Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8873

8873 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-29047 Open-Xchange App Suite SQL注入漏洞 — OX App Suite 5.3 Medium2023-11-02
CVE-2023-26454 Open-Xchange App Suite SQL注入漏洞 — OX App Suite 7.6 High2023-11-02
CVE-2023-26453 Open-Xchange App Suite SQL注入漏洞 — OX App Suite 7.6 High2023-11-02
CVE-2023-26452 Open-Xchange App Suite SQL注入漏洞 — OX App Suite 7.6 High2023-11-02
CVE-2023-5918 SourceCodester Visitor Management System manage_user.php sql injection — Visitor Management System 6.3 Medium2023-11-02
CVE-2023-45019 Online Bus Booking System v1.0 - Multiple Unauthenticated SQL Injections (SQLi) — Online Bus Booking System 9.8 Critical2023-11-02
CVE-2023-45018 Online Bus Booking System v1.0 - Multiple Unauthenticated SQL Injections (SQLi) — Online Bus Booking System 9.8 Critical2023-11-02
CVE-2023-45015 Online Bus Booking System v1.0 - Multiple Unauthenticated SQL Injections (SQLi) — Online Bus Booking System 9.8 Critical2023-11-02
CVE-2023-45012 Online Bus Booking System v1.0 - Multiple Unauthenticated SQL Injections (SQLi) — Online Bus Booking System 9.8 Critical2023-11-02
CVE-2023-45111 Online Examination System v1.0 - Multiple Unauthenticated SQL Injections (SQLi) — Online Examination System 9.8 Critical2023-11-02
CVE-2023-37966 WordPress User Activity Log Plugin <= 1.6.2 is vulnerable to SQL Injection — User Activity Log 7.6 High2023-10-31
CVE-2023-24410 WordPress FluentForm Plugin <= 4.3.25 is vulnerable to SQL Injection — Contact Form Plugin – Fastest Contact Form Builder Plugin for WordPress by Fluent Forms 5.5 Medium2023-10-31
CVE-2023-36508 WordPress Contact Form to DB by BestWebSoft Plugin <= 1.7.1 is vulnerable to SQL Injection — Contact Form to DB by BestWebSoft – Messages Database Plugin For WordPress 7.6 High2023-10-31
CVE-2023-35879 WordPress WooCommerce Product Vendors Plugin <= 2.1.78 is vulnerable to SQL Injection — Product Vendors 7.6 High2023-10-31
CVE-2023-33927 WordPress Multiple Page Generator Plugin – MPG Plugin <= 3.3.19 is vulnerable to SQL Injection — Multiple Page Generator Plugin – MPG 7.6 High2023-10-31
CVE-2023-31212 WordPress Contact Form Entries Plugin <= 1.3.0 is vulnerable to SQL Injection — Database for Contact Form 7, WPforms, Elementor forms 8.5 High2023-10-31
CVE-2023-28777 WordPress LearnDash LMS Plugin <= 4.5.3 is vulnerable to SQL Injection — LearnDash LMS 8.5 High2023-10-31
CVE-2023-24000 WordPress GamiPress Plugin <= 2.5.7 is vulnerable to SQL Injection — GamiPress 8.2 High2023-10-31
CVE-2023-25047 WordPress RSVPMarker Plugin <= 9.9.3 is vulnerable to SQL Injection — RSVPMaker 5.5 Medium2023-10-31
CVE-2023-25045 WordPress RSVPMarker Plugin <= 9.9.3 is vulnerable to SQL Injection — RSVPMaker 6.7 Medium2023-10-31
CVE-2023-5433 Message ticker <= 9.2 - Authenticated (Subscriber+) SQL Injection via Shortcode — Message ticker 8.8 High2023-10-31
CVE-2023-5437 WP fade in text news <= 12.0 - Authenticated (Subscriber+) SQL Injection via Shortcode — WP fade in text news 8.8 High2023-10-31
CVE-2023-5436 Vertical marquee plugin <= 7.1 - Authenticated (Subscriber+) SQL Injection via Shortcode — Vertical marquee plugin 8.8 High2023-10-31
CVE-2023-5438 wp image slideshow <= 12.0 - Authenticated (Subscriber+) SQL Injection via Shortcode — wp image slideshow 8.8 High2023-10-31
CVE-2023-5431 Left right image slideshow gallery <= 12.0 - Authenticated (Subscriber+) SQL Injection via Shortcode — Left right image slideshow gallery 8.8 High2023-10-31
CVE-2023-5439 Wp photo text slider 50 <= 8.0 - Authenticated (Subscriber+) SQL Injection via Shortcode — Wp photo text slider 50 8.8 High2023-10-31
CVE-2023-5429 Information Reel <= 10.0 - Authenticated (Subscriber+) SQL Injection via Shortcode — Information Reel 8.8 High2023-10-31
CVE-2023-5434 Superb slideshow gallery <= 13.1 - Authenticated (Subscriber+) SQL Injection via Shortcode — Superb slideshow gallery 8.8 High2023-10-31
CVE-2023-5430 Jquery news ticker <= 3.0 - Authenticated (Subscriber+) SQL Injection via Shortcode — Jquery news ticker 8.8 High2023-10-31
CVE-2023-5435 Up down image slideshow gallery <= 12.0 - Authenticated (Subscriber+) SQL Injection via Shortcode — Up down image slideshow gallery 8.8 High2023-10-31

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8873 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.