Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8873

8873 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-33209 WordPress SEO Change Monitor Plugin <= 1.2 is vulnerable to SQL Injection — SEO Change Monitor – Track Website Changes 8.5 High2023-12-20
CVE-2023-33330 WordPress WooCommerce Follow-Up Emails Plugin <= 4.9.50 is vulnerable to SQL Injection — AutomateWoo 8.5 High2023-12-20
CVE-2023-49825 WordPress Soledad Theme <= 8.4.1 is vulnerable to SQL Injection — Soledad – Multipurpose, Newspaper, Blog & WooCommerce WordPress Theme 8.5 High2023-12-20
CVE-2023-49776 WordPress Sayfa Sayaç Plugin <= 2.6 is vulnerable to SQL Injection — Sayfa Sayac 9.3 Critical2023-12-20
CVE-2023-35915 WordPress WooCommerce Payments Plugin <= 5.9.0 is vulnerable to SQL Injection — WooPayments – Fully Integrated Solution Built and Supported by Woo 7.6 High2023-12-20
CVE-2023-40010 WordPress HUSKY – Products Filter for WooCommerce (formerly WOOF) Plugin <= 1.3.4.2 is vulnerable to SQL Injection — HUSKY – Products Filter for WooCommerce Professional 9.3 Critical2023-12-20
CVE-2023-32590 WordPress Subscribe to Category Plugin <= 2.7.4 is vulnerable to SQL Injection — Subscribe to Category 9.3 Critical2023-12-20
CVE-2023-47852 WordPress Link Whisper Free Plugin <= 0.6.5 is vulnerable to SQL Injection — Link Whisper Free 8.5 High2023-12-20
CVE-2023-38519 WordPress MainWP Plugin <= 4.4.3.3 is vulnerable to SQL Injection — MainWP Dashboard – WordPress Manager for Multiple Websites Maintenance 7.6 High2023-12-20
CVE-2023-47236 WordPress iPages Flipbook Plugin <= 1.4.8 is vulnerable to SQL Injection — iPages Flipbook For WordPress 7.6 High2023-12-20
CVE-2023-48327 WordPress WC Vendors Marketplace Plugin <= 2.4.7 is vulnerable to SQL Injection — WC Vendors – WooCommerce Multi-Vendor, WooCommerce Marketplace, Product Vendors 7.6 High2023-12-19
CVE-2023-48738 WordPress Porto Theme - Functionality Plugin < 2.12.1 is vulnerable to SQL Injection — Porto Theme - Functionality 9.3 Critical2023-12-19
CVE-2023-48741 WordPress ChatBot Plugin <= 4.7.8 is vulnerable to SQL Injection — AI ChatBot 7.6 High2023-12-19
CVE-2023-48764 WordPress WordPress Brute Force Protection – Stop Brute Force Attacks Plugin <= 2.2.5 is vulnerable to SQL Injection — WordPress Brute Force Protection – Stop Brute Force Attacks 7.6 High2023-12-19
CVE-2023-49750 WordPress Couponis Demo Plugin < 2.2 is vulnerable to SQL Injection — Couponis - Affiliate & Submitting Coupons WordPress Theme 9.3 Critical2023-12-19
CVE-2023-49764 WordPress Advanced Database Cleaner Plugin <= 3.1.2 is vulnerable to SQL Injection — Advanced Database Cleaner 7.6 High2023-12-19
CVE-2023-49736 Apache Superset: SQL Injection on where_in JINJA macro — Apache Superset 6.5 Medium2023-12-19
CVE-2023-47506 WordPress Master Slider Pro Plugin <= 3.6.5 is vulnerable to SQL Injection — Master Slider Pro 7.6 High2023-12-18
CVE-2023-47530 WordPress Redirect 404 Error Page to Homepage or Custom Page with Logs Plugin <= 1.8.7 is vulnerable to SQL Injection — Redirect 404 Error Page to Homepage or Custom Page with Logs 7.6 High2023-12-18
CVE-2023-47558 WordPress Who Hit The Page – Hit Counter Plugin <= 1.4.14.3 is vulnerable to SQL Injection — Who Hit The Page – Hit Counter 7.6 High2023-12-18
CVE-2023-33331 WordPress WooCommerce Product Vendors Plugin <= 2.1.76 is vulnerable to SQL Injection — Product Vendors 8.5 High2023-12-18
CVE-2023-34168 WordPress WP Report Post Plugin <= 2.1.2 is vulnerable to SQL Injection — WP Report Post 7.6 High2023-12-18
CVE-2023-6903 Netentsec NS-ASG Application Security Gateway sql injection — NS-ASG Application Security Gateway 7.3 High2023-12-17
CVE-2023-6898 SourceCodester Best Courier Management System manage_user.php sql injection — Best Courier Management System 5.5 Medium2023-12-17
CVE-2023-6885 Tongda OA 2017 delete.php sql injection — OA 2017 5.5 Medium2023-12-16
CVE-2023-30867 Apache StreamPark (incubating): Authenticated system users could trigger SQL injection vulnerability — Apache StreamPark (incubating) 6.5 -2023-12-15
CVE-2023-48395 Kaifa Technology WebITR - SQL Injection — WebITR 6.5 Medium2023-12-15
CVE-2023-48384 ArmorX Global Technology Corporation ArmorX Spam - SQL Injectoin — ArmorX Spam 9.8 Critical2023-12-15
CVE-2023-48372 ITPison OMICARD EDM 's SMS - SQL Injection — OMICARD EDM 's SMS 9.8 Critical2023-12-15
CVE-2023-44284 Dell PowerProtect Data Domain 安全漏洞 — PowerProtect DD 4.3 Medium2023-12-14

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8873 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.