SQL Injection

NewsSecurity Vulnerabilities

Exploitation of Critical SQL Injection Vulnerability in Drupal (CVE-2026-9082)

– A critical vulnerability in the Drupal content management system is being actively exploited, prompting the US Cybersecurity and Infrastructure Security Agency (CISA) to add it to its Known Exploited Vulnerabilities (KEV) catalogue.

Read More
NewsSecurity Vulnerabilities

Siemens TeleControl Server Basic CreateTrace SQL Injection Remote Code Execution Vulnerability (CVE-2025-27495)

– This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens TeleControl Server Basic.

Read More
NewsSecurity Vulnerabilities

Sophos issues hotfixes for three critical flaws in XG firewall

Sophos has issued hotfixes to resolve three security vulnerabilities in its Firewall products. These flaws, under certain conditions, could enable

Read More
NewsSecurity Vulnerabilities

Cisco Nexus Dashboard Fabric Controller SQL Injection Vulnerability [CVE-2024-20536]

CVE number = CVE-2024-20536 A vulnerability in a REST API endpoint and web-based management interface of Cisco Nexus Dashboard Fabric Controller

Read More
NewsSecurity Vulnerabilities

NAC Telecommunication Systems SQL Command Injection vulnerability [CVE-2024-6919]

CVE number = CVE-2024-6919 CVSS Score = 9.8 Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’)

Read More
NewsSecurity Vulnerabilities

Parse Server literalizeRegexPart SQL Injection Authentication Bypass Vulnerability [CVE-2024-39309]

CVE number = CVE-2024-39309 CVSS score = 9.8 This vulnerability allows remote attackers to bypass authentication on affected installations of

Read More
NewsSecurity Vulnerabilities

Nagios XI API SQL Injection Vulnerability [CVE-2019-9165]

CVE Number – CVE-2019-9165 A vulnerability in the Nagios XI API could allow an unauthenticated, remote attacker to conduct an

Read More
NewsSecurity Vulnerabilities

phpMyAdmin Designer Feature SQL Injection Vulnerability [CVE-2019-6798]

CVE Number – CVE-2019-6798 A vulnerability in the Designer feature of phpMyAdmin could allow an unauthenticated, remote attacker to conduct

Read More