Injection
514732023-05-23webappsphpStackposts Social Marketing Tool v1.0 - SQL Injection
514722023-05-23webappsphpSmart School v1.0 - SQL Injection
514712023-05-23webappsphpLeadPro CRM v1.0 - SQL Injection
514682023-05-23webappsphpAffiliate Me Version 5.0.1 - SQL Injection
514662023-05-23webappswindowseScan Management Console 14.0.1400.2281 - SQL Injection (Authenticated)
514512023-05-23webappsphpWBiz Desk 1.2 - SQL Injection
514482023-05-23webappshardwarePnPSCADA v2.x - Unauthenticated PostgreSQL Injection
514452023-05-23webappsphpWordPress Plugin Backup Migration 1.2.8 - Unauthenticated Database Backup
514292023-05-05webappsphpJedox 2022.4.2 - Disclosure of Database Credentials via Connection Checks
514282023-05-05webappsphpJedox 2020.2.5 - Disclosure of Database Credentials via Improper Access Controls
514222023-05-05webappsphpCmaps v8.0 - SQL injection
514162023-05-02webappsphpPHPJabbers Simple CMS 5.0 - SQL Injection
513982023-05-02webappsphpPHP Restaurants 1.0 - SQLi Authentication Bypass & Cross Site Scripting
513832023-04-20webappsphpChitor-CMS v1.1.2 - Pre-Auth SQL Injection
513782023-04-20webappsphpBang Resto v1.0 - 'Multiple' SQL Injection
513402023-04-08webappsmultipleSuprema BioStar 2 v2.8.16 - SQL Injection
513382023-04-08webappsphpMedicine Tracker System v1.0 - Sql Injection
513302023-04-08webappsphpRestaurant Management System 1.0 - SQL Injection
513232023-04-07webappsaspSnitz Forum v1.0 - Blind SQL Injection
513192023-04-07webappsphpChurchCRM 4.5.1 - Authenticated SQL Injection
513182023-04-07webappsphpNotrinosERP 0.7 - Authenticated Blind SQL Injection
512962023-04-06webappsphpChurchCRM v4.5.3-121fcc1 - SQL Injection
512912023-04-06webappsphpMusic Gallery Site v1.0 - SQL Injection on page Master.php
512902023-04-06webappsphpMusic Gallery Site v1.0 - SQL Injection on page view_music_details.php
512882023-04-06webappsphpMusic Gallery Site v1.0 - SQL Injection on music_list.php
512872023-04-06webappsphpEmployee Task Management System v1.0 - SQL Injection on edit-task.php
512862023-04-06webappsphpEmployee Task Management System v1.0 - SQL Injection on (task-details.php?task_id=?)
512842023-04-06webappsphpAuto Dealer Management System v1.0 - SQL Injection on manage_user.php
512832023-04-06webappsphpAuto Dealer Management System v1.0 - SQL Injection in sell_vehicle.php
512822023-04-06webappsphpAuto Dealer Management System v1.0 - SQL Injection
512792023-04-06webappsphpBest pos Management System v1.0 - SQL Injection
512742023-04-06webappsphpIntern Record System v1.0 - SQL Injection (Unauthenticated)
512732023-04-06webappsphpSimple Task Managing System v1.0 - SQL Injection (Unauthenticated)
512722023-04-06webappsphpArt Gallery Management System Project in PHP v 1.0 - SQL injection
512532023-04-05webappsphpitech TrainSmart r1044 - SQL injection
512472023-04-05remotemultiplePostgreSQL 9.6.1 - Remote Code Execution (RCE) (Authenticated)
512462023-04-05webappsphpOnline Eyewear Shop 1.0 - SQL Injection (Unauthenticated)
512352023-04-03webappsphpPaid Memberships Pro v2.9.8 (WordPress Plugin) - Unauthenticated SQL Injection
512332023-04-03webappsphpGLPI v10.0.2 - SQL Injection (Authentication Depends on Configuration)
