Weaknesses of type CWE-89

11,851 results
CVE-2024-51444HIGHA vulnerability has been identified in Polarion V2310 (All versions), Polarion V2404 (All versions < V2404.4). The application insufficientlEPSS 0.4%CVE-2024-39909MEDIUMSQL Injection in the KubeClarity REST APIEPSS 0.4%CVE-2025-39481CRITICALWordPress Eventer plugin < 3.11.4 - SQL Injection vulnerabilityEPSS 0.4%CVE-2022-39069MEDIUMThere is a SQL injection vulnerability in ZTE ZAIP-AIE. Due to lack of input verification by the server, an attacker could trigger an attackEPSS 0.4%CVE-2024-13236MEDIUMTainacan <= 0.21.12 - Authenticated (Subscriber+) SQL InjectionEPSS 0.4%CVE-2025-3817MEDIUMSourceCodester Online Eyewear Shop Master.php sql injectionEPSS 0.4%CVE-2022-47151HIGHWordPress JS Help Desk plugin <= 2.7.1 - Unauth. SQL Injection VulnerabilityEPSS 0.4%CVE-2024-40072CRITICALSourcecodester Online ID Generator System 1.0 was discovered to contain a SQL injection vulnerability via the id parameter at id_generator/aEPSS 0.4%CVE-2025-3696MEDIUMSourceCodester Web-based Pharmacy Product Management System search_stock. php sql injectionEPSS 0.4%CVE-2025-3796MEDIUMPHPGurukul Men Salon Management System contact-us.php sql injectionEPSS 0.4%CVE-2024-40073CRITICALSourcecodester Online ID Generator System 1.0 was discovered to contain a SQL injection vulnerability via the template parameter at id_generEPSS 0.4%CVE-2025-3685MEDIUMcode-projects Patient Record Management System edit_fpatient.php sql injectionEPSS 0.4%CVE-2026-31844HIGHAuthenticated SQL Injection in Koha displayby parameter of suggestion.plEPSS 0.4%CVE-2026-33442HIGHKysely has a MySQL SQL Injection via Backslash Escape Bypass in non-type-safe usage of JSON path keys.EPSS 0.4%CVE-2025-69562CRITICALcode-projects Mobile Shop Management System 1.0 is vulnerable to SQL Injection in /insertmessage.php via the userid parameter.EPSS 0.4%CVE-2024-7800MEDIUMSourceCodester Simple Online Bidding System ajax.php sql injectionEPSS 0.4%CVE-2025-30876CRITICALWordPress Ads by WPQuads plugin <= 2.0.87.1 - SQL Injection VulnerabilityEPSS 0.4%CVE-2024-8749HIGHSQL Injection vulnerability in Idoit proEPSS 0.4%CVE-2025-69563CRITICALcode-projects Mobile Shop Management System 1.0 is vulnerable to SQL Injection in /ExLogin.php via the Password parameter.EPSS 0.4%CVE-2024-41944MEDIUMSensitive Information Disclosure abusing SQL Injection in Xibo CMS proof of play reportEPSS 0.4%