Ghost CMS SQL injection campaign has compromised 700+ websites — including Harvard University, Oxford University, and DuckDuckGo — using a CVSS 9.4 flaw to inject ClickFix malware lures that trick ...
A critical-level flaw in a popular CMS, patched months ago, is now being abused.
CISA has given U.S. government agencies until Wednesday evening to secure their servers against an SQL injection ...
Drupal CVE-2026-9082 exploitation hit 15,000 attempts across 65 countries, forcing urgent patches by May 27, 2026.
Drupal is warning that hackers are attempting to exploit a "highly critical" SQL injection vulnerability announced earlier ...
In its warning, Drupal said a vulnerability in this API allows an attacker to send specially crafted requests resulting in ...
Recently released security updates for the popular Joomla content management system (CMS) address a SQL injection vulnerability that poses a high risk and can be exploited to extract information from ...
The Magento content management system used by thousands of online shops has received fixes for several serious vulnerabilities, including an unauthenticated SQL injection flaw that’s likely to soon ...
For more than a decade, injection vulnerabilities have literally topped the charts of critically dangerous software flaws, deemed more serious than all other types of vulnerabilities in the 2010, 2013 ...
While there are a number of security risks in the world of electronic commerce, SQL injection is one of the most common Web site attack techniques used to steal customer data such as credit card ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results