CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8851

8851 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2022-1691	Realty Workstation < 1.0.15 - Agent SQLi — Realty Workstation	6.5	-	2022-06-06
CVE-2022-1690	Note Press <= 0.1.10 - Admin+ SQLi via Bulk Actions — Note Press	6.5	-	2022-06-06
CVE-2022-1689	Note Press <= 0.1.10 - Admin+ SQLi via Update — Note Press	2.7	-	2022-06-06
CVE-2022-1688	Note Press <= 0.1.10 - Admin+ SQLi via id — Note Press	6.5	-	2022-06-06
CVE-2022-1687	Logo Slider <= 1.4.8 - Admin+ SQLi — Logo Slider	6.5	-	2022-06-06
CVE-2022-1686	Five Minute Webshop <= 1.3.2 - Admin+ SQLi via id — Five Minute Webshop	6.5	-	2022-06-06
CVE-2022-1685	Five Minute Webshop <= 1.3.2 - Admin+ SQLi via orderby — Five Minute Webshop	6.5	-	2022-06-06
CVE-2022-1684	Cube Slider <= 1.2 - Admin+ SQLi — CUBE SLIDER	7.2	-	2022-06-06
CVE-2022-1683	amtyThumb <= 4.2.0 - Subscriber+ SQLi — amtyThumb	8.8	-	2022-06-06
CVE-2022-0788	WP Fundraising Donation and Crowdfunding Platform < 1.5.0 - Unauthenticated SQLi — WP Fundraising Donation and Crowdfunding Platform	9.8	-	2022-06-06
CVE-2017-20017	The Next Generation of Genealogy Sitebuilding timeline2.php sql injection — The Next Generation of Genealogy Sitebuilding	6.3	Medium	2022-06-05
CVE-2020-36543	SialWeb CMS about.php sql injection — CMS	6.3	Medium	2022-06-04
CVE-2020-36541	Demokratian genera_select.php sql injection — Demokratian	7.3	High	2022-06-03
CVE-2020-36540	Neetai Tech product.php sql injection — Neetai Tech	6.3	Medium	2022-06-03
CVE-2020-36539	Lógico y Creativo sql injection — Lógico y Creativo	6.3	Medium	2022-06-03
CVE-2020-36538	Eatan CMS sql injection — CMS	6.3	Medium	2022-06-03
CVE-2020-36537	Everywhere CMS sql injection — CMS	6.3	Medium	2022-06-03
CVE-2020-36536	Brandbugle main.php sql injection — Brandbugle	6.3	Medium	2022-06-03
CVE-2020-36535	MINMAX newsDia.php sql injection — MINMAX	6.3	Medium	2022-06-03
CVE-2020-36530	SevOne Network Management System Alert Summary sql injection — Network Management System	6.3	Medium	2022-06-03
CVE-2022-24848	SQL Injection in DHIS2's in OrgUnit program association — dhis2-core	8.8	High	2022-06-01
CVE-2021-26634	Maxboard multiple vulnerabilities — Maxboard	9.8	Critical	2022-06-01
CVE-2021-26633	Maxboard SQL injection and LFI vulnerability — MaxBoard	7.5	High	2022-06-01
CVE-2022-1556	StaffList < 3.1.5 - Admin+ SQLi — StaffList	9.8	-	2022-05-30
CVE-2022-1883	SQL Injection in camptocamp/terraboard — camptocamp/terraboard	8.8	-	2022-05-25
CVE-2013-10003	Telecommunication Software SAMwin Contact Center Suite Database SAMwinLIBVB.dll getCurrentDBVersion sql injection — SAMwin Contact Center Suite	6.5	Medium	2022-05-24
CVE-2022-1839	Home Clean Services Management System login.php sql injection — Home Clean Services Management System	6.3	Medium	2022-05-24
CVE-2022-1838	Home Clean Services Management System login.php sql injection — Home Clean Services Management System	4.7	Medium	2022-05-24
CVE-2022-1014	WP Contacts Manager <= 2.2.4 - Unauthenticated SQLi — WP Contacts Manager	9.8	-	2022-05-23
CVE-2022-0781	Nirweb support < 2.8.2 - Unauthenticated SQLi — Nirweb support	9.8	-	2022-05-23

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8851 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8851