#sql

The Shop version 2.5 suffers from a remote SQL injection vulnerability.

BBoard Forum version 1.0 suffers from a persistent cross site scripting vulnerability.

WG Ticket version 1.0 suffers from a cross site scripting vulnerability.

Coursela Personal Course Selling Website version 1.0 suffers from a cross site scripting vulnerability.

Coursemat Multi-Tenant Course Selling Website version 1.1 suffers from a cross site scripting vulnerability.

elearning-SES version 1.0 suffers from a remote SQL injection vulnerability.

RentEquip Multipurpose Rental version 1.0 suffers from a cross site scripting vulnerability.

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Marksoft allows SQL Injection.This issue affects Marksoft: through Mobile:v.7.1.7 ; Login:1.4 ; API:20230605.

Unauth. SQL Injection (SQLi) vulnerability in Themefic Ultimate Addons for Contact Form 7 plugin <= 3.1.23 versions.

The SupportCandy WordPress plugin before 3.1.7 does not properly sanitise and escape the agents[] parameter in the set_add_agent_leaves AJAX function before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin.