Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8873

8873 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-47484 Dell Avamar SQL注入漏洞 — Avamar 8.2 High2024-12-10
CVE-2024-52538 Dell Avamar SQL注入漏洞 — Avamar 7.6 High2024-12-10
CVE-2024-53947 Apache Superset: Improper SQL authorisation, parse not checking for specific postgres functions — Apache Superset 9.8 -2024-12-09
CVE-2024-8259 Unauthenticated SQLi in Eryaz IT's NatraCar B2B Dealer Management Program — NatraCar B2B Dealer Management Program 9.8 Critical2024-12-09
CVE-2024-54215 WordPress Revy plugin <= 1.18 - Unauthenticated SQL Injection vulnerability — Revy 9.3 Critical2024-12-09
CVE-2024-12360 code-projects Online Class and Exam Scheduling System class_update.php sql injection — Online Class and Exam Scheduling System 6.3 Medium2024-12-09
CVE-2024-12351 JFinalCMS File Content ContentModel.java findPage sql injection — JFinalCMS 6.3 Medium2024-12-09
CVE-2024-12270 Beautiful Taxonomy Filters <= 2.4.3 - Unauthenticated SQL Injection — Beautiful taxonomy filters 7.5 High2024-12-07
CVE-2024-8679 Library Management System <= 3.1 - Authenticated (Admin+) SQL Injection — Library Management System 6.8 Medium2024-12-07
CVE-2024-50389 QuRouter — QuRouter 9.8 -2024-12-06
CVE-2024-50387 SMB Service — SMB Service 9.8 -2024-12-06
CVE-2024-52335 Siemens Healthineers syngo 安全漏洞 — syngo.plaza VB30E 9.8 Critical2024-12-06
CVE-2024-51615 WordPress WordPress Auction Plugin plugin <= 3.7 - SQL Injection vulnerability — WordPress Auction Plugin 9.3 Critical2024-12-06
CVE-2024-53807 WordPress WP Mailster plugin <= 1.8.16.0 - SQL Injection vulnerability — WP Mailster 8.5 High2024-12-06
CVE-2024-53808 WordPress NEX-Forms plugin <= 8.7.8 - SQL Injection vulnerability — NEX-Forms 8.5 High2024-12-06
CVE-2024-53817 WordPress Acowebs Product Labels For Woocommerce plugin <= 1.5.8 - SQL Injection vulnerability — Product Labels For Woocommerce 7.6 High2024-12-06
CVE-2024-53815 WordPress Pinpoint Booking System plugin <= 2.9.9.5.2 - SQL Injection vulnerability — Pinpoint Booking System 8.5 High2024-12-06
CVE-2024-11729 KiviCare – Clinic & Patient Management System (EHR) <= 3.6.4 - Authenticated (Subscriber+) SQL Injection — KiviCare – Clinic & Patient Management System (EHR) 6.5 Medium2024-12-06
CVE-2024-11730 KiviCare – Clinic & Patient Management System (EHR) <= 3.6.4 - Authenticated (Doctor/Receptionist+) SQL Injection — KiviCare – Clinic & Patient Management System (EHR) 6.5 Medium2024-12-06
CVE-2024-11460 Verowa Connect <= 3.0.1 - Unauthenticated SQL Injection — Verowa Connect 7.5 High2024-12-06
CVE-2024-11728 KiviCare – Clinic & Patient Management System (EHR) <= 3.6.4 - Unauthenticated SQL Injection — KiviCare – Clinic & Patient Management System (EHR) 7.5 High2024-12-06
CVE-2024-10247 YouTube Gallery and Vimeo Gallery Plugin <= 2.4.2 - Authenticated (Administrator+) SQL Injection — Video Gallery – YouTube Gallery, Vimeo, Video Portfolio, Image Portfolio and Image Gallery 7.2 High2024-12-06
CVE-2024-12234 1000 Projects Beauty Parlour Management System edit-customer-detailed.php sql injection — Beauty Parlour Management System 7.3 High2024-12-05
CVE-2024-12231 CodeZips Project Management System index.php sql injection — Project Management System 7.3 High2024-12-05
CVE-2024-12230 PHPGurukul Complaint Management System subcategory.php sql injection — Complaint Management System 7.3 High2024-12-05
CVE-2024-12229 PHPGurukul Complaint Management System complaint-search.php sql injection — Complaint Management System 7.3 High2024-12-05
CVE-2024-12228 PHPGurukul Complaint Management System user-search.php sql injection — Complaint Management System 7.3 High2024-12-05
CVE-2024-12188 1000 Projects Library Management System stu.php sql injection — Library Management System 7.3 High2024-12-05
CVE-2024-12187 1000 Projects Library Management System showbook.php sql injection — Library Management System 7.3 High2024-12-05
CVE-2024-54221 WordPress FAT Services Booking plugin <= 5.6 - Unauthenticated SQL Injection vulnerability — FAT Services Booking 9.3 Critical2024-12-04

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8873 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.