512162023-04-03webappsphpArt Gallery Management System Project v1.0 - SQL Injection (editid) authenticated
512152023-04-03webappsphpArt Gallery Management System Project v1.0 - SQL Injection (cid) Unauthenticated
512022023-04-03webappsphpChiKoi v1.0 - SQL Injection
511972023-04-01webappsphpPMB 7.4.6 - SQL Injection
511752023-03-31webappsphpBangresto 1.0 - SQL Injection
511632023-03-31webappsphprconfig 3.9.7 - Sql Injection (Authenticated)
511612023-03-31webappsphpSenayan Library Management System v9.0.0 - SQL Injection
511542023-03-31webappsaspEQ Enterprise management system v2.2.0 - SQL Injection
511342023-03-30webappsmultipleDreamer CMS v4.0.0 - SQL Injection
511322023-03-29webappsphpHelmet Store Showroom v1.0 - SQL Injection
511252023-03-29webappsphpHuman Resource Management System 1.0 - SQL Injection (unauthenticated)
511202023-03-28webappsphpSenayan Library Management System v9.5.0 - SQL Injection
511162023-03-28webappsphpSocial-Share-Buttons v2.2.3 - SQL Injection
510872023-03-27webappsphpWebTareas 2.4 - SQL Injection (Unauthorised)
510862023-03-27webappsphpAtom CMS v2.0 - SQL Injection (no auth)
510832023-03-27webappsphpAero CMS v0.0.1 - SQL Injection (no auth)
510632023-03-27webappsphpCanteen-Management v1.0 - SQL Injection
510562023-03-25webappsphpImpressCMS v1.4.3 - Authenticated SQL Injection
510482023-03-25webappsphpYoga Class Registration System v1.0 - Multiple SQLi
510472023-03-25webappsphpHuman Resources Management System v1.0 - Multiple SQLi
510432023-03-25webappsphpTranslatepress Multilinugal WordPress plugin < 2.3.3 - Authenticated SQL Injection
510422023-03-25webappsphpNEX-Forms WordPress plugin < 7.9.7 - Authenticated SQLi
510382023-03-23webappsphpWorkOrder CMS 0.1.0 - SQL Injection
510242022-10-06webappsphpWordpress Plugin Zephyr Project Manager 3.2.42 - Multiple SQLi
510222022-09-23webappsphpAero CMS v0.0.1 - SQLi
510012022-08-09webappsphpPrestashop blockwishlist module 2.1.0 - SQLi
509802022-07-26webappsphpWordPress Plugin Visual Slide Box Builder 3.2.9 - SQLi
509662022-06-14webappsphpOld Age Home Management System 1.0 - SQLi Authentication Bypass
509652022-06-14webappsphpChurchCRM 4.4.5 - SQLi
509582022-06-14remotewindowsVirtua Software Cobranca 12S - SQLi
509422022-05-23webappsphpOpenCart v3.x Newsletter Module - Blind SQLi
509392022-05-17webappsmultipleT-Soft E-Commerce 4 - SQLi (Authenticated)
509342022-05-12webappsphpRoyal Event Management System 1.0 - 'todate' SQL Injection (Authenticated)
509332022-05-12webappsphpCollege Management System 1.0 - 'course_code' SQL Injection (Authenticated)
509282022-05-11webappsphpWordPress Plugin stafflist 3.1.2 - SQLi (Authenticated)
509272022-05-11webappsphpJoomla Plugin SexyPolling 2.1.7 - SQLi
509202022-05-11webappsphpExplore CMS 1.0 - SQL Injection
509152022-05-11webappsphpAnuko Time Tracker - SQLi (Authenticated)
509142022-05-11remotelinuxApache CouchDB 3.2.1 - Remote Code Execution (RCE)
508992022-05-11webappsphpCSZ CMS 1.3.0 - 'Multiple' Blind SQLi
508962022-05-11webappsphpMagento eCommerce CE v2.3.5-p2 - Blind SQLi
508932022-05-11webappsphpWebTareas 2.4 - Blind SQLi (Authenticated)
508912022-05-11webappsphpMicrofinance Management System 1.0 - 'customer_number' SQLi
