Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8873

8873 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-4833 SQLi in Besttem's Network Marketing Software — Network Marketing Software 9.8 Critical2023-09-15
CVE-2023-4835 SQLi in CF's Oil Management Software — Oil Management Software 9.8 Critical2023-09-15
CVE-2023-4231 SQLi in Cevik Informatics' Online Payment System — Online Payment System 9.8 Critical2023-09-15
CVE-2023-4670 SQLi in Innosa's Probbys — Probbys 9.8 Critical2023-09-15
CVE-2023-4831 SQLi in nCep — Ncep 9.8 Critical2023-09-15
CVE-2023-4830 SQLi in Tura's Signalix — Signalix 9.8 Critical2023-09-15
CVE-2023-4673 SQLi in Sanalogy's Turasistan — Turasistan 9.8 Critical2023-09-15
CVE-2023-4974 Academy LMS GET Parameter filter sql injection — LMS 6.3 Medium2023-09-15
CVE-2023-4766 SQLi in Movus Admin Panel — Movus 9.8 Critical2023-09-14
CVE-2023-4832 SQLi in Aceka Holdings Company Management — Company Management 9.8 Critical2023-09-14
CVE-2023-4928 SQL Injection in instantsoft/icms2 — instantsoft/icms2 9.8 -2023-09-13
CVE-2023-4899 SQL Injection in mintplex-labs/anything-llm — mintplex-labs/anything-llm 9.8 -2023-09-11
CVE-2023-4872 SourceCodester Contact Manager App add.php sql injection — Contact Manager App 6.3 Medium2023-09-10
CVE-2023-4871 SourceCodester Contact Manager App delete.php sql injection — Contact Manager App 6.3 Medium2023-09-10
CVE-2023-4867 Xintian Smart Table Integrated Management System Added Site Page AddUpdateSites.aspx sql injection — Smart Table Integrated Management System 6.3 Medium2023-09-10
CVE-2023-4866 SourceCodester Online Tours & Travels Management System booking.php exec sql injection — Online Tours & Travels Management System 6.3 Medium2023-09-09
CVE-2023-4852 IBOS OA optimize sql injection — OA 6.3 Medium2023-09-09
CVE-2023-4851 IBOS OA edit&op=member sql injection — OA 6.3 Medium2023-09-09
CVE-2023-4850 IBOS OA del sql injection — OA 6.3 Medium2023-09-09
CVE-2023-4849 IBOS OA trash&op=del sql injection — OA 6.3 Medium2023-09-09
CVE-2023-4848 SourceCodester Simple Book Catalog App delete_book.php sql injection — Simple Book Catalog App 6.3 Medium2023-09-09
CVE-2023-4846 SourceCodester Simple Membership System delete_member.php sql injection — Simple Membership System 6.3 Medium2023-09-09
CVE-2023-4845 SourceCodester Simple Membership System account_edit_query.php sql injection — Simple Membership System 6.3 Medium2023-09-09
CVE-2023-4844 SourceCodester Simple Membership System club_edit_query.php sql injection — Simple Membership System 6.3 Medium2023-09-08
CVE-2023-39423 Improper Neutralization of Special Elements used in an SQL Command in RDPData.dll — IRM Next Generation 8.6 High2023-09-07
CVE-2023-41328 Possibility limited SQL injection due to insufficient validation in Frappe — frappe 4.2 Medium2023-09-06
CVE-2023-4485 ARDEREG Sistemas SCADA SQL Injection — Sistemas SCADA 9.8 Critical2023-09-05
CVE-2023-39365 Unchecked regular expressions can lead to SQL Injection and data leakage in Cacti — cacti 4.6 Medium2023-09-05
CVE-2023-39357 A Defect in sql_save() Causes Multiple SQL Injection Vulnerabilities in Cacti — cacti 8.8 High2023-09-05
CVE-2023-39358 Authenticated SQL injection vulnerability in reports_user.php in Cacti — cacti 8.8 High2023-09-05

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8873 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.