Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8873

8873 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-2269 keerti1924 Online-Book-Store-Website search.php sql injection — Online-Book-Store-Website 6.3 Medium2024-03-07
CVE-2024-2264 keerti1924 PHP-MYSQL-User-Login-System login.php sql injection — PHP-MYSQL-User-Login-System 7.3 High2024-03-07
CVE-2024-28094 Blind SQL Injection in Chat functionality in Schoolbox — Schoolbox 8.8 High2024-03-07
CVE-2024-27304 pgx SQL Injection via Protocol Message Size Overflow — pgx 9.8 Critical2024-03-06
CVE-2024-27289 pgx SQL Injection via Line Comment Creation — pgx 8.1 High2024-03-06
CVE-2024-2168 SourceCodester Online Tours & Travels Management System HTTP POST Request expense_category.php sql injection — Online Tours & Travels Management System 4.7 Medium2024-03-04
CVE-2024-27889 Multiple SQL Injection vulnerabilities exist in the reporting application of the Arista Edge Threat Management - Arista NG Firewall (NGFW). — Arista Edge Threat Management - Arista NG Firewall (NGFW) 8.8 High2024-03-04
CVE-2024-2156 SourceCodester Best POS Management System admin_class.php sql injection — Best POS Management System 6.3 Medium2024-03-04
CVE-2024-2154 SourceCodester Online Mobile Management Store view_product.php sql injection — Online Mobile Management Store 6.3 Medium2024-03-04
CVE-2024-2153 SourceCodester Online Mobile Management Store view_order.php sql injection — Online Mobile Management Store 6.3 Medium2024-03-04
CVE-2024-2152 SourceCodester Online Mobile Management Store manage_product.php sql injection — Online Mobile Management Store 4.7 Medium2024-03-04
CVE-2024-2149 CodeAstro Membership Management System settings.php sql injection — Membership Management System 4.7 Medium2024-03-03
CVE-2024-2147 SourceCodester Online Mobile Management Store login.php sql injection — Online Mobile Management Store 7.3 High2024-03-03
CVE-2024-2077 SourceCodester Simple Online Bidding System index.php sql injection — Simple Online Bidding System 6.3 Medium2024-03-01
CVE-2024-27298 Parse Server literalizeRegexPart SQL Injection — parse-server 10.0 Critical2024-03-01
CVE-2024-2074 Mini-Tmall 1 sql injection — Mini-Tmall 6.3 Medium2024-03-01
CVE-2024-2073 SourceCodester Block Inserter for Dynamic Content view_post.php sql injection — Block Inserter for Dynamic Content 6.3 Medium2024-03-01
CVE-2024-2069 SourceCodester FAQ Management System delete-faq.php sql injection — FAQ Management System 6.3 Medium2024-03-01
CVE-2024-2067 SourceCodester Computer Inventory System delete-computer.php sql injection — Computer Inventory System 6.3 Medium2024-03-01
CVE-2024-2062 SourceCodester Petrol Pump Management Software edit_categories.php sql injection — Petrol Pump Management Software 4.7 Medium2024-03-01
CVE-2024-2061 SourceCodester Petrol Pump Management Software edit_supplier.php sql injection — Petrol Pump Management Software 4.7 Medium2024-03-01
CVE-2024-2060 SourceCodester Petrol Pump Management Software login_crud.php sql injection — Petrol Pump Management Software 4.7 Medium2024-03-01
CVE-2024-2022 Netentsec NS-ASG Application Security Gateway list_ipAddressPolicy.php sql injection — NS-ASG Application Security Gateway 6.3 Medium2024-03-01
CVE-2024-2021 Netentsec NS-ASG Application Security Gateway list_localuser.php sql injection — NS-ASG Application Security Gateway 6.3 Medium2024-02-29
CVE-2024-2015 ZhiCms mcontroller.php getindexdata sql injection — ZhiCms 6.3 Medium2024-02-29
CVE-2024-2014 Panabit Panalog sprog_upstatus.php sql injection — Panalog 7.3 High2024-02-29
CVE-2024-1971 Surya2Developer Online Shopping System POST Parameter login.php sql injection — Online Shopping System 7.3 High2024-02-28
CVE-2024-24868 WordPress SP Project & Document Manager Plugin <= 4.69 is vulnerable to SQL Injection — SP Project & Document Manager 8.5 High2024-02-28
CVE-2024-25902 WordPress Malware Scanner Plugin <= 4.7.2 is vulnerable to SQL Injection — Malware Scanner 7.6 High2024-02-28
CVE-2024-25910 WordPress MoveTo Plugin <= 6.2 is vulnerable to SQL Injection — MoveTo 9.8 Critical2024-02-28

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8873 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.