10 POSTS · TAG · #sql-injection
DATE CAT TITLE TARGET CVSS
2026 · 1
17-01 CVE GHSA-38cw-85xc-xr9x Veramo Data Store ORM SQL Injection Veramo 6.8 2023 · 3
10-11 CVE CVE-2023-41285 - QNAP Qumagie < 2.1.4 SQL Injection QNAP 8.8 10-11 CVE CVE-2023-41284 - QNAP Qumagie < 2.1.4 SQL Injection QNAP 8.8 27-04 CVE CVE-2023-2338 - Pimcore SQL Injection in AssetController Pimcore 8.8 2021 · 5
23-11 POST Moodle Blind SQL injection via MNet authentication Moodle 7.2 09-08 POST Roxy-WI through 5.2.2.0 pre-auth RCE Roxy-wi 9.8 07-08 CVE CVE-2021-38168 - Roxy-WI through 5.2.2.0 allows authenticated SQL injection Roxy-WI 8.8 07-08 CVE CVE-2021-38167 - Roxy-WI through 5.2.2.0 allows unauthenticated SQL Injection Roxy-WI 9.8 17-05 CVE CVE-2021-32474 - Moodle Blind SQL injection via MNet authentication Moodle 7.2 2020 · 1
14-05 EXPLOIT CVE-2020-12720 - Vbulletin RCE Vbulletin 9.8
CONTACT
rekter0
PROFESSIONAL SLOPPER
Application security research. vulnerability disclosure, and the occasional pre-auth RCE chain.
28 CVE 7 EXPLOIT 14 POST