Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8872

8872 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-5578 PHPGurukul Dairy Farm Shop Management System sales-report-details.php sql injection — Dairy Farm Shop Management System 7.3 High2025-06-04
CVE-2025-5577 PHPGurukul Dairy Farm Shop Management System profile.php sql injection — Dairy Farm Shop Management System 7.3 High2025-06-04
CVE-2025-5576 PHPGurukul Dairy Farm Shop Management System bwdate-report-details.php sql injection — Dairy Farm Shop Management System 7.3 High2025-06-04
CVE-2025-5575 PHPGurukul Dairy Farm Shop Management System add-product.php sql injection — Dairy Farm Shop Management System 7.3 High2025-06-04
CVE-2025-5574 PHPGurukul Dairy Farm Shop Management System add-company.php sql injection — Dairy Farm Shop Management System 7.3 High2025-06-04
CVE-2025-5569 IdeaCMS getList.html Goods sql injection — IdeaCMS 6.3 Medium2025-06-04
CVE-2025-5566 PHPGurukul Notice Board System search-notice.php sql injection — Notice Board System 6.3 Medium2025-06-04
CVE-2025-5562 PHPGurukul Curfew e-Pass Management System edit-category-detail.php sql injection — Curfew e-Pass Management System 7.3 High2025-06-04
CVE-2025-5561 PHPGurukul Curfew e-Pass Management System view-pass-detail.php sql injection — Curfew e-Pass Management System 7.3 High2025-06-04
CVE-2025-5560 PHPGurukul Curfew e-Pass Management System index.php sql injection — Curfew e-Pass Management System 7.3 High2025-06-04
CVE-2025-5558 PHPGurukul Teacher Subject Allocation Management System changeimage.php sql injection — Teacher Subject Allocation Management System 6.3 Medium2025-06-04
CVE-2025-5557 PHPGurukul Teacher Subject Allocation Management System edit-course.php sql injection — Teacher Subject Allocation Management System 6.3 Medium2025-06-04
CVE-2025-5556 PHPGurukul Teacher Subject Allocation Management System edit-teacher-info.php sql injection — Teacher Subject Allocation Management System 6.3 Medium2025-06-04
CVE-2025-5554 PHPGurukul Rail Pass Management System pass-bwdates-reports-details.php sql injection — Rail Pass Management System 6.3 Medium2025-06-04
CVE-2025-5553 PHPGurukul Rail Pass Management System download-pass.php sql injection — Rail Pass Management System 7.3 High2025-06-04
CVE-2025-5546 PHPGurukul Daily Expense Tracker System expense-reports-detailed.php sql injection — Daily Expense Tracker System 6.3 Medium2025-06-03
CVE-2025-48998 Dataease MYSQL JDBC File Reading Vulnerability — dataease 8.8AIHighAI2025-06-03
CVE-2025-5493 Baison Channel Middleware Product ToJsonByControlName sql injection — Channel Middleware Product 6.3 Medium2025-06-03
CVE-2025-5103 Ultimate Gift Cards for WooCommerce <= 3.1.4 - Authenticated (Administrator+) SQL Injection via wps_wgm_save_post Function — Ultimate Gift Cards for WooCommerce 4.9 Medium2025-06-03
CVE-2025-1750 SQL Injection in run-llama/llama_index — run-llama/llama_index 9.8AICriticalAI2025-06-02
CVE-2025-5435 Marwal Infotech CMS page.php sql injection — CMS 7.3 High2025-06-02
CVE-2025-5434 Aem Solutions CMS page.php sql injection — CMS 7.3 High2025-06-02
CVE-2025-5433 Fengoffice Feng Office index.php sql injection — Feng Office 6.3 Medium2025-06-02
CVE-2025-5432 AssamLook CMS view_tender.php sql injection — CMS 6.3 Medium2025-06-02
CVE-2025-5431 AssamLook CMS department-profile.php sql injection — CMS 6.3 Medium2025-06-02
CVE-2025-5430 AssamLook CMS product.php sql injection — CMS 6.3 Medium2025-06-02
CVE-2025-5403 chaitak-gorai Blogbook GET Parameter view_all_posts.php sql injection — Blogbook 6.3 Medium2025-06-01
CVE-2025-5402 chaitak-gorai Blogbook GET Parameter edit_post.php sql injection — Blogbook 7.3 High2025-06-01
CVE-2025-5401 chaitak-gorai Blogbook GET Parameter post.php sql injection — Blogbook 7.3 High2025-06-01
CVE-2025-5400 chaitak-gorai Blogbook GET Parameter user.php sql injection — Blogbook 7.3 High2025-06-01

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8872 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.