sql injection Archives • Page 4 of 6 • Daily CyberSecurity

CVE-2025-57833: A New SQL Injection Flaw Puts Django Web Applications at Risk Django Security Update CVE-2026-25673 Django Security Update SQL Injection Vulnerability Django SQL Injection, PostgreSQL Flaw CVE-2022-34265 PoC Django, SQL injection

Django Security Update CVE-2026-25673 Django Security Update SQL Injection Vulnerability Django SQL Injection, PostgreSQL Flaw CVE-2022-34265 PoC Django, SQL injection

CVE-2025-57833: A New SQL Injection Flaw Puts Django Web Applications at Risk

Do Son September 4, 2025

The Django Software Foundation has released important security updates for multiple supported versions of the popular Python...

IBM watsonx Orchestrate Vulnerability (CVE-2025-0165) Exposes Systems to SQL Injection Attacks IBM CCA Vulnerability CVE-2025-13375 IBM Anthropic Partnership, AI Software Development watsonx Orchestrate, SQL injection CVE-2024-49803 - CVE-2024-41787 IBM Completes Acquisition HashiCorp

IBM CCA Vulnerability CVE-2025-13375 IBM Anthropic Partnership, AI Software Development watsonx Orchestrate, SQL injection CVE-2024-49803 - CVE-2024-41787 IBM Completes Acquisition HashiCorp

IBM watsonx Orchestrate Vulnerability (CVE-2025-0165) Exposes Systems to SQL Injection Attacks

Do Son August 31, 2025

IBM has released a security advisory warning of a SQL injection vulnerability affecting its watsonx Orchestrate Cartridge...

CVE-2025-50979: SQL Injection Flaw in NodeBB Forum Software, PoC Available NodeBB, SQL injection

CVE-2025-50979: SQL Injection Flaw in NodeBB Forum Software, PoC Available

Do Son August 29, 2025

The developers of NodeBB, a popular open-source forum platform, have disclosed a critical vulnerability affecting version v4.3.0....

Two RCE Vulnerabilities Found in Open-Source BI Tool DataEase DataEase, RCE vulnerability

Two RCE Vulnerabilities Found in Open-Source BI Tool DataEase

Do Son August 26, 2025

Security researchers have disclosed two critical vulnerabilities in DataEase, an open-source business intelligence (BI) tool designed for...

PostgreSQL Issues Urgent Security Fixes for High-Severity RCE Flaws in Core Utilities PostgreSQL Vulnerabilities CVE-2026-2006 PostgreSQL, security update CVE-2023-5869 - CVE-2025-1094

PostgreSQL Vulnerabilities CVE-2026-2006 PostgreSQL, security update CVE-2023-5869 - CVE-2025-1094

PostgreSQL Issues Urgent Security Fixes for High-Severity RCE Flaws in Core Utilities

Do Son August 18, 2025

The PostgreSQL Global Development Group has announced a major security update affecting all supported versions of the...

Critical ADOdb Flaw (CVE-2025-54119, CVSS 10.0) in SQLite3 Driver Allows SQL Injection ADOdb SQL Injection, PHP Vulnerability

Critical ADOdb Flaw (CVE-2025-54119, CVSS 10.0) in SQLite3 Driver Allows SQL Injection

Do Son August 5, 2025

A critical SQL injection vulnerability has been discovered in ADOdb, a widely used PHP database abstraction library....

RCE, SSRF & Data Exposure: Salesforce Patches 8 Serious Flaws in Tableau Server Tableau Server Vulnerabilities, Remote Code Execution

RCE, SSRF & Data Exposure: Salesforce Patches 8 Serious Flaws in Tableau Server

Do Son July 28, 2025

Salesforce has released a security advisory addressing eight serious vulnerabilities affecting multiple versions of Tableau Server, the...

High-Severity SQL Injection (CVE-2025-52914) in Mitel MiCollab Allows Data Access, Command Execution CVE-2024-35285 & CVE-2024-35286 Mitel MiCollab, SQL Injection Vulnerability

CVE-2024-35285 & CVE-2024-35286 Mitel MiCollab, SQL Injection Vulnerability

High-Severity SQL Injection (CVE-2025-52914) in Mitel MiCollab Allows Data Access, Command Execution

Do Son July 25, 2025

Mitel has released a security advisory addressing a high-severity SQL injection vulnerability in its MiCollab platform—an issue...

