Fallos del tipo CWE-89

11.770 resultados
CVE-2024-25525CRITICALRuvarOA v6.01 and v12.01 were discovered to contain a SQL injection vulnerability via the filename parameter at /WorkFlow/OfficeFileDownloadEPSS 0.6%CVE-2024-23763CRITICALSQL Injection vulnerability in Gambio through 4.9.2.0 allows attackers to run arbitrary SQL commands via crafted GET request using modifiersEPSS 0.6%CVE-2024-25520CRITICALRuvarOA v6.01 and v12.01 were discovered to contain a SQL injection vulnerability via the id parameter at /SysManage/sys_blogtemplate_new.asEPSS 0.6%CVE-2024-5048MEDIUMcode-projects Budget Management index.php sql injectionEPSS 0.6%CVE-2024-4215HIGHThe Multi Factor Authentication bypass vulnerability in pgAdmin 4EPSS 0.6%CVE-2013-10019MEDIUMOCLC-Research OAICat sql injectionEPSS 0.6%CVE-2024-33544CRITICALWordPress WZone plugin <= 14.0.10 - Unauthenticated SQL Injection vulnerabilityEPSS 0.6%CVE-2022-50589CRITICALSuiteCRM < 7.12.6 SQL Injection via 'export' FunctionalityEPSS 0.6%CVE-2022-47072CRITICALSQL injection vulnerability in Enterprise Architect 16.0.1605 32-bit allows attackers to run arbitrary SQL commands via the Find parameter iEPSS 0.6%CVE-2025-10811MEDIUMcode-projects Hostel Management System index.php sql injectionEPSS 0.6%CVE-2025-10810MEDIUMCampcodes Online Learning Management System edit_user.php sql injectionEPSS 0.6%CVE-2023-49776CRITICALWordPress Sayfa Sayaç Plugin <= 2.6 is vulnerable to SQL InjectionEPSS 0.6%CVE-2024-2514HIGHMAGESH-K21 Online-College-Event-Hall-Reservation-System login.php sql injectionEPSS 0.6%CVE-2024-1878MEDIUMSourceCodester Employee Management System myprofile.php sql injectionEPSS 0.6%CVE-2022-27485MEDIUMA improper neutralization of special elements used in an sql command ('sql injection') vulnerability [CWE-89] in Fortinet FortiSandbox versiEPSS 0.6%CVE-2024-30990CRITICALSQL Injection vulnerability in the "Invoices" page in phpgurukul Client Management System using PHP & MySQL 1.1 allows attacker to execute aEPSS 0.6%CVE-2022-45355HIGHWordPress WP Pipes Plugin <= 1.33 is vulnerable to SQL Injection (SQLi)EPSS 0.6%CVE-2017-20172MEDIUMridhoq soundslike songs.py get_song_relations sql injectionEPSS 0.6%CVE-2008-10004MEDIUMEmail Registration email_registration.module email_registration_user sql injectionEPSS 0.6%CVE-2024-10167MEDIUMCodezips Sales Management System deletecustind.php sql injectionEPSS 0.6%