Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8873

8873 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-0296 code-projects Online Book Shop booklist.php sql injection — Online Book Shop 6.3 Medium2025-01-07
CVE-2025-0294 SourceCodester Home Clean Services Management System process.php sql injection — Home Clean Services Management System 4.7 Medium2025-01-07
CVE-2024-51715 WordPress ClickWhale plugin <= 2.4.1 - SQL Injection vulnerability — ClickWhale 8.5 High2025-01-07
CVE-2024-56284 WordPress SSL Wireless SMS Notification Plugin <= 3.5.0 - SQL Injection vulnerability — SSL Wireless SMS Notification 9.3 Critical2025-01-07
CVE-2024-56290 WordPress Multiple Shipping And Billing Address For Woocommerce Plugin <= 1.2 - Unauthenticated SQL Injection vulnerability — Multiple Shipping And Billing Address For Woocommerce 9.3 Critical2025-01-07
CVE-2025-22348 WordPress DynamicTags plugin <= 1.4.0 - SQL Injection vulnerability — DynamicTags 8.5 High2025-01-07
CVE-2025-22349 WordPress WordPress Auction Plugin plugin <= 3.7 - SQL Injection vulnerability — WordPress Auction Plugin 7.6 High2025-01-07
CVE-2025-22351 WordPress Contact Form 7 Database – CFDB7 plugin <= 1.0.0 - SQL Injection vulnerability — Contact Form 7 Database – CFDB7 7.6 High2025-01-07
CVE-2025-22352 WordPress ELEX WooCommerce Advanced Bulk Edit Products, Prices & Attributes Plugin <= 1.4.9 - SQL Injection vulnerability — ELEX WooCommerce Advanced Bulk Edit Products, Prices & Attributes 7.6 High2025-01-07
CVE-2024-12332 School Management System – WPSchoolPress <= 2.2.14 - Authenticated (Student/Parent+) SQL Injection — School Management System – WPSchoolPress 6.5 Medium2025-01-07
CVE-2024-12157 Popup – MailChimp, GetResponse and ActiveCampaign Intergrations <= 3.2.6 - Unauthenticated SQL Injection — Popup – MailChimp, GetResponse and ActiveCampaign Intergrations 7.5 High2025-01-07
CVE-2024-12416 Woomotiv <= 3.6.1 - Unauthenticated SQL Injection — Live Sales Notification for Woocommerce – Woomotiv 7.5 High2025-01-07
CVE-2024-11437 Timeline Designer <= 1.4 - Authenticated (Admin+) SQL Injection — Timeline Designer 4.9 Medium2025-01-07
CVE-2025-0233 Codezips Project Management System course.php sql injection — Project Management System 7.3 High2025-01-05
CVE-2025-0232 Codezips Blood Bank Management System successadmin.php sql injection — Blood Bank Management System 6.3 Medium2025-01-05
CVE-2025-0231 Codezips Gym Management System submit_payments.php sql injection — Gym Management System 6.3 Medium2025-01-05
CVE-2025-0230 code-projects Responsive Hotel Site print.php sql injection — Responsive Hotel Site 6.3 Medium2025-01-05
CVE-2025-0229 code-projects Travel Management System enquiry.php sql injection — Travel Management System 6.3 Medium2025-01-05
CVE-2025-0214 TMD Custom Header Menu index.php sql injection — Custom Header Menu 4.1 Medium2025-01-04
CVE-2025-0212 Campcodes Student Grading System view_students.php sql injection — Student Grading System 6.3 Medium2025-01-04
CVE-2024-41767 IBM Engineering Lifecycle Optimization - Publishing SQL injection — Engineering Lifecycle Optimization Publishing 7.3 High2025-01-04
CVE-2025-0210 Campcodes School Faculty Scheduling System ajax.php sql injection — School Faculty Scheduling System 7.3 High2025-01-04
CVE-2025-0208 code-projects Online Shoe Store summary.php sql injection — Online Shoe Store 6.3 Medium2025-01-04
CVE-2025-0207 code-projects Online Shoe Store login.php sql injection — Online Shoe Store 7.3 High2025-01-04
CVE-2024-12195 WP Project Manager – Task, team, and project management plugin featuring kanban board and gantt charts <= 2.6.16 - Authenticated (Subscriber+) SQL Injection — Project Manager – AI Powered Project Management, Task Management, Kanban Board & Time Tracker 6.5 Medium2025-01-04
CVE-2025-0205 code-projects Online Shoe Store details2.php sql injection — Online Shoe Store 6.3 Medium2025-01-04
CVE-2025-0204 code-projects Online Shoe Store details.php sql injection — Online Shoe Store 6.3 Medium2025-01-04
CVE-2025-0203 code-projects Student Management System DbFunction.php showSubject1 sql injection — Student Management System 6.3 Medium2025-01-04
CVE-2025-0201 code-projects Point of Sales and Inventory Management System update_account.php sql injection — Point of Sales and Inventory Management System 6.3 Medium2025-01-04
CVE-2025-0200 code-projects Point of Sales and Inventory Management System search_num.php sql injection — Point of Sales and Inventory Management System 6.3 Medium2025-01-04

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8873 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.