508692022-04-19webappsphpWordPress Plugin Motopress Hotel Booking Lite 4.2.4 - SQL Injection
508512022-04-07webappsphpKLiK Social Media Website 1.0 - 'Multiple' SQLi
508472022-03-30remotemultiplePostgreSQL 9.3-11.7 - Remote Code Execution (RCE) (Authenticated)
508462022-03-30webappsphpCSZ CMS 1.2.9 - 'Multiple' Blind SQLi(Authenticated)
508252022-03-16webappsphpMoodle 3.11.5 - SQLi (Authenticated)
508232022-03-14webappsmultipleBaixar GLPI Project 9.4.6 - SQLi
508022022-03-07webappsphpAttendance and Payroll System v1.0 - SQLi Authentication Bypass
507922022-02-28webappsmultipleCasdoor 1.13.0 - SQL Injection (Unauthenticated)
507822022-02-23webappsphpStudent Record System 1.0 - 'cid' SQLi (Authenticated)
507792022-02-23webappsphpAir Cargo Management System v1.0 - SQLi
507782022-02-23webappsphpSimple Real Estate Portal System 1.0 - 'id' SQLi
507722022-02-21webappsphpWordPress Plugin WP User Frontend 3.5.25 - SQLi (Authenticated)
507672022-02-21webappsphpCab Management System 1.0 - 'id' SQLi (Authenticated)
507662022-02-21webappsphpWordPress Plugin Perfect Survey - 1.5.1 - SQLi (Unauthenticated)
507402022-02-16webappsphpSimple Student Quarterly Result/Grade System 1.0 - SQLi Authentication Bypass
507392022-02-16webappsphpMulti-Vendor Online Groceries Management System 1.0 - 'id' Blind SQL Injection
507362022-02-11webappsphpAccounting Journal Management System 1.0 - 'id' SQLi (Authenticated)
507322022-02-10webappsphpHome Owners Collection Management System 1.0 - 'id' Blind SQL Injection
507292022-02-10webappsphpHospital Management Startup 1.0 - 'Multiple' SQLi
507272022-02-09webappsphpAtomCMS v2.0 - SQLi
507252022-02-09webappsphpExam Reviewer Management System 1.0 - ‘id’ SQL Injection
507182022-02-08webappsphpHospital Management System 4.0 - 'multiple' SQL Injection
507152022-02-08webappsphpHotel Reservation System 1.0 - SQLi (Unauthenticated)
507002022-02-02webappsphpMoodle 3.11.4 - SQL Injection
506992022-02-02webappsphpPHP Restaurants 1.0 - SQLi (Unauthenticated)
506952022-02-02webappsphpWordpress Plugin Download Monitor WordPress V 4.4.4 - SQL Injection (Authenticated)
506872022-01-27webappsphpWordPress Plugin Modern Events Calendar V 6.1 - SQL Injection (Unauthenticated)
506862022-01-27webappsphpWordPress Plugin RegistrationMagic V 5.0.1.5 - SQL Injection (Authenticated)
506842022-01-25webappsphpPHPIPAM 1.4.4 - SQLi (Authenticated)
506822022-01-25webappsphpOnline Project Time Management System 1.0 - SQLi (Authenticated)
506742022-01-18webappsaspxNyron 1.0 - SQLi (Unauthenticated)
506732022-01-18webappsphpSimple Chatbot Application 1.0 - 'message' Blind SQLi
506682022-01-18webappsphpOpenBMCS 2.4 - SQLi (Authenticated)
506662022-01-18webappsphpOnline Resort Management System 1.0 - SQLi (Authenticated)
506632022-01-13webappsphpWordPress Core 5.8.2 - 'WP_Query' SQL Injection
506622022-01-13webappsphpOnline Diagnostic Lab Management System 1.0 - SQL Injection (Unauthenticated)
506592022-01-13webappsphpSalonERP 3.0.1 - 'sql' SQL Injection (Authenticated)
506462022-01-10webappsphpOnline Railway Reservation System 1.0 - 'id' SQL Injection (Unauthenticated)
