Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8873

8873 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-41320 Account takeover via SQL Injection in UI layout preferences in GLPI — glpi 8.1 High2023-09-26
CVE-2023-39378 SiberianCMS - CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') by an unauthenticated user — SiberianCMS 8.8 High2023-09-26
CVE-2023-5153 D-Link DAR-8000 querysql.php sql injection — DAR-8000 6.3 Medium2023-09-25
CVE-2023-5152 D-Link DAR-7000/DAR-8000 importexport.php sql injection — DAR-7000 6.3 Medium2023-09-25
CVE-2023-5151 D-Link DAR-8000 autheditpwd.php sql injection — DAR-8000 6.3 Medium2023-09-25
CVE-2023-43640 TaxonWorks SQL injection vulnerability — taxonworks 6.5 Medium2023-09-22
CVE-2023-42807 Frappe LMS SQL Injection Issue on People Page — lms 6.3 Medium2023-09-21
CVE-2023-4292 Frauscher FDS101 for FAdC/FAdCi SQL injection vulnerability — FDS101 for FAdC/FAdCi 5.3 Medium2023-09-21
CVE-2023-40043 MOVEit Transfer System Administrator SQL Injection — MOVEit Transfer 7.2 High2023-09-20
CVE-2023-42660 MOVEit Transfer Machine Interface SQL Injection — MOVEit Transfer 8.8 High2023-09-20
CVE-2023-4092 SQL injection vulnerability in Fujitsu Arconte Áurea — Arconte Áurea 8.8 High2023-09-19
CVE-2023-29245 SQL Injection on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0 — Guardian 8.1 High2023-09-19
CVE-2023-2567 Authenticated SQL Injection on Query functionality in Guardian/CMC before 22.6.3 and 23.1.0 — Guardian 8.8 High2023-09-19
CVE-2023-5033 OpenRapid RapidCMS cate-edit-run.php sql injection — RapidCMS 6.3 Medium2023-09-18
CVE-2023-5032 OpenRapid RapidCMS article-edit-run.php sql injection — RapidCMS 6.3 Medium2023-09-18
CVE-2023-35851 SUNNET WMPro - SQL Injection — WMPro 7.5 High2023-09-18
CVE-2023-5031 OpenRapid RapidCMS article-add.php sql injection — RapidCMS 6.3 Medium2023-09-18
CVE-2023-5030 Tongda OA delete.php sql injection — OA 5.5 Medium2023-09-17
CVE-2023-5029 mccms 1 sql injection — mccms 5.5 Medium2023-09-17
CVE-2023-5027 SourceCodester Simple Membership System club_validator.php sql injection — Simple Membership System 6.3 Medium2023-09-17
CVE-2023-5023 Tongda OA delete.php sql injection — OA 5.5 Medium2023-09-17
CVE-2023-5020 07FLY CRM Administrator Login Page sql injection — CRM 7.3 High2023-09-17
CVE-2023-5019 Tongda OA delete.php sql injection — OA 6.3 Medium2023-09-17
CVE-2023-5018 SourceCodester Lost and Found Information System POST Parameter sql injection — Lost and Found Information System 6.3 Medium2023-09-17
CVE-2023-5017 lmxcms admin.php sql injection — lmxcms 5.5 Medium2023-09-17
CVE-2023-5014 Sakshi2610 Food Ordering Website categoryfood.php sql injection — Food Ordering Website 6.3 Medium2023-09-17
CVE-2023-41887 Remote Code exec in project import with mysql jdbc url attack — OpenRefine 9.8 Critical2023-09-15
CVE-2023-41886 OpenRefine vulnerable to arbitrary file read in project import with mysql jdbc url attack — OpenRefine 7.5 High2023-09-15
CVE-2023-4987 infinitietech taskhub GET Parameter get_tasks_list sql injection — taskhub 5.5 Medium2023-09-15
CVE-2023-4661 SQLi in Saphira Connect — Saphira Connect 9.8 Critical2023-09-15

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8873 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.