Search Results for: sql injection vulnerability

ERPNext 11.1.47 allows blog?blog_category= Frame Injection.

Overview : ERPNext 11.1.47 allows blog?blog_category= Frame Injection. Affected Product(s) : Affected Software: ERPNext Affected Versions: 11.1.47 Vulnerability Details : CVE ID

Web Application Firewall

LogicalDoc before 8.3.3 allows SQL Injection

Overview : LogicalDoc before 8.3.3 allows SQL Injection. LogicalDoc populates the list of available documents by querying the database. This

Common Vulnerabilities and Exposures

Multiple SQL injection vulnerabilities in D-Link DSR-Routers

Overview : Multiple SQL injection vulnerabilities in D-Link DSR Routers Affected Product(s) : D-Link DSR-150 (Firmware < v1.08B44) D-Link DSR-150N

Common Vulnerabilities and Exposures

Octeth Oempro 4.7 allows SQL injection

Overview : Octeth Oempro 4.7 found a SQL injection. The parameter “CampaignID” in “Campaign.Get” is vulnerable to SQL Injection attacks.

Common Vulnerabilities and Exposures

SQL Injection attack in pimcore before 6.3.0

Overview : Pimcore data leakage Flaws through SQL Injection Affected Product(s) : pimcore/pimcore before 6.3.0 Vulnerability Details : CVE ID :

Common Vulnerabilities and Exposures

SQL Injection flaw in SuiteCRM

Overview : SuiteCRM 7.10.x versions prior to 7.10.21 and 7.11.x versions prior to 7.11.9 allow SQL Injection. Affected Product(s) :

Common Vulnerabilities and Exposures

Potential SQL injection in PostgreSQL Zend\Db adapter

Overview : Zend Framework before 2.2.10 and 2.3.x before 2.3.5 has Potential SQL injection in PostgreSQL Zend\Db adapter. Affected Product(s)

Common Vulnerabilities and Exposures

Authenticated SQL Injection in OpenEMR before 5.0.2.1

Overview : Authenticated SQL Injection in interface/forms/eye_mag/js/eye_base.php in OpenEMR through 5.0.2 allows a user to extract arbitrary data from the

Web Application Firewall

Vulnerability was discovered in TOPMeeting before version 8.8

Overview : TOPMeeting security issues fixed. Affected Product(s) : TOPMeeting before version 8.8 Vulnerability Details : CVE-2019-13409 A SQL injection

Web Application Firewall

vBulletin 5.5.4 allows Two SQL Injection Vulnerabilities

Overview : vBulletin 5.5.4 allows SQL Injection via the ajax/api/hook/getHookList or ajax/api/widget/getWidgetList where parameter. Affected Product(s) : vBulletin 5.5.4 Vulnerability

Common Vulnerabilities and Exposures

TuziCMS 2.0.6 has SQL injection via index.php

Overview : App\Home\Controller\ZhuantiController.class.php in TuziCMS 2.0.6 has SQL injection via the index.php/Zhuanti/group?id= substring. Affected Product(s) : TuziCMS 2.0.6 Vulnerability Details

Prevent SQL Injection

SQL, or Structured Query Language is a standard Database language which is used to create, maintain and retrieve the relational

Common Vulnerabilities and Exposures

Cisco announces vulnerabilities

Overview : Cisco Firepower Management Center Remote Code Execution Vulnerability CWE-20 / CVE-2019-12689 A vulnerability in the web-based management interface

How Does WAF Integrate with SIEM?

Home How Does WAF Integrate with SIEM? 1.1k Views 8 min. read Learning Center Related Content What Is WAF Event

What Is Bot Mitigation in WAF?

Home What Is Bot Mitigation in WAF? 4.2k Views 7 min. read Learning Center Related Content How Does WAF Block

What Is WAF Logging?

Home What Is WAF Logging? 5.3k Views 7 min. read Learning Center Related Content What Is a WAF Signature? What

What Is an API DoS Attack?

Home What Is an API DoS Attack? 8.9k Views 8 min. read Learning Center Related Content What Is Excessive Data

What Is an Advanced WAF Security Policy?

Home What Is an Advanced WAF Security Policy? 6.2k Views 9 min. read Learning Center Related Content What Is WAF

How Does WAF Block XSS Attacks?

Home How Does WAF Block XSS Attacks? 9.2k Views 10 min. read Learning Center Related Content How Does WAF Protect

What Is a WAF Signature?

Home What Is a WAF Signature? 13.9k Views 9 min. read Learning Center Related Content What Are the Types of

What Is a WAF False Negative?

Home What Is a WAF False Negative? 3.2k Views 7 min. read Learning Center Related Content What Is a WAF

Blog

10 Must-Have Features in API Security Tools

APIs are everywhere—powering mobile apps, cloud platforms, and enterprise systems. Safeguarding your APIs is crucial rather than optional. API security

Blog

WAAP vs WAF vs RASP: Top Differences in 2025

As the cybersecurity landscape evolves rapidly in 2025, safeguarding web applications grows increasingly complex and vital. The rise in zero-day

Blog

Top 10 API Security Threats to Watch in 2025

A CASB can be deployed either on premises or in the cloud. Most of the CASB deployments are SaaS-based. There are