506442022-01-07webappsphpOnline Veterinary Appointment System 1.0 - 'Multiple' SQL Injection
506372022-01-05webappsphpopenSIS Student Information System 8.0 - 'multiple' SQL Injection
506342022-01-05webappsphpVirtual Airlines Manager 2.6.2 - 'multiple' SQL Injection
506302022-01-05webappsphpHospitals Patient Records Management System 1.0 - 'id' SQL Injection (Authenticated)
506272022-01-05webappsphpNettmp NNT 5.1 - SQLi Authentication Bypass
506222022-01-05webappsphpMovie Rating System 1.0 - SQLi to RCE (Unauthenticated)
506192022-01-05webappsphpWordPress Plugin WP Visitor Statistics 4.7 - SQL Injection
505972021-12-14webappsphpOnline Thesis Archiving System 1.0 - SQLi Authentication Bypass
505822021-12-09webappsphpEmployees Daily Task Management System 1.0 - 'username' SQLi Authentication Bypass
505792021-12-09webappsphpStudent Management System 1.0 - SQLi Authentication Bypass
505612021-12-03webappsphpOnline Magazine Management System 1.0 - SQLi Authentication Bypass
505602021-12-03webappsphpOnline Pre-owned/Used Car Showroom Management System 1.0 - SQLi Authentication Bypass
505532021-11-29webappsmultipleorangescrum 1.8.0 - 'Multiple' SQL Injection (Authenticated)
505432021-11-23webappsphpBus Pass Management System 1.0 - 'Search' SQL injection
505422021-11-23webappsmultipleWebrun 3.6.0.42 - 'P_0' SQL Injection
505382021-11-22webappsphpAimeos Laravel ecommerce platform 2021.10 LTS - 'sort' SQL injection
505232021-11-15webappsphpFuel CMS 1.4.13 - 'col' Blind SQL Injection (Authenticated)
505222021-11-15webappsphpSimple Subscription Website 1.0 - SQLi Authentication Bypass
505182021-11-12webappsmultipleMumara Classic 2.93 - 'license' SQL Injection (Unauthenticated)
505022021-11-08webappsphpFroxlor 0.10.29.1 - SQL Injection (Authenticated)
504992021-11-08webappsphpKmaleon 1.1.0.205 - 'tipocomb' SQL Injection (Authenticated)
504972021-11-08webappsphpSimple Client Management System 1.0 - SQLi (Authentication Bypass)
504932021-11-04webappsphpOpencart 3 Extension TMD Vendor System - Blind SQL Injection
504892021-11-03webappsphpMult-e-Cart Ultimate 2.4 - 'id' SQL Injection
504872021-11-03webappsphpPHP Melody 3.0 - 'vid' SQL Injection
504832021-11-03webappsphpSimplephpscripts Simple CMS 2.1 - 'Multiple' SQL Injection
504672021-11-02webappsphpEmployee Record Management System 1.2 - 'empid' SQL injection (Unauthenticated)
504572021-10-25webappsphpphpMyAdmin 4.8.1 - Remote Code Execution (RCE)
504532021-10-25webappsphpEngineers Online Portal 1.0 - 'id' SQL Injection
504472021-10-25webappsphpBalbooa Joomla Forms Builder 2.0.6 - SQL Injection (Unauthenticated)
504452021-10-25webappsaspBuild Smart ERP 21.0817 - 'eidValue' SQL Injection (Unauthenticated)
504402021-10-22webappsphpOnline Course Registration 1.0 - Blind Boolean-Based SQL Injection (Authenticated)
504392021-10-22webappsphpClinic Management System 1.0 - SQL injection to Remote Code Execution
504292021-10-19webappsphpOnline Motorcycle (Bike) Rental System 1.0 - Blind Time-Based SQL Injection (Unauthenticated)
504112021-10-13webappsphpSimple Issue Tracker System 1.0 - SQLi Authentication Bypass
504102021-10-13webappsphpOnline Learning System 2.0 - 'Multiple' SQLi Authentication Bypass
