Falhas do tipo CWE-89

11.724 resultados
CVE-2022-44403HIGHAutomotive Shop Management System v1.0 is vulnerable to SQL Injection via /asms/admin/?page=user/manage_user&id=.EPSS 0.7%CVE-2023-2815MEDIUMSourceCodester Online Jewelry Store POST Parameter supplier.php sql injectionEPSS 0.7%CVE-2022-44402HIGHAutomotive Shop Management System v1.0 is vulnerable to SQL Injection via /asms/classes/Master.php?f=delete_transaction.EPSS 0.7%CVE-2022-41439HIGHBilling System Project v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /phpinventory/edituser.php.EPSS 0.7%CVE-2022-44296HIGHSanitization Management System v1.0 is vulnerable to SQL Injection via /php-sms/admin/quotes/manage_remark.php?id=.EPSS 0.7%CVE-2022-43126HIGHOnline Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/tests/maEPSS 0.7%CVE-2022-46117HIGHHelmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/?page=view_product&id=.EPSS 0.7%CVE-2024-51164CRITICALMultiple parameters have SQL injection vulnerability in JEPaaS 7.2.8 via /je/login/btnLog/insertBtnLog, which could allow a remote user to sEPSS 0.7%CVE-2022-43163HIGHOnline Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /clients/view_cEPSS 0.7%CVE-2022-42218HIGHOpen Source SACCO Management System v1.0 vulnerable to SQL Injection via /sacco_shield/manage_loan.php.EPSS 0.7%CVE-2023-1963MEDIUMPHPGurukul Bank Locker Management System Search index.php sql injectionEPSS 0.7%CVE-2023-2643MEDIUMSourceCodester File Tracker Manager System POST Parameter update_password.php sql injectionEPSS 0.7%CVE-2022-46472HIGHHelmet Store Showroom Site v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /hss/classes/Users.php?f=delEPSS 0.7%CVE-2025-25389CRITICALA SQL Injection vulnerability was found in /admin/forgot-password.php in Phpgurukul Land Record System v1.0, which allows remote attackers tEPSS 0.7%CVE-2022-40352HIGHOnline Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/update_EPSS 0.7%CVE-2023-1358MEDIUMSourceCodester Gadget Works Online Ordering System POST Parameter login.php sql injectionEPSS 0.7%CVE-2022-41416HIGHOnline Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /user/update_bEPSS 0.7%CVE-2023-1793MEDIUMSourceCodester Police Crime Record Management System GET Parameter assigncase.php sql injectionEPSS 0.7%CVE-2022-43291HIGHCanteen Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /youthappam/editclient.php.EPSS 0.7%CVE-2022-43063HIGHOnline Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Users.EPSS 0.7%