Falhas do tipo CWE-89
11.593 resultadosCVE-2024-0253HIGHSQL InjectionEPSS 5.0%CVE-2024-10660MEDIUMESAFENET CDG HookService.java deleteHook sql injectionEPSS 5.0%CVE-2026-42167HIGHmod_sql in ProFTPD before 1.3.9a allows remote attackers to execute arbitrary code via a username, in scenarios where there is logging of USEPSS 5.0%CVE-2024-29275CRITICALSQL injection vulnerability in SeaCMS version 12.9, allows remote unauthenticated attackers to execute arbitrary code and obtain sensitive iEPSS 5.0%CVE-2024-22611CRITICALOpenEMR 7.0.2 is vulnerable to SQL Injection via \openemr\library\classes\Pharmacy.class.php, \controllers\C_Pharmacy.class.php and \openemrEPSS 5.0%CVE-2024-39250CRITICALEfroTech Timetrax v8.3 was discovered to contain an unauthenticated SQL injection vulnerability via the q parameter in the search web interfEPSS 4.9%CVE-2020-14497—Advantech iView, versions 5.6 and prior, contains multiple SQL injection vulnerabilities that are vulnerable to the use of an attacker-contrEPSS 4.9%CVE-2023-4974MEDIUMAcademy LMS GET Parameter filter sql injectionEPSS 4.9%CVE-2023-40056HIGHSolarWinds Platform SQL Injection Remote Code Execution VulnerabilityEPSS 4.8%CVE-2024-1597CRITICALpgjdbc SQL Injection via line comment generationEPSS 4.8%CVE-2016-9488—ManageEngine Applications Manager versions 12 and 13 suffer from remote SQL injection vulnerabilitiesEPSS 4.8%CVE-2020-29574CRITICALAn SQL injection vulnerability in the WebAdmin of Cyberoam OS through 2020-12-04 allows unauthenticated attackers to execute arbitrary SQL sEPSS 4.7%KEVCVE-2024-5527HIGHSQL InjectionEPSS 4.7%CVE-2024-5487HIGHSQL InjectionEPSS 4.7%CVE-2021-24295—Time-based Blind SQL Injection in Spam protection, AntiSpam, FireWall by CleanTalk < 5.153.4EPSS 4.7%CVE-2021-24404—WP-Board <= 1.1 (beta) - Unauthenticated SQL InjectionEPSS 4.7%CVE-2021-24401—WP Domain Redirect <= 1.0 - Authenticated SQL InjectionEPSS 4.6%CVE-2021-24402—WP iCommerce <= 1.1.1 - Authenticated (contributor+) SQL InjectionEPSS 4.6%CVE-2021-35049CRITICALCommand Injection Vulnerability in Fidelis Network and DeceptionEPSS 4.6%CVE-2024-1254MEDIUMByzoro Smart S20 Management Platform sysmanageajax.php sql injectionEPSS 4.6%