Lenovo Vantage Flaws Allow Local Privilege Escalation on PCs Lenovo Vantage, Privilege Escalation

Lenovo Vantage Flaws Allow Local Privilege Escalation on PCs

Do Son July 21, 2025

Lenovo has issued a security advisory disclosing three newly discovered vulnerabilities in Lenovo Vantage, a widely pre-installed...

FortiWeb SQL Injection (CVE-2025-25257) Added to CISA KEV After Active Exploitation, PoC Available! CISA active exploit catalog known exploited vulnerabilities ActiveMQ RCE CVE-2026-34197 CISA KEV Catalog Actively Exploited Vulnerabilities CISA KEV Catalog CVE-2025-37164 GeoServer XXE, CISA KEV FortiWeb SQLi, CISA KEV Critical Vulnerabilities CVE-2024-20953

CISA active exploit catalog known exploited vulnerabilities ActiveMQ RCE CVE-2026-34197 CISA KEV Catalog Actively Exploited Vulnerabilities CISA KEV Catalog CVE-2025-37164 GeoServer XXE, CISA KEV FortiWeb SQLi, CISA KEV Critical Vulnerabilities CVE-2024-20953

FortiWeb SQL Injection (CVE-2025-25257) Added to CISA KEV After Active Exploitation, PoC Available!

Do Son July 19, 2025

A critical SQL injection vulnerability in Fortinet FortiWeb, tracked as CVE-2025-25257, has been added to the CISA...

CVE-2025-25257 (CVSS 9.6): Pre-Auth SQLi in Fortinet FortiWeb Opens Door to RCE, PoC Published CVE-2025-25257 PoC FortiWeb, SQL Injection

CVE-2025-25257 (CVSS 9.6): Pre-Auth SQLi in Fortinet FortiWeb Opens Door to RCE, PoC Published

Do Son July 14, 2025

A critical security flaw in Fortinet’s FortiWeb web application firewall has been publicly weaponized, with proof-of-concept (PoC)...

Critical Flaws Found in Siemens SINEC NMS: Privilege Escalation and Remote Code Execution Risks Siemens SIVaaS CVE-2025-40804 CVE-2022-43400 & CVE-2024-41798 Siemens SINEC NMS, Critical Vulnerabilities

Siemens SIVaaS CVE-2025-40804 CVE-2022-43400 & CVE-2024-41798 Siemens SINEC NMS, Critical Vulnerabilities

Critical Flaws Found in Siemens SINEC NMS: Privilege Escalation and Remote Code Execution Risks

Do Son July 9, 2025

iemens has released a critical security advisory detailing multiple high-severity vulnerabilities affecting SINEC NMS, its flagship network...

Fortinet Fixes Critical SQL Injection Flaw in FortiWeb (CVE-2025-25257, CVSS 9.6) FortiWeb, SQL Injection

Fortinet Fixes Critical SQL Injection Flaw in FortiWeb (CVE-2025-25257, CVSS 9.6)

Do Son July 9, 2025

Fortinet has released a critical patch to address a serious vulnerability in its FortiWeb product — a...

PHP Flaws: CVE-2025-1735 (SQLi/Crash) & CVE-2025-6491 (SOAP DoS) Threaten PHP Apps PHP Vulnerabilities, SQLi DoS CVE-2024-8932 & CVE-2024-8929

PHP Flaws: CVE-2025-1735 (SQLi/Crash) & CVE-2025-6491 (SOAP DoS) Threaten PHP Apps

Do Son July 4, 2025

The PHP project has released security patches addressing two vulnerabilities that expose PHP-based applications to SQL injection...

Security Flaws in Frappe Framework Expose Self-Hosted ERPNext Users to Takeovers, XSS, and SQL Injection Frappe Framework, Critical Vulnerabilities

Frappe Framework, Critical Vulnerabilities

Security Flaws in Frappe Framework Expose Self-Hosted ERPNext Users to Takeovers, XSS, and SQL Injection

Do Son July 2, 2025

The Frappe Framework, a widely used full-stack application platform that powers ERPNext, has been found vulnerable to...

