Falhas do tipo CWE-89

11.724 resultados
CVE-2022-36030CRITICALSQL Injection in Project-nexusEPSS 0.7%CVE-2023-2865MEDIUMSourceCodester Theme Park Ticketing System GET Parameter print_ticket.php sql injectionEPSS 0.7%CVE-2022-46122HIGHHelmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/admin/categories/view_category.php?id=.EPSS 0.7%CVE-2025-25389CRITICALA SQL Injection vulnerability was found in /admin/forgot-password.php in Phpgurukul Land Record System v1.0, which allows remote attackers tEPSS 0.7%CVE-2022-46123HIGHHelmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/admin/categories/manage_category.php?id=.EPSS 0.7%CVE-2023-1952MEDIUMSourceCodester Online Computer and Laptop Store Product Search ?p=products sql injectionEPSS 0.7%CVE-2022-43062HIGHOnline Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/MasterEPSS 0.7%CVE-2022-44295HIGHSanitization Management System v1.0 is vulnerable to SQL Injection via /php-sms/admin/orders/assign_team.php?id=.EPSS 0.7%CVE-2024-51164CRITICALMultiple parameters have SQL injection vulnerability in JEPaaS 7.2.8 via /je/login/btnLog/insertBtnLog, which could allow a remote user to sEPSS 0.7%CVE-2022-43179HIGHOnline Leave Management System v1.0 was discovered to contain a SQL injection vulnerability via the component /admin/?page=user/manage_user&EPSS 0.7%CVE-2022-43127HIGHOnline Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /appointments/uEPSS 0.7%CVE-2022-44345HIGHSanitization Management System v1.0 is vulnerable to SQL Injection via /php-sms/admin/?page=quotes/view_quote&id=.EPSS 0.7%CVE-2025-25914CRITICALSQL injection vulnerability in Online Exam Mastering System v.1.0 allows a remote attacker to execute arbitrary code via the fid parameterEPSS 0.7%CVE-2023-1499MEDIUMcode-projects Simple Art Gallery adminHome.php sql injectionEPSS 0.7%CVE-2023-1793MEDIUMSourceCodester Police Crime Record Management System GET Parameter assigncase.php sql injectionEPSS 0.7%CVE-2023-1958MEDIUMSourceCodester Online Computer and Laptop Store sql injectionEPSS 0.7%CVE-2023-0245MEDIUMSourceCodester Online Flight Booking Management System add_contestant.php sql injectionEPSS 0.7%CVE-2023-48741HIGHWordPress ChatBot Plugin <= 4.7.8 is vulnerable to SQL InjectionEPSS 0.7%CVE-2023-39378HIGH SiberianCMS - CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') by an unauthenticated userEPSS 0.7%CVE-2023-47530HIGHWordPress Redirect 404 Error Page to Homepage or Custom Page with Logs Plugin <= 1.8.7 is vulnerable to SQL InjectionEPSS 0.7%