Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8872

8872 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-4865 itsourcecode Restaurant Management System member_save.php sql injection — Restaurant Management System 7.3 High2025-05-18
CVE-2025-4864 itsourcecode Restaurant Management System finished.php sql injection — Restaurant Management System 7.3 High2025-05-18
CVE-2025-4863 Advaya Softech GEMS ERP Portal studentLogin.action sql injection — GEMS ERP Portal 6.3 Medium2025-05-18
CVE-2025-4861 PHPGurukul Beauty Parlour Management System admin-profile.php sql injection — Beauty Parlour Management System 7.3 High2025-05-18
CVE-2025-4837 projectworlds Student Project Allocation System make_group_sql.php sql injection — Student Project Allocation System 7.3 High2025-05-17
CVE-2025-4836 Projectworlds Life Insurance Management System deleteAgent.php sql injection — Life Insurance Management System 7.3 High2025-05-17
CVE-2025-4818 SourceCodester Doctor's Appointment System GET Parameter delete-doctor.php sql injection — Doctor's Appointment System 7.3 High2025-05-17
CVE-2025-4817 Sourcecodester Doctor's Appointment System GET Parameter delete-appointment.php sql injection — Doctor's Appointment System 7.3 High2025-05-17
CVE-2025-4816 SourceCodester Doctor's Appointment System GET Parameter appointment.php sql injection — Doctor's Appointment System 7.3 High2025-05-17
CVE-2025-4815 Campcodes Sales and Inventory System supplier_update.php sql injection — Sales and Inventory System 7.3 High2025-05-17
CVE-2025-4814 Campcodes Sales and Inventory System supplier_add.php sql injection — Sales and Inventory System 7.3 High2025-05-17
CVE-2025-4813 PHPGurukul Human Metapneumovirus Testing Management System edit-phlebotomist.php sql injection — Human Metapneumovirus Testing Management System 7.3 High2025-05-16
CVE-2025-4812 PHPGurukul Human Metapneumovirus Testing Management System profile.php sql injection — Human Metapneumovirus Testing Management System 7.3 High2025-05-16
CVE-2025-4811 CodeAstro Pharmacy Management System Login index.php sql injection — Pharmacy Management System 7.3 High2025-05-16
CVE-2025-4808 PHPGurukul Park Ticketing Management System add-normal-ticket.php sql injection — Park Ticketing Management System 6.3 Medium2025-05-16
CVE-2025-4806 SourceCodester/oretnom23 Stock Management System view_bo sql injection — Stock Management System 6.3 Medium2025-05-16
CVE-2025-4795 gongfuxiang schoolcms index.php SaveInfo sql injection — schoolcms 4.7 Medium2025-05-16
CVE-2025-4794 PHPGurukul Online Course Registration news.php sql injection — Online Course Registration 7.3 High2025-05-16
CVE-2025-4793 PHPGurukul Online Course Registration edit-student-profile.php sql injection — Online Course Registration 7.3 High2025-05-16
CVE-2025-4787 SourceCodester/oretnom23 Stock Management System view_sale sql injection — Stock Management System 6.3 Medium2025-05-16
CVE-2025-31637 WordPress SHOUT plugin <= 3.5.3 - SQL Injection Vulnerability — SHOUT 8.5 High2025-05-16
CVE-2025-31640 WordPress Magic Responsive Slider and Carousel WordPress plugin < 1.6 - SQL Injection Vulnerability — Magic Responsive Slider and Carousel WordPress 8.5 High2025-05-16
CVE-2025-31641 WordPress UberSlider plugin <= 2.3 - SQL Injection Vulnerability — UberSlider 8.5 High2025-05-16
CVE-2025-31926 WordPress Sticky Radio Player plugin <= 3.4 - SQL Injection Vulnerability — Sticky Radio Player 8.5 High2025-05-16
CVE-2025-31928 WordPress Multimedia Responsive Carousel with Image Video Audio Support plugin <= 2.6.0 - SQL Injection Vulnerability — Multimedia Responsive Carousel with Image Video Audio Support 8.5 High2025-05-16
CVE-2025-32287 WordPress Responsive HTML5 Audio Player PRO With Playlist plugin <= 3.5.7 - SQL Injection Vulnerability — Responsive HTML5 Audio Player PRO With Playlist 8.5 High2025-05-16
CVE-2025-32290 WordPress Sticky HTML5 Music Player plugin <= 3.1.6 - SQL Injection Vulnerability — Sticky HTML5 Music Player 8.5 High2025-05-16
CVE-2025-32301 WordPress CountDown Pro WP Plugin <= 2.7 - SQL Injection Vulnerability — CountDown Pro WP Plugin 8.5 High2025-05-16
CVE-2025-32307 WordPress Chameleon HTML5 Audio Player With/Without Playlist plugin <= 3.5.6 - SQL Injection Vulnerability — Chameleon HTML5 Audio Player With/Without Playlist 8.5 High2025-05-16
CVE-2025-32306 WordPress Radio Player Shoutcast & Icecast theme <= 4.4.6 - SQL Injection Vulnerability — Radio Player Shoutcast & Icecast WordPress Plugin 8.5 High2025-05-16

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8872 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.