Weaknesses of type CWE-89

11,840 results
CVE-2025-25517CRITICALSeacms <=13.3 is vulnerable to SQL Injection in admin_reslib.php.EPSS 0.5%CVE-2025-61028HIGHAn issue in the time_t_to_dt component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via craftEPSS 0.5%CVE-2024-53354MEDIUMMultiple SQL injection vulnerabilities in EasyVirt DCScope <= 8.6.0 and CO2Scope <= 1.3.0 allows remote authenticated attackers to execute aEPSS 0.5%CVE-2024-5357MEDIUMPHPGurukul Zoo Management System forgot-password.php sql injectionEPSS 0.5%CVE-2025-25521CRITICALSeacms <=13.3 is vulnerable to SQL Injection in admin_type_news.php.EPSS 0.5%CVE-2024-45756HIGHAn issue was discovered in Centreon centreon-open-tickets 24.10.x before 24.10.0, 24.04.x before 24.04.2, 23.10.x before 23.10.1, 23.04.x beEPSS 0.5%CVE-2026-12045CRITICALpgAdmin 4: AI Assistant read-only transaction bypass allows unauthorised writes and remote code executionEPSS 0.5%CVE-2024-42404HIGHSQL injection vulnerability in Welcart e-Commerce prior to 2.11.2 allows an attacker who can login to the product to obtain or alter the infEPSS 0.5%CVE-2024-8624CRITICALMDTF – Meta Data and Taxonomies Filter <= 1.3.3.3 - Authenticated (Contributor+) SQL InjectionEPSS 0.5%CVE-2025-25516CRITICALSeacms <=13.3 is vulnerable to SQL Injection in admin_paylog.php.EPSS 0.5%CVE-2024-12832HIGHArista NG Firewall ReportEntry SQL Injection Arbitrary File Read and Write VulnerabilityEPSS 0.5%CVE-2025-25520CRITICALSeacms <13.3 is vulnerable to SQL Injection in admin_pay.php.EPSS 0.5%CVE-2025-61018HIGHAn issue in the sqlo_place_dt_set component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via EPSS 0.5%CVE-2025-2683MEDIUMPHPGurukul Bank Locker Management System profile.php sql injectionEPSS 0.5%CVE-2025-2641MEDIUMPHPGurukul Art Gallery Management System edit-artist-detail.php sql injectionEPSS 0.5%CVE-2023-50842HIGHWordPress MF Gig Calendar Plugin <= 1.2.1 is vulnerable to SQL InjectionEPSS 0.5%CVE-2025-2065MEDIUMprojectworlds Life Insurance Management System editAgent.php sql injectionEPSS 0.5%CVE-2026-15335HIGHBooking Package <= 1.7.20 - Unauthenticated SQL Injection via 'email' Form ParameterEPSS 0.5%CVE-2025-2660MEDIUMProject Worlds Online Time Table Generator index.php sql injectionEPSS 0.5%CVE-2025-2678MEDIUMPHPGurukul Bank Locker Management System changeimage1.php sql injectionEPSS 0.5%