Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8873

8873 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-0199 code-projects Point of Sales and Inventory Management System minus_cart.php sql injection — Point of Sales and Inventory Management System 6.3 Medium2025-01-03
CVE-2025-0198 code-projects Point of Sales and Inventory Management System search_result.php sql injection — Point of Sales and Inventory Management System 6.3 Medium2025-01-03
CVE-2025-0197 code-projects Point of Sales and Inventory Management System search.php sql injection — Point of Sales and Inventory Management System 6.3 Medium2025-01-03
CVE-2025-0196 code-projects Point of Sales and Inventory Management System plist.php sql injection — Point of Sales and Inventory Management System 6.3 Medium2025-01-03
CVE-2025-0195 code-projects Point of Sales and Inventory Management System del_product.php sql injection — Point of Sales and Inventory Management System 6.3 Medium2025-01-03
CVE-2025-0176 code-projects Point of Sales and Inventory Management System add_cart.php sql injection — Point of Sales and Inventory Management System 6.3 Medium2025-01-03
CVE-2025-0174 code-projects Point of Sales and Inventory Management System Parameter search_result2.php sql injection — Point of Sales and Inventory Management System 6.3 Medium2025-01-03
CVE-2025-0173 SourceCodester Online Eyewear Shop view_order.php sql injection — Online Eyewear Shop 6.3 Medium2025-01-02
CVE-2025-0172 code-projects Chat System deleteroom.php sql injection — Chat System 6.3 Medium2025-01-02
CVE-2025-0171 code-projects Chat System deleteuser.php sql injection — Chat System 6.3 Medium2025-01-02
CVE-2024-56250 WordPress Just Writing Statistics plugin <= 4.7 - SQL Injection vulnerability — Just Writing Statistics 7.6 High2025-01-02
CVE-2024-56247 WordPress WP Post Author plugin <= 3.8.2 - SQL Injection vulnerability — WP Post Author 7.6 High2025-01-02
CVE-2024-13093 code-projects Job Recruitment Seeker Profile _call_main_search_ajax.php sql injection — Job Recruitment 6.3 Medium2025-01-02
CVE-2024-13092 code-projects Job Recruitment Job Post search_ajax.php sql injection — Job Recruitment 6.3 Medium2025-01-02
CVE-2025-22214 Landray EIS 安全漏洞 — n/a 4.3 Medium2025-01-02
CVE-2025-0168 code-projects Job Recruitment _feedback_system.php sql injection — Job Recruitment 6.3 Medium2025-01-01
CVE-2024-13085 PHPGurukul Land Record System login.php sql injection — Land Record System 7.3 High2024-12-31
CVE-2024-13084 PHPGurukul Land Record System search-property.php sql injection — Land Record System 6.3 Medium2024-12-31
CVE-2024-13079 PHPGurukul Land Record System property-details.php sql injection — Land Record System 6.3 Medium2024-12-31
CVE-2024-13078 PHPGurukul Land Record System index.php sql injection — Land Record System 6.3 Medium2024-12-31
CVE-2024-13072 1000 Projects Beauty Parlour Management System Customer Detail add-customer-services.php sql injection — Beauty Parlour Management System 6.3 Medium2024-12-31
CVE-2024-13070 CodeAstro Online Food Ordering System Update User Page update_users.php sql injection — Online Food Ordering System 6.3 Medium2024-12-31
CVE-2024-56042 WordPress WPLMS plugin < 1.9.9.5.3 - Unauthenticated SQL Injection vulnerability — WPLMS 9.3 Critical2024-12-31
CVE-2024-56041 WordPress VibeBP plugin < 1.9.9.5.1 - SQL Injection vulnerability — VibeBP 8.5 High2024-12-31
CVE-2024-56039 WordPress VibeBP plugin < 1.9.9.7.7 - Unauthenticated SQL Injection vulnerability — VibeBP 9.3 Critical2024-12-31
CVE-2024-56212 WordPress UserPro plugin <= 5.1.9 - SQL Injection vulnerability — Userpro 8.5 High2024-12-31
CVE-2024-56801 Tasklists has Blind SQL Injection in /ajax/reorder.php — tasklists 9.8 -2024-12-30
CVE-2024-47926 Tecnick TCExam – CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') — TCExam 9.8 Critical2024-12-30
CVE-2024-13039 code-projects Simple Chat System add_user.php sql injection — Simple Chat System 6.3 Medium2024-12-30
CVE-2024-13038 CodeAstro Simple Loan Management System Login index.php sql injection — Simple Loan Management System 7.3 High2024-12-30

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8873 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.