Falhas do tipo CWE-89

11.848 resultados
CVE-2024-39027HIGHSeaCMS v12.9 has an unauthorized SQL injection vulnerability. The vulnerability is caused by the SQL injection through the cid parameter at EPSS 0.4%CVE-2024-7676MEDIUMSourcecodester Car Driving School Management System Master.php save_package sql injectionEPSS 0.4%CVE-2024-7669MEDIUMSourceCodester Car Driving School Management System Master.php delete_enrollment sql injectionEPSS 0.4%CVE-2024-6195MEDIUMitsourcecode Tailoring Management System orderadd.php sql injectionEPSS 0.4%CVE-2024-7668MEDIUMSourceCodester Car Driving School Management System Master.php delete_package sql injectionEPSS 0.4%CVE-2024-6194MEDIUMitsourcecode Tailoring Management System editmeasurement.php sql injectionEPSS 0.4%CVE-2025-12707HIGHLibrary Management System <= 3.2.1 - Unauthenticated SQL InjectionEPSS 0.4%CVE-2024-10760MEDIUMcode-projects University Event Management System dodelete.php sql injectionEPSS 0.4%CVE-2025-2682MEDIUMPHPGurukul Bank Locker Management System edit-subadmin.php sql injectionEPSS 0.4%CVE-2024-6676MEDIUMwitmy my-springsecurity-plus user sql injectionEPSS 0.4%CVE-2026-4223MEDIUMitsourcecode Payroll Management System manage_employee.php sql injectionEPSS 0.4%CVE-2025-1464MEDIUMBaiyi Cloud Asset Management System admin.house.collect.php sql injectionEPSS 0.4%CVE-2024-11135HIGHEventer <= 3.9.8 - Unauthenticated SQL Injection via eventer_get_attendeesEPSS 0.4%CVE-2025-32626CRITICALWordPress JS Job Manager plugin <= 2.0.2 - SQL Injection vulnerabilityEPSS 0.4%CVE-2026-30529HIGHA SQL Injection vulnerability exists in SourceCodester Online Food Ordering System v1.0 in the Actions.php file (specifically the save_user EPSS 0.4%CVE-2024-12941MEDIUMCodeAstro Blood Donor Management System deletedannounce.php sql injectionEPSS 0.4%CVE-2024-6830MEDIUMSourceCodester Simple Inventory Management System Order action.php sql injectionEPSS 0.4%CVE-2025-3684MEDIUMXianqi Kindergarten Management System Child Management stu_list.php sql injectionEPSS 0.4%CVE-2026-33153HIGHTandoor Recipes's Unauthenticated Debug Parameter Leaks Full Raw SQL Queries Including Schema, Table Names, and Access Control LogicEPSS 0.4%CVE-2025-2738MEDIUMPHPGurukul Old Age Home Management System manage-scdetails.php sql injectionEPSS 0.4%