504042021-10-13webappsphpCompany's Recruitment Management System 1.0 - 'Multiple' SQL Injection (Unauthenticated)
504032021-10-13webappsphpSimple Payroll System 1.0 - SQLi Authentication Bypass
504022021-10-08webappsphpLoan Management System 1.0 - SQLi Authentication Bypass
504002021-10-08webappsphpOnline Employees Work From Home Attendance System 1.0 - SQLi Authentication Bypass
503982021-10-08webappsphpSimple Online College Entrance Exam System 1.0 - 'Multiple' SQL injection
503912021-10-08webappsphpIFSC Code Finder Project 1.0 - SQL injection (Unauthenticated)
503902021-10-07webappsphpSimple Online College Entrance Exam System 1.0 - SQLi Authentication Bypass
503872021-10-07webappsphpOnline Traffic Offense Management System 1.0 - Multiple SQL Injection (Unauthenticated)
503812021-10-06webappsmultipleOdine Solutions GateKeeper 1.0 - 'trafficCycle' SQL Injection
503762021-10-05webappsphpStudent Quarterly Grading System 1.0 - SQLi Authentication Bypass
503742021-10-04webappsphpYoung Entrepreneur E-Negosyo System 1.0 - SQL Injection Authentication Bypass
503702021-10-01webappsphpDirectory Management System 1.0 - SQL Injection Authentication Bypass
503652021-10-01webappsphpDairy Farm Shop Management System 1.0 - SQL Injection Authentication Bypass
503602021-10-01webappsphpExam Form Submission System 1.0 - SQL Injection Authentication Bypass
503572021-09-30webappsphpPharmacy Point of Sale System 1.0 - 'Multiple' SQL Injection (SQLi)
503552021-09-30webappsphpCyber Cafe Management System Project (CCMS) 1.0 - SQL Injection Authentication Bypass
503342021-09-27webappsphpLibrary System 1.0 - 'student_id' SQL injection (Authenticated)
503292021-09-24webappsphpPharmacy Point of Sale System 1.0 - SQLi Authentication BYpass
503272021-09-23webappsphpPolice Crime Record Management Project 1.0 - Time Based SQLi
503122021-09-22webappsphpSimple Attendance System 1.0 - Unauthenticated Blind SQLi
503032021-09-20webappsphpChurch Management System 1.0 - 'search' SQL Injection (Unauthenticated)
503002021-09-17webappsphpLibrary Management System 1.0 - Blind Time-Based SQL Injection (Unauthenticated)
502942021-09-15webappsphpSupport Board 3.3.3 - 'Multiple' SQL Injection (Unauthenticated)
502882021-09-13webappsphpApartment Visitor Management System (AVMS) 1.0 - 'username' SQL Injection
502692021-09-07webappsphpWordPress Plugin Survey & Poll 1.5.7.3 - 'sss_params' SQL Injection (2)
502492021-09-02webappsphpOpenSIS Community 8.0 - 'cp_id_miss_attn' SQL Injection
502362021-08-30locallinuxMySQL User-Defined (Linux) x32 / x86_64 - 'sys_exec' Local Privilege Escalation (2)
502352021-08-30webappsphpBus Pass Management System 1.0 - 'viewid' SQL Injection
502232021-08-23webappsphpSimple Phone Book 1.0 - 'Username' SQL Injection (Unauthenticated)
502192021-08-20webappsphpLaundry Booking Management System 1.0 - 'Multiple' SQL Injection
502182021-08-20webappsphpOnline Traffic Offense Management System 1.0 - 'id' SQL Injection (Authenticated)
502152021-08-18webappsphpCOVID19 Testing Management System 1.0 - 'Multiple' SQL Injections
502132021-08-18webappsphpCrime records Management System 1.0 - 'Multiple' SQL Injection (Authenticated)
