Weaknesses of type CWE-89
11,715 resultsCVE-2022-42122CRITICALA SQL injection vulnerability in the Friendly Url module in Liferay Portal 7.3.7, and Liferay DXP 7.3 fix pack 2 through update 4 allows attEPSS 0.8%CVE-2020-27246MEDIUMAn exploitable SQL injection vulnerability exists in ‘listImmoLabels.jsp’ page of OpenClinic GA 5.173.3 application. The immoComment parametEPSS 0.8%CVE-2020-27243MEDIUMAn exploitable SQL injection vulnerability exists in ‘listImmoLabels.jsp’ page of OpenClinic GA 5.173.3 application. The immoService parametEPSS 0.8%CVE-2020-27230MEDIUMA number of exploitable SQL injection vulnerabilities exists in ‘patientslist.do’ page of OpenClinic GA 5.173.3 application. The findSector EPSS 0.8%CVE-2020-27245MEDIUMAn exploitable SQL injection vulnerability exists in ‘listImmoLabels.jsp’ page of OpenClinic GA 5.173.3 application. The immoBuyer parameterEPSS 0.8%CVE-2024-4799MEDIUMKashipara College Management System view_each_faculty.php sql injectionEPSS 0.8%CVE-2020-27231MEDIUMA number of exploitable SQL injection vulnerabilities exists in ‘patientslist.do’ page of OpenClinic GA 5.173.3 application. The findDistricEPSS 0.8%CVE-2020-27244MEDIUMAn exploitable SQL injection vulnerability exists in ‘listImmoLabels.jsp’ page of OpenClinic GA 5.173.3 application. The immoCode parameter EPSS 0.8%CVE-2022-23767HIGHSecureGate authentication bypass vulnerabilityEPSS 0.8%CVE-2023-6305MEDIUMSourceCodester Free and Open Source Inventory Management System suppliar_data.php sql injectionEPSS 0.8%CVE-2023-43739CRITICALOnline Book Store Project v1.0 - Unauthenticated SQL Injection (SQLi)EPSS 0.8%CVE-2023-44163CRITICALOnline Movie Ticket Booking System v1.0 - Multiple Unauthenticated SQL Injections (SQLi)EPSS 0.8%CVE-2023-27463HIGHA vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.3). The audit log form of affected applications is vulnerable tEPSS 0.8%CVE-2023-44164CRITICALOnline Movie Ticket Booking System v1.0 - Multiple Unauthenticated SQL Injections (SQLi)EPSS 0.8%CVE-2022-43531HIGH Vulnerabilities in the web-based management interface of ClearPass Policy Manager could allow an authenticated remote attacker to conduct SEPSS 0.8%CVE-2023-44166CRITICALOnline Movie Ticket Booking System v1.0 - Multiple Unauthenticated SQL Injections (SQLi)EPSS 0.8%CVE-2023-5373HIGHSourceCodester Online Computer and Laptop Store Master.php register sql injectionEPSS 0.8%CVE-2023-25350HIGHFaveo Helpdesk 1.0-1.11.1 is vulnerable to SQL Injection. When the user logs in through the login box, he has no judgment on the validity ofEPSS 0.8%CVE-2022-40099HIGHOnline Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/update_EPSS 0.8%CVE-2022-46127HIGHHelmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/classes/Master.php?f=delete_product.EPSS 0.8%