Falhas do tipo CWE-89

11.727 resultados
CVE-2024-3440MEDIUMSourceCodester Prison Management System edit_profile.php sql injectionEPSS 0.7%CVE-2024-56801MEDIUMTasklists has Blind SQL Injection in /ajax/reorder.phpEPSS 0.7%CVE-2024-3257MEDIUMSourceCodester Internship Portal Management System edit_activity_query.php sql injectionEPSS 0.7%CVE-2023-29096HIGHWordPress Contact Form to DB by BestWebSoft Plugin <= 1.7.0 is vulnerable to SQL InjectionEPSS 0.7%CVE-2023-2851CRITICALSQLi in CeppatronEPSS 0.7%CVE-2025-45346HIGHSQL Injection vulnerability in Bacula-web before v.9.7.1 allows a remote attacker to execute arbitrary code via a crafted HTTP GET request.EPSS 0.7%CVE-2022-2315CRITICALSQL Injection in Database Accreditation SystemEPSS 0.7%CVE-2024-25304HIGHCode-projects Simple School Managment System 1.0 allows SQL Injection via the 'apass' parameter at "School/index.php."EPSS 0.7%CVE-2024-30871HIGHnetentsec NS-ASG 6.3 is vulnerable to SQL Injection via /WebPages/applyhardware.php.EPSS 0.7%CVE-2024-3254MEDIUMSourceCodester Internship Portal Management System edit_admin.php sql injectionEPSS 0.7%CVE-2024-25312HIGHCode-projects Simple School Managment System 1.0 allows SQL Injection via the 'id' parameter at "School/sub_delete.php?id=5."EPSS 0.7%CVE-2024-3256MEDIUMSourceCodester Internship Portal Management System edit_activity.php sql injectionEPSS 0.7%CVE-2024-48733HIGHSQL injection vulnerability in /SASStudio/sasexec/sessions/{sessionID}/sql in SAS Studio 9.4 allows remote attacker to execute arbitrary SQLEPSS 0.7%CVE-2022-2667MEDIUMSourceCodester Loan Management System delete_lplan.php sql injectionEPSS 0.7%CVE-2024-3258MEDIUMSourceCodester Internship Portal Management System add_activity.php sql injectionEPSS 0.7%CVE-2022-38490CRITICALAn issue was discovered in EasyVista 2020.2.125.3 and 2022.1.109.0.03. Some parameters allow SQL injection. Version 2022.1.110.1.02 correctsEPSS 0.7%CVE-2024-0301MEDIUMfhs-opensource iparking PayTempOrderAction.java getData sql injectionEPSS 0.7%CVE-2022-38492HIGHAn issue was discovered in EasyVista 2020.2.125.3 and 2022.1.109.0.03. One parameter allows SQL injection. Version 2022.1.110.1.02 fixes theEPSS 0.7%CVE-2025-1750CRITICALSQL Injection in run-llama/llama_indexEPSS 0.7%CVE-2025-22352HIGHWordPress ELEX WooCommerce Advanced Bulk Edit Products, Prices & Attributes Plugin <= 1.4.9 - SQL Injection vulnerabilityEPSS 0.7%