502072021-08-16webappshardwareCOMMAX Smart Home IoT Control System CDP-1020n - SQL Injection Authentication Bypass
501982021-08-13webappsphpSimple Image Gallery System 1.0 - 'id' SQL Injection
501962021-08-13webappsphpPolice Crime Record Management System 1.0 - 'casedetails' SQL Injection
501932021-08-13webappsphp4images 1.8 - 'limitnumber' SQL Injection (Authenticated)
501922021-08-12webappsphpRATES SYSTEM 1.0 - 'Multiple' SQL Injections
501902021-08-12webappsphpCOVID19 Testing Management System 1.0 - 'searchdata' SQL Injection
501892021-08-10webappsphpSimple Library Management System 1.0 - 'rollno' SQL Injection
501852021-08-10webappsmultipleCockpit CMS 0.11.1 - 'Username Enumeration & Password Reset' NoSQL Injection
501692021-08-02webappsphpMen Salon Management System 1.0 - SQL Injection Authentication Bypass
501652021-07-29webappsphpCare2x Integrated Hospital Info System 2.7 - 'Multiple' SQL Injection
501612021-07-28webappswindowsTripSpark VEO Transportation - Blind SQL Injection
501582021-07-27webappsphpCustomer Relationship Management System (CRM) 1.0 - Sql Injection Authentication Bypass
501522021-07-26webappsmultipleElasticsearch ECE 7.13.3 - Anonymous Database Dump
501422021-07-19webappsphpPEEL Shopping 9.3.0 - 'id' Time-based SQL Injection
501372021-07-19webappsphpWordPress Plugin LearnPress 3.2.6.7 - 'current_items' SQL Injection (Authenticated)
501232021-07-13webappsphpGarbage Collection Management System 1.0 - SQL Injection + Arbitrary File Upload
501162021-07-09webappsphpChurch Management System 1.0 - SQL Injection (Authentication Bypass) + Arbitrary File Upload + RCE
501092021-07-07webappsphpOnline Covid Vaccination Scheduler System 1.0 - 'username' time-based blind SQL Injection
501082021-07-07webappslinuxRocket.Chat 3.12.1 - NoSQL Injection to RCE (Unauthenticated) (2)
501052021-07-06webappsphpPhone Shop Sales Managements System 1.0 - Authentication Bypass (SQLi)
500922021-07-05webappsphpChurch Management System 1.0 - 'password' SQL Injection (Authentication Bypass)
500882021-07-05webappsphpOnline Voting System 1.0 - SQLi (Authentication Bypass) + Remote Code Execution (RCE)
500852021-07-02webappsphpGarbage Collection Management System 1.0 - SQL Injection (Unauthenticated)
500782021-07-01webappsmultipleVianeos OctoPUS 5 - 'login_user' SQLi
500752021-07-01webappsphpOnline Voting System 1.0 - Authentication Bypass (SQLi)
500742021-06-30webappsphpDoctors Patients Management System 1.0 - SQL Injection (Authentication Bypass)
500712021-06-30webappsphpphpAbook 0.9i - SQL Injection
500632021-06-25webappsphpSimple Client Management System 1.0 - 'uemail' SQL Injection (Unauthenticated)
500552021-06-23webappsphpSimple CRM 3.0 - 'email' SQL injection (Authentication Bypass)
500532021-06-23webappsphpOnline Library Management System 1.0 - 'Search' SQL Injection
500522021-06-23webappsphpWordPress Plugin Poll_ Survey_ Questionnaire and Voting system 1.5.2 - 'date_answers' Blind SQL Injection
500222021-06-17webappsphpUnified Office Total Connect Now 1.0 - 'data' SQL Injection
500182021-06-16webappsphpTeachers Record Management System 1.0 - 'Multiple' SQL Injection (Authenticated)
500082021-06-15webappstru64Client Management System 1.1 - 'Search' SQL Injection
