CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8876

8876 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2024-38793	WordPress Best Restaurant Menu by Pricelisto plugin <= 1.4.1 - SQL Injection vulnerability — Best Restaurant Menu by PriceListo	8.5	High	2024-08-29
CVE-2024-38693	WordPress WP User Frontend plugin <= 4.0.7 - SQL Injection vulnerability — WP User Frontend	7.6	High	2024-08-29
CVE-2024-5057	WordPress Easy Digital Downloads plugin <= 3.2.12 - SQL Injection vulnerability — Easy Digital Downloads	9.3	Critical	2024-08-29
CVE-2024-8302	dingfanzu CMS chpwd.php sql injection — CMS	6.3	Medium	2024-08-29
CVE-2024-8301	dingfanzu CMS checkin.php sql injection — CMS	7.3	High	2024-08-29
CVE-2024-29723	Multiple vulnerabilities in SportsNET — SportsNET	9.8	Critical	2024-08-29
CVE-2024-29724	Multiple vulnerabilities in SportsNET — SportsNET	9.8	Critical	2024-08-29
CVE-2024-29725	Multiple vulnerabilities in SportsNET — SportsNET	9.8	Critical	2024-08-29
CVE-2024-29726	Multiple vulnerabilities in SportsNET — SportsNET	9.8	Critical	2024-08-29
CVE-2024-29727	Multiple vulnerabilities in SportsNET — SportsNET	9.8	Critical	2024-08-29
CVE-2024-29728	Multiple vulnerabilities in SportsNET — SportsNET	9.8	Critical	2024-08-29
CVE-2024-29729	Multiple vulnerabilities in SportsNET — SportsNET	9.8	Critical	2024-08-29
CVE-2024-29730	Multiple vulnerabilities in SportsNET — SportsNET	9.8	Critical	2024-08-29
CVE-2024-29731	Multiple vulnerabilities in SportsNET — SportsNET	9.8	Critical	2024-08-29
CVE-2024-7607	Front End Users <= 3.2.28 - Authenticated (Contributor+) Time-Based SQL Injection — Front End Users	8.8	High	2024-08-29
CVE-2024-7857	Media Library Folders <= 8.2.2 - Authenticated (Subscriber+) Second-Order SQL Injection — Media Library Folders	6.5	Medium	2024-08-29
CVE-2024-45059	Authenticated SQL Injection in i-Educar — i-educar	9.1^AI	Critical^AI	2024-08-28
CVE-2024-5546	SQL Injection — Password Manager Pro	8.3	High	2024-08-28
CVE-2024-8223	SourceCodester Music Gallery Site Master.php sql injection — Music Gallery Site	6.3	Medium	2024-08-27
CVE-2024-8222	SourceCodester Music Gallery Site sql injection — Music Gallery Site	6.3	Medium	2024-08-27
CVE-2024-8221	SourceCodester Music Gallery Site manage_category.php sql injection — Music Gallery Site	6.3	Medium	2024-08-27
CVE-2024-8220	itsourcecode Tailoring Management System staffedit.php sql injection — Tailoring Management System	6.3	Medium	2024-08-27
CVE-2024-8219	code-projects Responsive Hotel Site index.php sql injection — Responsive Hotel Site	7.3	High	2024-08-27
CVE-2024-8218	code-projects Online Quiz Site index.php sql injection — Online Quiz Site	7.3	High	2024-08-27
CVE-2024-8217	SourceCodester E-Commerce Website registration.php sql injection — E-Commerce Website	7.3	High	2024-08-27
CVE-2024-6632	SQL Injection in FileCatalyst Workflow 5.1.6 Build 139 (and earlier) — FileCatalyst Workflow	7.2	High	2024-08-27
CVE-2024-7071	Unauthenticate SQLi in Brain Information Technologies' Brain Low-Code — Brain Low-Code	8.8^AI	High^AI	2024-08-27
CVE-2024-8173	code-projects Blood Bank System Login Page login.php sql injection — Blood Bank System	7.3	High	2024-08-26
CVE-2024-8171	itsourcecode Tailoring Management System staffcatedit.php sql injection — Tailoring Management System	6.3	Medium	2024-08-26
CVE-2024-43966	WordPress WP Testimonial Widget plugin <= 3.1 - SQL Injection vulnerability — WP Testimonial Widget	7.6	High	2024-08-26

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8876 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8876