CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8861

8861 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2021-4276	Hedgehog SQL注入漏洞 — hedgehog	4.1	Medium	2022-12-25
CVE-2022-43860	IBM Navigator for i SQL injection — Navigator for i	4.3	Medium	2022-12-22
CVE-2022-43859	IBM Navigator for i SQL injection — Navigator for i	6.3	Medium	2022-12-22
CVE-2022-44588	WordPress Cryptocurrency Widgets Pack Plugin <=1.8.1 is vulnerable to SQL Injection — Cryptocurrency Widgets Pack	9.9	Critical	2022-12-15
CVE-2022-2807	SQL Injection in Prens Student Information System — Prens Student Information System	9.8	Critical	2022-12-12
CVE-2022-23510	SQl injection in cube-js — cube.js	9.6	Critical	2022-12-09
CVE-2022-33875	Fortinet FortiADC SQL注入漏洞 — FortiADC	5.1	Medium	2022-12-06
CVE-2022-45822	WordPress Advanced Booking Calendar Plugin <= 1.7.1 is vulnerable to SQL Injection — Advanced Booking Calendar	10.0	Critical	2022-12-05
CVE-2022-3751	SQL Injection in owncast/owncast — owncast/owncast	8.8	-	2022-11-29
CVE-2022-4093	SQL Injection in dolibarr/dolibarr — dolibarr/dolibarr	9.8	-	2022-11-21
CVE-2022-43506	Delta Electronics DIAEnergie SQL Injection — DIAEnergie	8.8	High	2022-11-17
CVE-2022-41775	Delta Electronics DIAEnergie SQL Injection — DIAEnergie	8.8	High	2022-11-17
CVE-2022-43447	Delta Electronics DIAEnergie SQL Injection — DIAEnergie	8.8	High	2022-11-17
CVE-2022-43452	Delta Electronics DIAEnergie SQL Injection — DIAEnergie	8.8	High	2022-11-17
CVE-2022-43457	Delta Electronics DIAEnergie SQL Injection — DIAEnergie	8.8	High	2022-11-17
CVE-2022-39180	College Management System v1.0 - SQL Injection (SQLi) — College Management System v1.0	9.8	Critical	2022-11-17
CVE-2022-36787	webvendome - webvendome SQL Injection — webvendome	9.8	Critical	2022-11-17
CVE-2022-41892	Arches vulnerable to SQL Injection — arches	8.6	High	2022-11-11
CVE-2022-41259	SAP SQL Anywhere 安全漏洞 — SAP SQL Anywhere	6.5	-	2022-11-08
CVE-2020-12507	s::can moni::tools autheticated SQL injection — moni:tools	8.8	High	2022-11-07
CVE-2022-3494	Complianz (Free < 6.3.4, Premium < 6.3.6) - Translator SQLi — Complianz – GDPR/CCPA Cookie Consent	8.8	-	2022-11-07
CVE-2022-41671	Schneider Electric EcoStruxure Operator Terminal Expert SQL注入漏洞 — EcoStruxure Operator Terminal Expert	7.0	High	2022-11-04
CVE-2022-20867	多款Cisco产品SQL注入漏洞 — Cisco Secure Email	5.4	Medium	2022-11-03
CVE-2022-39323	SQL Injection on REST API in GLPI — glpi	7.4	High	2022-11-03
CVE-2022-3059	SQL injection in Schoolbox version 21.0.2, by Schoolbox Pty Ltd — Schoolbox	8.6	High	2022-10-31
CVE-2022-42924	SQL injection in Forma LMS — Forma LMS	7.6	High	2022-10-31
CVE-2022-41680	SQL Injection in Forma LMS — Forma LMS	7.6	High	2022-10-31
CVE-2022-42923	SQL injection in Forma LMS — Forma LMS	8.3	High	2022-10-31
CVE-2022-3254	AWP Classifieds Plugin < 4.3 - Unauthenticated SQLi — WordPress Classifieds Plugin – Ad Directory & Listings by AWP Classifieds	9.8	-	2022-10-31
CVE-2021-36898	WordPress Quiz And Survey Master plugin <= 7.3.4 - Auth. SQL Injection (SQLi) vulnerability — Quiz And Survey Master (WordPress plugin)	7.5	High	2022-10-28

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8861 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8861