Weaknesses of type CWE-89
11,777 resultsCVE-2023-50837HIGHWordPress Login Lockdown Plugin <= 2.06 is vulnerable to SQL InjectionEPSS 0.6%CVE-2025-3138MEDIUMPHPGurukul Online Security Guards Hiring System edit-guard-detail.php sql injectionEPSS 0.6%CVE-2024-4933MEDIUMSourceCodester Simple Online Bidding System sql injectionEPSS 0.6%CVE-2025-2846MEDIUMSourceCodester Online Eyewear Shop Registration Users.php registration sql injectionEPSS 0.6%CVE-2025-3383MEDIUMSourceCodester Web-based Pharmacy Product Management System search_sales.php sql injectionEPSS 0.6%CVE-2023-52285HIGHExamSys 9150244 allows SQL Injection via the /Support/action/Pages.php s_score2 parameter.EPSS 0.6%CVE-2023-6772MEDIUMOTCMS ind_backstage.php sql injectionEPSS 0.6%CVE-2025-3182MEDIUMprojectworlds Online Doctor Appointment Booking System getschedule.php sql injectionEPSS 0.6%CVE-2024-54931CRITICALA SQL Injection was found in /admin/delete_event.php in kashipara E-learning Management System v1.0, which allows remote attackers to executEPSS 0.6%CVE-2025-59681HIGHAn issue was discovered in Django 4.2 before 4.2.25, 5.1 before 5.1.13, and 5.2 before 5.2.7. QuerySet.annotate(), QuerySet.alias(), QuerySeEPSS 0.6%CVE-2024-54921CRITICALA SQL Injection was found in /student_signup.php in kashipara E-learning Management System v1.0, which allows remote attackers to execute arEPSS 0.6%CVE-2024-54925CRITICALA SQL Injection was found in /remove_sent_message.php in kashipara E-learning Management System v1.0, which allows remote attackers to execuEPSS 0.6%CVE-2025-41370CRITICALSQL injection vulnerability in Gandia Integra TotalEPSS 0.6%CVE-2024-47331CRITICALWordPress Multi Step for Contact Form plugin <= 2.7.7 - Unauthenticated SQL Injection vulnerabilityEPSS 0.6%CVE-2024-42566HIGHSchool Management System commit bae5aa was discovered to contain a SQL injection vulnerability via the password parameter at login.phpEPSS 0.6%CVE-2024-54923CRITICALA SQL Injection vulnerability was found in /admin/edit_teacher.php in kashipara E-learning Management System v1.0, which allows remote attacEPSS 0.6%CVE-2025-41371CRITICALSQL injection vulnerability in Gandia Integra TotalEPSS 0.6%CVE-2025-1133CRITICALSQL Injection in ChurchCRM EID Parameter via EditEventAttendees.phpEPSS 0.6%CVE-2024-54924CRITICALA SQL Injection was found in /admin/edit_content.php in kashipara E-learning Management System v1.0, which allows remote attackers to executEPSS 0.6%CVE-2024-2687MEDIUMCampcodes Online Job Finder System index.php sql injectionEPSS 0.6%