CVE Daily
← All tags

Tag: Blind SQL Injection

All CVEs associated with "Blind SQL Injection". Page 1/1 • 11 CVEs.

CVEs tagged with this topic. Filters apply to the whole list (loaded from JSON).

CVSS ≥ 0.0
2025-08-15
High

CVE-2025-49897

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in gopiplus Vertical scroll slideshow gallery v2 allows Blind SQL Injection. This issue affects Vert…

CVSS: 8.5 CWE: CWE-89
Read more
High

CVE-2025-1929

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Risk Yazılım Teknolojileri Ltd. Şti. Reel Sektör Hazine ve Risk Yönetimi Yazılımı allows SQL Inje…

CVSS: 7.2 CWE: CWE-89
Read more
2025-08-14
Critical

CVE-2025-54678

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in hassantafreshi Easy Form Builder allows Blind SQL Injection. This issue affects Easy Form Builder…

CVSS: 9.3 CWE: CWE-89
Read more
High

CVE-2025-49267

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Shabti Kaplan Frontend Admin by DynamiApps allows Blind SQL Injection. This issue affects Fronten…

CVSS: 8.5 CWE: CWE-89
Read more
High

CVE-2025-49033

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Metagauss ProfileGrid allows Blind SQL Injection. This issue affects ProfileGrid : from n/a thro…

CVSS: 8.5 CWE: CWE-89
Read more
2025-08-04
Critical

CVE-2025-50341

A Boolean-based SQL injection vulnerability was discovered in Axelor 5.2.4 via the _domain parameter. An attacker can manipulate the SQL query logic and determine true/false conditions, potentially l…

CVSS: 9.8 CWE: CWE-89
Read more
2025-07-29
High

CVE-2025-6495

The Bricks theme for WordPress is vulnerable to blind SQL Injection via the ‘p’ parameter in all versions up to, and including, 1.12.4 due to insufficient escaping on the user supplied parameter and…

CVSS: 7.5 CWE: CWE-89
Read more
2025-07-16
Medium

CVE-2025-20272

A vulnerability in a subset of REST APIs of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager (EPNM) could allow an authenticated, low-privileged, remote attacker to conduct a…

CVSS: 4.3 CWE: CWE-89
Read more
Critical

CVE-2025-24759

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in CMSJunkie - WordPress Business Directory Plugins WP-BusinessDirectory allows Blind SQL Injection.…

CVSS: 9.3 CWE: CWE-89
Read more
2025-06-09
Medium

CVE-2025-30507

CyberData 011209 Intercom could allow an unauthenticated user to gather sensitive information through blind SQL injections.

CVSS: 5.3 CWE: CWE-89
Read more
2025-01-14
High

CVE-2023-37931

An improper neutralization of special elements used in an sql command ('sql injection') vulnerability [CWE-88] in FortiVoice Entreprise version 7.0.0 through 7.0.1 and before 6.4.8 allows an authenti…

CVSS: 8.8 CWE: CWE-89
Read more