CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8873

8873 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2023-38221	Adobe Commerce \| Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') (CWE-89) — Adobe Commerce	8.0	High	2023-10-13
CVE-2023-5045	SQLi in Biltay's Kayısı — Kayisi	9.8	Critical	2023-10-12
CVE-2023-5046	SQLi in Biltay's Procost — Procost	9.8	Critical	2023-10-12
CVE-2023-23737	WordPress MainWP Broken Links Checker Extension Plugin <= 4.0 is vulnerable to SQL Injection — MainWP Broken Links Checker Extension	9.3	Critical	2023-10-12
CVE-2023-23651	WordPress MainWP Google Analytics Extension Plugin <= 4.0.4 - SQL Injection vulnerability — MainWP Google Analytics Extension	8.5	High	2023-10-12
CVE-2023-5497	Tongda OA 2017 delete.php sql injection — OA 2017	6.3	Medium	2023-10-10
CVE-2023-4309	Election Services SQL注入漏洞 — Internet Election Service	10.0	Critical	2023-10-10
CVE-2023-5495	QDocs Smart School HTTP POST Request sql injection — Smart School	6.3	Medium	2023-10-10
CVE-2023-5471	codeprojects Farmacia index.php sql injection — Farmacia	6.3	Medium	2023-10-10
CVE-2023-4530	SQLi in Turna Media's Advertising Administration Panel — Advertising Administration Panel	9.8	Critical	2023-10-06
CVE-2015-10126	Easy2Map Photos Plugin sql injection — Easy2Map Photos Plugin	6.3	Medium	2023-10-06
CVE-2023-5423	SourceCodester Online Pizza Ordering System sql injection — Online Pizza Ordering System	4.7	Medium	2023-10-05
CVE-2022-36276	SQL injection vulnerability in TCMAN GIM — GIM	9.9	Critical	2023-10-04
CVE-2023-5374	SourceCodester Online Computer and Laptop Store products.php sql injection — Online Computer and Laptop Store	6.3	Medium	2023-10-04
CVE-2023-5373	SourceCodester Online Computer and Laptop Store Master.php register sql injection — Online Computer and Laptop Store	7.3	High	2023-10-04
CVE-2023-3038	HelpDezk Community improper authorization — HelpDezk Community	9.8	Critical	2023-10-04
CVE-2023-4037	SQL injection in Setelsa Security ConacWin — ConacWin	9.9	Critical	2023-10-04
CVE-2023-2681	SQL Injection on Jorani — Jorani	8.8	High	2023-10-03
CVE-2023-5350	SQL Injection in salesagility/suitecrm — salesagility/suitecrm	8.1	-	2023-10-03
CVE-2023-4103	Multiple vulnerabilities in IDM Sistemas QSige — QSige	8.8	High	2023-10-03
CVE-2023-4102	Multiple vulnerabilities in IDM Sistemas QSige — QSige	8.8	High	2023-10-03
CVE-2023-4098	Multiple vulnerabilities in IDM Sistemas QSige — QSige	8.8	High	2023-10-03
CVE-2015-10124	Most Popular Posts Widget Plugin functions.php show_views sql injection — Most Popular Posts Widget Plugin	6.3	Medium	2023-10-02
CVE-2023-5322	D-Link DAR-7000 edit_manageadmin.php sql injection — DAR-7000	4.7	Medium	2023-10-01
CVE-2023-5300	TTSPlanning sql injection — TTSPlanning	6.3	Medium	2023-09-30
CVE-2023-5298	Tongda OA 2017 delete.php sql injection — OA 2017	5.5	Medium	2023-09-30
CVE-2023-5294	ECshop order.php sql injection — ECshop	4.7	Medium	2023-09-29
CVE-2023-5293	ECshop leancloud.php sql injection — ECshop	4.7	Medium	2023-09-29
CVE-2023-5285	Tongda OA 2017 delete.php sql injection — OA 2017	6.3	Medium	2023-09-29
CVE-2023-5283	SourceCodester Engineers Online Portal teacher_signup.php sql injection — Engineers Online Portal	6.3	Medium	2023-09-29

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8873 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8873