Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8873

8873 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-0579 Shiprocket Module REST API Module restapi sql injection — Shiprocket Module 7.3 High2025-01-20
CVE-2025-0585 aEnrich Technology a+HRD - SQL Injection — a+HRD 9.8 Critical2025-01-20
CVE-2025-0565 ZZCMS index.php sql injection — ZZCMS 7.3 High2025-01-19
CVE-2025-0564 code-projects Fantasy-Cricket authenticate.php sql injection — Fantasy-Cricket 7.3 High2025-01-19
CVE-2025-0563 code-projects Fantasy-Cricket update.php sql injection — Fantasy-Cricket 6.3 Medium2025-01-19
CVE-2025-0562 Codezips Gym Management System health_status_entry.php sql injection — Gym Management System 6.3 Medium2025-01-19
CVE-2025-0561 itsourcecode Farm Management System add-pig.php sql injection — Farm Management System 6.3 Medium2025-01-18
CVE-2025-0558 TDuckCloud tduck-platform QueryProThemeRequest.java QueryProThemeRequest sql injection — tduck-platform 6.3 Medium2025-01-18
CVE-2024-13184 The Ultimate WordPress Toolkit – WP Extended <= 3.0.12 - Unauthenticated SQL Injection via Login Attempts Module — The Ultimate WordPress Toolkit – WP Extended 7.5 High2025-01-18
CVE-2025-0308 Ultimate Member <= 2.9.1 - Unauthenticated SQL Injection — Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin 7.5 High2025-01-18
CVE-2025-0541 Codezips Gym Management System edit_member.php sql injection — Gym Management System 6.3 Medium2025-01-17
CVE-2025-0540 itsourcecode Tailoring Management System expadd.php sql injection — Tailoring Management System 6.3 Medium2025-01-17
CVE-2025-0536 1000 Projects Attendance Tracking Management System edit_action.php sql injection — Attendance Tracking Management System 6.3 Medium2025-01-17
CVE-2025-0535 Codezips Gym Management System edit_mem_submit.php sql injection — Gym Management System 6.3 Medium2025-01-17
CVE-2025-0534 1000 Projects Campaign Management System Platform for Women loginnew.php sql injection — Campaign Management System Platform for Women 7.3 High2025-01-17
CVE-2025-0533 1000 Projects Campaign Management System Platform for Women sc_login.php sql injection — Campaign Management System Platform for Women 7.3 High2025-01-17
CVE-2025-0532 Codezips Gym Management System new_submit.php sql injection — Gym Management System 6.3 Medium2025-01-17
CVE-2025-0531 code-projects Chat System leaveroom.php sql injection — Chat System 6.3 Medium2025-01-17
CVE-2025-0527 code-projects Admission Management System signupconfirm.php sql injection — Admission Management System 7.3 High2025-01-17
CVE-2025-23912 WordPress WordPress Custom Sidebar Plugin <= 2.3 - SQL Injection vulnerability — WordPress Custom Sidebar 8.5 High2025-01-16
CVE-2025-23913 WordPress Google Map Professional Plugin <= 1.0 - SQL Injection vulnerability — WordPress Google Map Professional 8.5 High2025-01-16
CVE-2025-23911 WordPress Solidres – Hotel booking plugin for WordPress Plugin <= 0.9.4 - SQL Injection vulnerability — Solidres – Hotel booking plugin 8.5 High2025-01-16
CVE-2025-23780 WordPress Easy Code Snippets Plugin <= 1.0.2 - SQL Injection vulnerability — Easy Code Snippets 7.6 High2025-01-16
CVE-2025-23779 WordPress ResAds Plugin <= 2.0.5 - SQL Injection vulnerability — ResAds 7.6 High2025-01-16
CVE-2024-12614 Passwords Manager <= 1.4.8 - Missing Authorization to Authenticated (Subscriber+) Add Password + Update Encryption Key — Passwords Manager 7.5 High2025-01-16
CVE-2024-12613 Passwords Manager <= 1.4.8 - Unauthenticated SQL Injection — Passwords Manager 7.5 High2025-01-16
CVE-2024-12615 Passwords Manager <= 1.4.8 - Authenticated (Subscriber+) SQL Injection — Passwords Manager 6.5 Medium2025-01-16
CVE-2025-0455 NetVision Information airPASS - SQL injection — airPASS 9.8 Critical2025-01-16
CVE-2025-0491 Fanli2012 native-php-cms cat_dodel.php sql injection — native-php-cms 6.3 Medium2025-01-15
CVE-2025-0490 Fanli2012 native-php-cms article_dodel.php sql injection — native-php-cms 6.3 Medium2025-01-15

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8873 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.