Weaknesses of type CWE-89
11,767 resultsCVE-2024-30238HIGHWordPress Photos and Files Contest Gallery plugin <= 21.3.2 - SQL Injection vulnerabilityEPSS 0.6%CVE-2024-46382MEDIUMA SQL injection vulnerability in linlinjava litemall 1.8.0 allows a remote attacker to obtain sensitive information via the goodsId, goodsSnEPSS 0.6%CVE-2024-2527MEDIUMMAGESH-K21 Online-College-Event-Hall-Reservation-System rooms.php sql injectionEPSS 0.6%CVE-2024-30236HIGHWordPress Contest Gallery plugin <= 21.3.4 - SQL Injection vulnerabilityEPSS 0.6%CVE-2024-7221MEDIUMSourceCodester/Campcodes School Log Management System manage_user.php sql injectionEPSS 0.6%CVE-2024-10153MEDIUMPHPGurukul Boat Booking System Book a Boat Page book-boat.php sql injectionEPSS 0.6%CVE-2023-2411MEDIUMSourceCodester AC Repair and Services System view_inquiry.php sql injectionEPSS 0.6%CVE-2022-2802HIGHSourceCodester Gas Agency Management System login.php sql injectionEPSS 0.6%CVE-2023-1608MEDIUMZhong Bang CRMEB Java list getAdminList sql injectionEPSS 0.6%CVE-2024-28613CRITICALSQL Injection vulnerability in PHP Task Management System v.1.0 allows a remote attacker to escalate privileges and obtain sensitive informaEPSS 0.6%CVE-2023-2409MEDIUMSourceCodester AC Repair and Services System view_service.php sql injectionEPSS 0.6%CVE-2023-2408MEDIUMSourceCodester AC Repair and Services System view.php sql injectionEPSS 0.6%CVE-2024-0651MEDIUMPHPGurukul Company Visitor Management System search-visitor.php sql injectionEPSS 0.6%CVE-2023-2410MEDIUMSourceCodester AC Repair and Services System view_booking.php sql injectionEPSS 0.6%CVE-2023-2413MEDIUMSourceCodester AC Repair and Services System manage_booking.php sql injectionEPSS 0.6%CVE-2024-25525CRITICALRuvarOA v6.01 and v12.01 were discovered to contain a SQL injection vulnerability via the filename parameter at /WorkFlow/OfficeFileDownloadEPSS 0.6%CVE-2023-49776CRITICALWordPress Sayfa Sayaç Plugin <= 2.6 is vulnerable to SQL InjectionEPSS 0.6%CVE-2024-23763CRITICALSQL Injection vulnerability in Gambio through 4.9.2.0 allows attackers to run arbitrary SQL commands via crafted GET request using modifiersEPSS 0.6%CVE-2025-10811MEDIUMcode-projects Hostel Management System index.php sql injectionEPSS 0.6%CVE-2024-5048MEDIUMcode-projects Budget Management index.php sql injectionEPSS 0.6%