Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8873

8873 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-27254 Unauthenticated SQL Injection In IDAttend’s IDWeb Application — IDWeb 9.8 Critical2023-10-25
CVE-2023-26584 Unauthenticated SQL Injection In IDAttend’s IDWeb Application — IDWeb 9.8 Critical2023-10-25
CVE-2023-26583 Unauthenticated SQL Injection In IDAttend’s IDWeb Application — IDWeb 9.8 Critical2023-10-25
CVE-2023-26582 Unauthenticated SQL Injection In IDAttend’s IDWeb Application — IDWeb 9.8 Critical2023-10-25
CVE-2023-26581 Unauthenticated SQL Injection In IDAttend’s IDWeb Application — IDWeb 9.8 Critical2023-10-25
CVE-2023-26572 Unauthenticated SQL Injection In IDAttend’s IDWeb Application — IDWeb 9.8 Critical2023-10-25
CVE-2023-26569 Unauthenticated SQL Injection In IDAttend’s IDWeb Application — IDWeb 9.8 Critical2023-10-25
CVE-2023-26568 Unauthenticated SQL Injection In IDAttend’s IDWeb Application — IDWeb 9.8 Critical2023-10-25
CVE-2023-4608 Lenovo XClarity Controller SQL注入漏洞 — Lenovo XClarity Controller (XCC) 4.1 Medium2023-10-24
CVE-2023-5700 Netentsec NS-ASG Application Security Gateway uploadiscgwrouteconf.php sql injection — NS-ASG Application Security Gateway 5.5 Medium2023-10-22
CVE-2023-5693 CodeAstro Internet Banking System pages_reset_pwd.php sql injection — Internet Banking System 6.3 Medium2023-10-22
CVE-2023-5682 Tongda OA delete.php sql injection — OA 5.5 Medium2023-10-20
CVE-2023-5681 Netentsec NS-ASG Application Security Gateway list_addr_fwresource_ip.php sql injection — NS-ASG Application Security Gateway 4.7 Medium2023-10-20
CVE-2022-4290 Cyr to Lat <= 3.5 - Authenticated SQL Injection — Cyr to Lat Enhanced 8.8 High2023-10-20
CVE-2023-4999 Horizontal scrolling announcement <= 9.2 - Authenticated (Subscriber+) SQL Injection via Shortcode — Horizontal scrolling announcement 8.8 High2023-10-20
CVE-2023-4598 Slimstat Analytics <= 5.0.9 - Authenticated (Contributor+) Blind SQL Injection via Shortcode — SlimStat Analytics 8.8 High2023-10-20
CVE-2023-45826 Authenticated SQL Injection in leantime — leantime 6.5 Medium2023-10-19
CVE-2023-5204 AI ChatBot <= 4.8.9 - Unauthenticated SQL Injection via qc_wpbo_search_response — WPBot – AI ChatBot for Live Support, Lead Generation, AI Services 9.8 Critical2023-10-19
CVE-2023-5336 iPanorama 360 – WordPress Virtual Tour Builder <= 1.8.0 - Authenticated (Contributor+) SQL Injection via Shortcode — iPanorama 360 – Advanced Virtual Tour Builder 8.8 High2023-10-19
CVE-2023-43794 SQL Injection in nocodb — nocodb 6.5 Medium2023-10-17
CVE-2023-34210 SQL Injection in EasyUse MailHunter Ultimate — MailHunter Ultimate 7.7 High2023-10-17
CVE-2023-5591 SQL Injection in librenms/librenms — librenms/librenms 6.5 -2023-10-16
CVE-2023-5589 SourceCodester Judging Management System login.php sql injection — Judging Management System 7.3 High2023-10-15
CVE-2023-5587 SourceCodester Free Hospital Management System for Small Practices Parameter doctors.php sql injection — Free Hospital Management System for Small Practices 6.3 Medium2023-10-15
CVE-2023-5580 SourceCodester Library System index.php sql injection — Library System 6.3 Medium2023-10-14
CVE-2023-45674 SQL injection vulnerability in Farmbot-Web-App — Farmbot-Web-App 7.7 High2023-10-13
CVE-2023-34976 Video Station — Video Station 10.0 Critical2023-10-13
CVE-2023-45162 Blind SQL vulnerability in 1E platform — 1E Platform 9.9 Critical2023-10-13
CVE-2023-38250 Adobe Commerce | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') (CWE-89) — Adobe Commerce 8.0 High2023-10-13
CVE-2023-38249 Adobe Commerce | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') (CWE-89) — Adobe Commerce 8.0 High2023-10-13

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8873 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.