Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8838

8838 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2026-3150 itsourcecode College Management System display-teacher.php sql injection — College Management System 6.3 Medium2026-02-25
CVE-2026-3149 itsourcecode College Management System asign-single-student-subjects.php sql injection — College Management System 6.3 Medium2026-02-25
CVE-2026-3148 SourceCodester Simple and Nice Shopping Cart Script signup.php sql injection — Simple and Nice Shopping Cart Script 7.3 High2026-02-25
CVE-2026-27743 SPIP referer_spam <= 1.2.1 Unauthenticated SQL Injection — referer_spam 9.8 Critical2026-02-25
CVE-2026-27747 SPIP interface_traduction_objets < 2.2.2 Authenticated SQL Injection — interface_traduction_objets 8.8 High2026-02-25
CVE-2026-3135 itsourcecode News Portal Project add-category.php sql injection — News Portal Project 7.3 High2026-02-25
CVE-2026-3134 itsourcecode News Portal Project edit-category.php sql injection — News Portal Project 7.3 High2026-02-24
CVE-2026-3133 itsourcecode Document Management System Login loging.php sql injection — Document Management System 7.3 High2026-02-24
CVE-2026-21410 InSAT MasterSCADA BUK-TS SQL Injection — MasterSCADA BUK-TS 9.8 Critical2026-02-24
CVE-2026-3105 SQL Injection in Contact Activity API Sorting — Mautic 7.6 High2026-02-24
CVE-2026-23969 Apache Superset: Exposure of Sensitive Information via Incomplete ClickHouse Function Filtering — Apache Superset 9.8 -2026-02-24
CVE-2026-23980 Apache Superset: Improper Neutralization of Special Elements used in a SQL Command — Apache Superset 8.8 -2026-02-24
CVE-2025-11165 DotCMS 安全漏洞 — dotCMS 9.9AICriticalAI2026-02-24
CVE-2026-3069 itsourcecode Document Management System edtlbls.php sql injection — Document Management System 7.3 High2026-02-24
CVE-2026-3068 itsourcecode Document Management System deluser.php sql injection — Document Management System 7.3 High2026-02-24
CVE-2026-27461 Pimcore vulnerable to SQL injection via unsanitized filter value in Dependency Dao RLIKE clause — pimcore 4.9 -2026-02-24
CVE-2026-26198 ormar is vulnerable to SQL Injection through aggregate functions min() and max() — ormar 9.8 Critical2026-02-24
CVE-2026-3057 a54552239 pearProjectApi Backend Task.php dateTotalForProject sql injection — pearProjectApi 6.3 Medium2026-02-24
CVE-2026-3046 itsourcecode E-Logbook with Health Monitoring System for COVID-19 check_profile_old.php sql injection — E-Logbook with Health Monitoring System for COVID-19 7.3 High2026-02-24
CVE-2026-3042 itsourcecode Event Management System index.php sql injection — Event Management System 7.3 High2026-02-23
CVE-2025-41002 SQL injection in Infoticketing — Infoticketing 9.8AICriticalAI2026-02-23
CVE-2026-1367 SQL Injection — ManageEngine ADSelfService Plus 8.3 High2026-02-23
CVE-2026-24494 SQL injection vulnerability in Order Up Online Ordering System — Online Ordering System 9.8 Critical2026-02-23
CVE-2026-2963 Jinher OA C6 OfficeSupplyTypeRight.aspx sql injection — OA C6 6.3 Medium2026-02-23
CVE-2019-25462 Web Ofisi Rent a Car v3 SQL Injection via klima Parameter — Rent a Car 8.2 High2026-02-22
CVE-2019-25461 Web Ofisi Platinum E-Ticaret v5 SQL Injection via ajax/productsFilterSearch — Ticaret 7.5 High2026-02-22
CVE-2019-25460 Web Ofisi Platinum E-Ticaret v5 SQL Injection via q Parameter — Ticaret 7.5 High2026-02-22
CVE-2019-25459 Web Ofisi Emlak V2 SQL Injection via emlak-ara.html — Emlak 9.8 Critical2026-02-22
CVE-2019-25458 Web Ofisi Firma Rehberi v1 SQL Injection via firmalar.html — Firma Rehberi 9.8 Critical2026-02-22
CVE-2019-25457 Web Ofisi Firma v13 SQL Injection via oz Parameter — Firma 7.5 High2026-02-22

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8838 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.