Falhas do tipo CWE-89

11.840 resultados
CVE-2024-45771CRITICALRapidCMS v1.3.1 was discovered to contain a SQL injection vulnerability via the password parameter at /resource/runlogin.php.EPSS 0.5%CVE-2026-33770HIGHAVideo has SQL Injection in category.php fixCleanTitle() via Unparameterized clean_title and id VariablesEPSS 0.5%CVE-2023-0946MEDIUMSourceCodester Best POS Management System sql injectionEPSS 0.5%CVE-2024-42994HIGHVTiger CRM <= 8.1.0 does not properly sanitize user input before using it in a SQL statement, leading to a SQL Injection in the "CompanyDetaEPSS 0.5%CVE-2023-3619MEDIUMSourceCodester AC Repair and Services System HTTP POST Request sql injectionEPSS 0.5%CVE-2024-30981MEDIUMSQL Injection vulnerability in /edit-computer-detail.php in phpgurukul Cyber Cafe Management System Using PHP & MySQL v1.0 allows attackers EPSS 0.5%CVE-2023-1735MEDIUMSourceCodester Young Entrepreneur E-Negosyo System passwordrecover.php sql injectionEPSS 0.5%CVE-2024-10072MEDIUMESAFENET CDG EncryptPolicyService.java actionAddEncryptPolicyGroup sql injectionEPSS 0.5%CVE-2023-3644MEDIUMSourceCodester Service Provider Management System sql injectionEPSS 0.5%CVE-2026-32714CRITICALSciTokens vulnerable to SQL Injection in KeyCacheEPSS 0.5%CVE-2024-44839CRITICALRapidCMS v1.3.1 was discovered to contain a SQL injection vulnerability via the articleid parameter at /default/article.php.EPSS 0.5%CVE-2023-21412HIGHNon-sanitized user input could lead to SQL injections in AXIS License Plate VerifierEPSS 0.5%CVE-2026-5486MEDIUMUnlimited Elements For Elementor <= 2.0.7 - Authenticated (Contributor+) SQL Injection via 'filter_search' ParameterEPSS 0.5%CVE-2023-3528MEDIUMThinuTech ThinuCMS category.php sql injectionEPSS 0.5%CVE-2023-1738MEDIUMSourceCodester Young Entrepreneur E-Negosyo System sql injectionEPSS 0.5%CVE-2023-1322MEDIUMlmxcms BookAction.class.php reply sql injectionEPSS 0.5%CVE-2024-9887HIGHLogin using WordPress Users ( WP as SAML IDP ) <= 1.15.6 - Authenticated (Administrator+) SQL InjectionEPSS 0.5%CVE-2025-24368MEDIUMCacti has a SQL Injection vulnerability when using tree rules through Automation APIEPSS 0.5%CVE-2025-8234MEDIUMcode-projects Online Ordering System delete_member.php sql injectionEPSS 0.5%CVE-2024-9828MEDIUMTaskbuilder < 3.0.5 - Admin+ SQL InjectionEPSS 0.5%