499952021-06-14webappsphpSmall CRM 3.0 - 'Authentication Bypass' SQL Injection
499942021-06-14webappsphpStock Management System 1.0 - 'user_id' Blind SQL injection (Authenticated)
499882021-06-11webappsphpZenario CMS 8.8.52729 - 'cID' SQL injection (Authenticated)
499852021-06-11webappsmultipleGrocery crud 1.6.4 - 'order_by' SQL Injection
499842021-06-11webappsphpWordPress Plugin Database Backups 1.2.2.6 - 'Database Backup Download' CSRF
499742021-06-10webappsphpStudent Result Management System 1.0 - 'class' SQL Injection
499602021-06-07webappslinuxRocket.Chat 3.12.1 - NoSQL Injection (Unauthenticated)
498942021-05-21webappsphpWordPress Plugin WP Statistics 13.0.7 - Time-Based Blind SQL Injection (Unauthenticated)
498862021-05-19webappsphpCOVID19 Testing Management System 1.0 - SQL Injection (Auth Bypass)
498842021-05-19webappsmultipleIn4Suit ERP 3.2.74.1370 - 'txtLoginId' SQL injection
498782021-05-18webappsphpEgavilanMedia PHPCRUD 1.0 - 'First Name' SQL Injection
498772021-05-17webappsphpPrintable Staff ID Card Creator System 1.0 - 'email' SQL Injection
498742021-05-17webappsphpBilling Management System 2.0 - Union based SQL injection (Authenticated)
498612021-05-13webappsphpDental Clinic Appointment Reservation System 1.0 - 'date' UNION based SQL Injection (Authenticated)
498602021-05-13webappsphpDental Clinic Appointment Reservation System 1.0 - Authentication Bypass (SQLi)
498492021-05-07webappsphpPHP Timeclock 1.04 - Time and Boolean Based Blind SQL Injection
498432021-05-07webappsphpVoting System 1.0 - Authentication Bypass (SQLI)
498402021-05-06webappsphpb2evolution 7-2-2 - 'cf_name' SQL Injection
498172021-05-03webappsphpVoting System 1.0 - Time based SQLI (Unauthenticated SQL injection)
498102021-04-29webappsphpCacti 1.2.12 - 'filter' SQL Injection
498042021-04-26webappsphpSEO Panel 4.8.0 - 'order_col' Blind SQL Injection (2)
497772021-04-21webappsphpFast PHP Chat 1.3 - 'my_item_search' SQL Injection
497652021-04-14locallinuxMariaDB 10.2 - 'wsrep_provider' OS Command Execution
497632021-04-14webappsjavaCITSmart ITSM 9.1.2.27 - 'query' Time-based Blind SQL Injection (Authenticated)
497612021-04-14webappsphpDigital Crime Report Management System 1.0 - SQL Injection (Authentication Bypass)
497592021-04-13webappsmultipleBlitar Tourism 1.0 - Authentication Bypass SQLi
497582021-04-13webappsphpSimple Student Information System 1.0 - SQL Injection (Authentication Bypass)
497552021-04-09webappsphpPrestaShop 1.7.6.7 - 'location' Blind Sql Injection
497422021-04-05webappsphpOpenEMR 4.1.0 - 'u' SQL Injection
497332021-04-01webappsmultipleLatrix 0.6.0 - 'txtaccesscode' SQL Injection
497072021-03-25webappsphpOvidentia 6 - 'id' SQL injection (Authenticated)
496992021-03-23webappsphpMyBB 1.8.25 - Poll Vote Count SQL Injection
496872021-03-19webappsphpOnline News Portal 1.0 - 'name' SQL Injection
496662021-03-18webappsphpSEO Panel 4.8.0 - 'order_col' Blind SQL Injection (1)
496572021-03-17webappsphpWoWonder Social Network Platform 3.1 - 'event_id' SQL Injection

Source: Exploit-DB · filtered to database-related entries · cached, refreshed periodically. Each row links to the original advisory.