Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8873

8873 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-13532 Small Package Quotes – Purolator Edition <= 3.6.4 - Unauthenticated SQL Injection — Small Package Quotes – Purolator Edition 7.5 High2025-02-12
CVE-2024-13477 LTL Freight Quotes – Unishippers Edition <= 2.5.8 - Unauthenticated SQL Injection — LTL Freight Quotes – Unishippers Edition 7.5 High2025-02-12
CVE-2025-1192 SourceCodester Multi Restaurant Table Reservation System select-menu.php sql injection — Multi Restaurant Table Reservation System 6.3 Medium2025-02-12
CVE-2025-1191 SourceCodester Multi Restaurant Table Reservation System approve-reject.php sql injection — Multi Restaurant Table Reservation System 6.3 Medium2025-02-12
CVE-2024-32838 Apache Fineract: SQL injection vulnerabilities in offices API endpoint — Apache Fineract 8.8 -2025-02-12
CVE-2025-1189 1000 Projects Attendance Tracking Management System chart1.php sql injection — Attendance Tracking Management System 6.3 Medium2025-02-12
CVE-2024-13531 ShipEngine Shipping Quotes <= 1.0.7 - Unauthenticated SQL Injection — ShipEngine Shipping Quotes 7.5 High2025-02-12
CVE-2024-13475 Small Package Quotes – UPS Edition <= 4.5.16 - Unauthenticated SQL Injection — Small Package Quotes – UPS Edition 7.5 High2025-02-12
CVE-2024-13490 LTL Freight Quotes – XPO Edition <= 4.3.7 - Unauthenticated SQL Injection — LTL Freight Quotes – XPO Edition 7.5 High2025-02-12
CVE-2024-13435 Ebook Downloader <= 1.0 - Unauthenticated SQL Injection — Ebook Downloader 7.5 High2025-02-12
CVE-2024-13473 LTL Freight Quotes - Worldwide Express Edition <= 5.0.20 - Unauthenticated SQL Injection — LTL Freight Quotes – Worldwide Express Edition 7.5 High2025-02-12
CVE-2025-1188 Codezips Gym Management System updateroutine.php sql injection — Gym Management System 6.3 Medium2025-02-12
CVE-2025-1185 pihome-shc PiHome ajax.php sql injection — PiHome 6.3 Medium2025-02-12
CVE-2025-1184 pihome-shc PiHome ajax.php sql injection — PiHome 6.3 Medium2025-02-12
CVE-2025-1183 CodeZips Gym Management System more-userprofile.php sql injection — Gym Management System 6.3 Medium2025-02-12
CVE-2025-26520 Cacti 安全漏洞 — Cacti 7.6 High2025-02-12
CVE-2025-1173 1000 Projects Bookstore Management System process_users_del.php sql injection — Bookstore Management System 4.7 Medium2025-02-11
CVE-2025-1172 1000 Projects Bookstore Management System addtocart.php sql injection — Bookstore Management System 6.3 Medium2025-02-11
CVE-2025-1168 SourceCodester Contact Manager with Export to VCF delete-contact.php sql injection — Contact Manager with Export to VCF 6.3 Medium2025-02-11
CVE-2025-1167 Mayuri K Employee Management System Update_User.php sql injection — Employee Management System 6.3 Medium2025-02-11
CVE-2025-1162 code-projects Job Recruitment load\_user-profile.php sql injection — Job Recruitment 6.3 Medium2025-02-10
CVE-2025-1158 ESAFENET CDG addPolicyToSafetyGroup.jsp sql injection — CDG 6.3 Medium2025-02-10
CVE-2025-1157 Allims lab.online model_recuperar_senha.php sql injection — lab.online 6.3 Medium2025-02-10
CVE-2025-1156 Pix Software Vivaz servlet sql injection — Vivaz 7.3 High2025-02-10
CVE-2025-1154 xxyopen Novel books sql injection — Novel 6.3 Medium2025-02-10
CVE-2024-13440 Super Store Finder <= 7.0 - Unauthenticated SQL Injection to Stored Cross-Site Scripting — Super Store Finder 8.2 High2025-02-09
CVE-2025-1117 CoinRemitter sql injection — CoinRemitter 7.3 High2025-02-08
CVE-2025-1116 Dreamvention Live AJAX Search Free live_search.searchresults search sql injection — Live AJAX Search Free 7.3 High2025-02-08
CVE-2025-25151 WordPress uListing Plugin <= 2.1.6 - SQL Injection vulnerability — uListing 8.5 High2025-02-07
CVE-2025-25116 WordPress Link to URL / Post plugin <=1.3 - SQL Injection vulnerability — Link to URL / Post 7.6 High2025-02-07

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8873 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.