CISA Warns of Critical Flaws in ControlID iDSecure Vehicle Control Software ControlID iDSecure, Access Control Vulnerabilities

CISA Warns of Critical Flaws in ControlID iDSecure Vehicle Control Software

Do Son June 26, 2025

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a risk advisory on three newly discovered vulnerabilities...

Urgent Ubiquiti Alert: Critical Flaws (CVSS 9.9) Allow Privilege Escalation via XSS & SQL Injection Ubiquiti Vulnerabilities, Privilege Escalation

Ubiquiti Vulnerabilities, Privilege Escalation

Urgent Ubiquiti Alert: Critical Flaws (CVSS 9.9) Allow Privilege Escalation via XSS & SQL Injection

Do Son June 18, 2025

Two high-severity vulnerabilities have been disclosed in widely used Ubiquiti software components—UCRM Client Signup Plugin and the...

QNAP Fixes SQL Injection and Certificate Validation Flaws in Qsync Central and File Station 5 QNAP Vulnerabilities CVE-2025-52856

QNAP Fixes SQL Injection and Certificate Validation Flaws in Qsync Central and File Station 5

Do Son June 9, 2025

QNAP Systems, Inc. has released patches addressing multiple high-severity vulnerabilities in its Qsync Central and File Station...

Critical CVSS 9.8 Flaw Hits Popular LlamaIndex Framework Used by Millions LlamaIndex Vulnerability, SQL Injection

Critical CVSS 9.8 Flaw Hits Popular LlamaIndex Framework Used by Millions

Do Son June 6, 2025

LlamaIndex, a widely adopted framework for building LLM-powered applications with over 3.9 million monthly downloads, has been...

Critical Dell Bug (CVSS 9.8) Lets Unauthenticated Attackers Fully Compromise the System Dell AI PC marketing pivot, XPS 2026 brand revival, NPU, Tech Industry News CVE-2023-32484 PowerScale OneFS, CVE-2024-53298

Critical Dell Bug (CVSS 9.8) Lets Unauthenticated Attackers Fully Compromise the System

Do Son June 5, 2025

Dell Technologies has issued urgent patches for multiple vulnerabilities impacting PowerScale OneFS, a core component of Dell’s...

Critical Alert 3 Active Exploits Detected Today

Critical Alert

sql injection

CVE-2025-57833: A New SQL Injection Flaw Puts Django Web Applications at Risk

CVE-2025-50979: SQL Injection Flaw in NodeBB Forum Software, PoC Available

Two RCE Vulnerabilities Found in Open-Source BI Tool DataEase

PostgreSQL Issues Urgent Security Fixes for High-Severity RCE Flaws in Core Utilities

Critical ADOdb Flaw (CVE-2025-54119, CVSS 10.0) in SQLite3 Driver Allows SQL Injection

RCE, SSRF & Data Exposure: Salesforce Patches 8 Serious Flaws in Tableau Server

High-Severity SQL Injection (CVE-2025-52914) in Mitel MiCollab Allows Data Access, Command Execution

Lenovo Vantage Flaws Allow Local Privilege Escalation on PCs

FortiWeb SQL Injection (CVE-2025-25257) Added to CISA KEV After Active Exploitation, PoC Available!

CVE-2025-25257 (CVSS 9.6): Pre-Auth SQLi in Fortinet FortiWeb Opens Door to RCE, PoC Published

Critical Flaws Found in Siemens SINEC NMS: Privilege Escalation and Remote Code Execution Risks

Fortinet Fixes Critical SQL Injection Flaw in FortiWeb (CVE-2025-25257, CVSS 9.6)

PHP Flaws: CVE-2025-1735 (SQLi/Crash) & CVE-2025-6491 (SOAP DoS) Threaten PHP Apps

Security Flaws in Frappe Framework Expose Self-Hosted ERPNext Users to Takeovers, XSS, and SQL Injection

CISA Warns of Critical Flaws in ControlID iDSecure Vehicle Control Software

Urgent Ubiquiti Alert: Critical Flaws (CVSS 9.9) Allow Privilege Escalation via XSS & SQL Injection

QNAP Fixes SQL Injection and Certificate Validation Flaws in Qsync Central and File Station 5

Critical CVSS 9.8 Flaw Hits Popular LlamaIndex Framework Used by Millions

Critical Dell Bug (CVSS 9.8) Lets Unauthenticated Attackers Fully Compromise the System