Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8873

8873 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-2654 SourceCodester AC Repair and Services System manage_service.php sql injection — AC Repair and Services System 7.3 High2025-03-23
CVE-2025-2649 PHPGurukul Doctor Appointment Management System check-appointment.php sql injection — Doctor Appointment Management System 7.3 High2025-03-23
CVE-2025-2648 PHPGurukul Art Gallery Management System view-enquiry-detail.php sql injection — Art Gallery Management System 7.3 High2025-03-23
CVE-2025-2647 PHPGurukul Art Gallery Management System search.php sql injection — Art Gallery Management System 7.3 High2025-03-23
CVE-2025-2646 PHPGurukul Art Gallery Management System admin-profile.php sql injection — Art Gallery Management System 7.3 High2025-03-23
CVE-2025-2644 PHPGurukul Art Gallery Management System add-art-product.php sql injection — Art Gallery Management System 7.3 High2025-03-23
CVE-2025-2643 PHPGurukul Art Gallery Management System edit-art-type-detail.php sql injection — Art Gallery Management System 7.3 High2025-03-23
CVE-2025-2642 PHPGurukul Art Gallery Management System edit-art-product-detail.php sql injection — Art Gallery Management System 7.3 High2025-03-23
CVE-2025-2641 PHPGurukul Art Gallery Management System edit-artist-detail.php sql injection — Art Gallery Management System 7.3 High2025-03-23
CVE-2025-2640 PHPGurukul Doctor Appointment Management System appointment-bwdates-reports-details.php sql injection — Doctor Appointment Management System 7.3 High2025-03-23
CVE-2025-2628 PHPGurukul Art Gallery Management System art-enquiry.php sql injection — Art Gallery Management System 6.3 Medium2025-03-22
CVE-2025-2627 PHPGurukul Art Gallery Management System contactus.php sql injection — Art Gallery Management System 6.3 Medium2025-03-22
CVE-2025-2626 SourceCodester Kortex Lite Advocate Office Management System edit_case.php sql injection — Kortex Lite Advocate Office Management System 6.3 Medium2025-03-22
CVE-2025-2625 westboy CicadasCMS page sql injection — CicadasCMS 6.3 Medium2025-03-22
CVE-2025-2624 westboy CicadasCMS save sql injection — CicadasCMS 6.3 Medium2025-03-22
CVE-2025-2186 Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation By FunnelKit <= 3.5.1 - Unauthenticated SQL Injection via 'automationId' — FunnelKit Automations – Email Marketing Automation and CRM for WordPress & WooCommerce 7.5 High2025-03-22
CVE-2025-2478 Code Clone <= 0.9 - Authenticated (Administrator+) SQL Injection via snippetId Parameter — Code Clone 4.9 Medium2025-03-22
CVE-2025-1311 WooCommerce Multivendor Marketplace – REST API <= 1.6.2 - Authenticated (Subscriber+) SQL Injection — WCFM – Multivendor Marketplace REST API for WooCommerce 6.5 Medium2025-03-22
CVE-2025-0723 ProfileGrid – User Profiles, Groups and Communities <= 5.9.4.7 - Authenticated (Subscriber+) SQL Injection — ProfileGrid – User Profiles, Groups and Communities 6.5 Medium2025-03-22
CVE-2025-2608 PHPGurukul Banquet Booking System view-user-queries.php sql injection — Banquet Booking System 6.3 Medium2025-03-21
CVE-2025-2604 SourceCodester Kortex Lite Advocate Office Management System edit_act.php sql injection — Kortex Lite Advocate Office Management System 6.3 Medium2025-03-21
CVE-2025-2603 SourceCodester Kortex Lite Advocate Office Management System deactivate.php sql injection — Kortex Lite Advocate Office Management System 6.3 Medium2025-03-21
CVE-2025-2602 SourceCodester Kortex Lite Advocate Office Management System deactivate_reg.php sql injection — Kortex Lite Advocate Office Management System 6.3 Medium2025-03-21
CVE-2025-2601 SourceCodester Kortex Lite Advocate Office Management System activate_reg.php sql injection — Kortex Lite Advocate Office Management System 6.3 Medium2025-03-21
CVE-2025-2593 FastCMS list sql injection — FastCMS 6.3 Medium2025-03-21
CVE-2025-2587 Jinher OA C6 IncentivePlanFulfillAppprove.aspx sql injection — OA C6 6.3 Medium2025-03-21
CVE-2025-2585 EBM Technologies EBM Maintenance Center - SQL injection — EBM Maintenance Center 8.8 High2025-03-21
CVE-2025-29980 Blind SQL Injection vulnerability in eTRAKiT.Net — eTRAKiT.Net 9.8 Critical2025-03-20
CVE-2024-7764 SQL Injection in vanna-ai/vanna — vanna-ai/vanna 9.8 -2025-03-20
CVE-2024-11958 SQL Injection in run-llama/llama_index — run-llama/llama_index 9.8 -2025-03-20

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8873 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.