Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8873

8873 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-2217 zzskzy Warehouse Refinement Management System getAdyData.ashx ProcessRequest sql injection — Warehouse Refinement Management System 6.3 Medium2025-03-12
CVE-2025-22954 Koha 安全漏洞 — Koha 10.0 Critical2025-03-12
CVE-2025-27617 Pimcore Vulnerable to SQL Injection in getRelationFilterCondition — pimcore 8.8 -2025-03-11
CVE-2024-33501 Fortinet FortiManager和Fortinet FortiAnalyzer SQL注入漏洞 — FortiManager 4.0 Medium2025-03-11
CVE-2024-54026 Fortinet FortiSandbox SQL注入漏洞 — FortiSandbox 4.1 Medium2025-03-11
CVE-2025-22370 Mennekes smart/premium charges systems, SQL Injection in web configuration interface — Smart / Premium charging stations 8.8 -2025-03-11
CVE-2025-2132 ftcms Search ajax_all_lists sql injection — ftcms 4.7 Medium2025-03-09
CVE-2025-2126 JoomlaUX JUX Real Estate GET Parameter realties sql injection — JUX Real Estate 6.3 Medium2025-03-09
CVE-2025-2118 Quantico Tecnologia PRMV Login Endpoint login.php sql injection — PRMV 7.3 High2025-03-09
CVE-2025-2117 Beijing Founder Electronics Founder Enjoys All-Media Acquisition and Editing System reportCenter.do electricDocList sql injection — Founder Enjoys All-Media Acquisition and Editing System 6.3 Medium2025-03-09
CVE-2025-2113 AT Software Solutions ATSVD Esqueceu a senha sql injection — ATSVD 7.3 High2025-03-09
CVE-2025-2112 user-xiangpeng yaoqishan MediaInfoService.java getMediaLisByFilter sql injection — yaoqishan 6.3 Medium2025-03-08
CVE-2025-1323 WP-Recall – Registration, Profile, Commerce & More <= 16.26.10 - Unauthenticated SQL Injection — WP-Recall – Registration, Profile, Commerce & More 7.5 High2025-03-08
CVE-2024-13844 Post SMTP <= 3.1.2 - Authenticated (Administrator+) SQL Injection via columns Parameter — Post SMTP – Complete Email Deliverability and SMTP Solution with Email Logs, Alerts, Backup SMTP & Mobile App 4.9 Medium2025-03-08
CVE-2025-2088 PHPGurukul Pre-School Enrollment System profile.php sql injection — Pre-School Enrollment System 7.3 High2025-03-07
CVE-2025-1768 SEO Plugin by Squirrly SEO <= 12.4.05 - Authenticated (Subscriber+) SQL Injection via search Parameter — SEO Plugin by Squirrly SEO 6.5 Medium2025-03-07
CVE-2024-12609 School Management System for Wordpress <= 92.0.0 - Authenticated (Student+) SQL Injection via 'view-attendance' — School Management System for Wordpress 6.5 Medium2025-03-07
CVE-2024-13781 Hero Maps Premium - Customizable Google Maps Plugin <= 2.3.9 - Authenticated (Subscriber+) SQL Injection — Hero Maps Premium 6.5 Medium2025-03-07
CVE-2024-12607 School Management System for Wordpress <= 92.0.0 - Authenticated (Subscriber+) SQL Injection via 'mj_smgt_show_event_task' — School Management System for Wordpress 6.5 Medium2025-03-07
CVE-2024-13320 CURCY - WooCommerce Multi Currency - Currency Switcher <= 2.3.6 - Unauthenticated SQL Injection — CURCY - WooCommerce Multi Currency - Currency Switcher 7.5 High2025-03-07
CVE-2025-2067 projectworlds Life Insurance Management System search.php sql injection — Life Insurance Management System 7.3 High2025-03-07
CVE-2025-2066 projectworlds Life Insurance Management System updateAgent.php sql injection — Life Insurance Management System 7.3 High2025-03-07
CVE-2025-2065 projectworlds Life Insurance Management System editAgent.php sql injection — Life Insurance Management System 7.3 High2025-03-07
CVE-2025-2064 projectworlds Life Insurance Management System deletePayment.php sql injection — Life Insurance Management System 7.3 High2025-03-07
CVE-2025-2063 projectworlds Life Insurance Management System deleteNominee.php sql injection — Life Insurance Management System 7.3 High2025-03-07
CVE-2025-2062 projectworlds Life Insurance Management System clientStatus.php sql injection — Life Insurance Management System 7.3 High2025-03-07
CVE-2025-2060 PHPGurukul Emergency Ambulance Hiring Portal admin-profile.php sql injection — Emergency Ambulance Hiring Portal 7.3 High2025-03-07
CVE-2025-2059 PHPGurukul Emergency Ambulance Hiring Portal booking-details.php sql injection — Emergency Ambulance Hiring Portal 7.3 High2025-03-07
CVE-2025-2058 PHPGurukul Emergency Ambulance Hiring Portal search.php sql injection — Emergency Ambulance Hiring Portal 7.3 High2025-03-07
CVE-2025-2057 PHPGurukul Emergency Ambulance Hiring Portal about-us.php sql injection — Emergency Ambulance Hiring Portal 7.3 High2025-03-07

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8873 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.