Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8845

8845 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-26666 Delta Electronics DIAEnergie SQL Injection in HandlerDialogECC.ashx — DIAEnergie 9.8 Critical2022-03-29
CVE-2022-26887 Delta Electronics DIAEnergie SQL Injection in DIAE_HandlerTag_KID.ashx — DIAEnergie 9.8 Critical2022-03-29
CVE-2022-26836 Delta Electronics DIAEnergie SQL Injection in HandlerExport.ashx/Calendar.ashx — DIAEnergie 9.8 Critical2022-03-29
CVE-2022-26349 Delta Electronics DIAEnergie SQL Injection in DIAE_eccoefficientHandler.ashx — DIAEnergie 9.8 Critical2022-03-29
CVE-2022-26065 Delta Electronics DIAEnergie SQL Injection in GetLatestDemandNode and GetDemandAnalysisData — DIAEnergie 9.8 Critical2022-03-29
CVE-2022-25880 Delta Electronics DIAEnergie SQL Injection in DIAE_hierarchyHandler.ashx — DIAEnergie 9.8 Critical2022-03-29
CVE-2022-26013 Delta Electronics DIAEnergie SQL Injection in DIAE_dmdsetHandler.ashx — DIAEnergie 9.8 Critical2022-03-29
CVE-2022-0923 Delta Electronics DIAEnergie SQL Injection in HandlerDialog_KID.ashx — DIAEnergie 9.8 Critical2022-03-29
CVE-2022-26069 Delta Electronics DIAEnergie SQL Injection in HandlerPage_KID.ashx — DIAEnergie 9.8 Critical2022-03-29
CVE-2022-25980 Delta Electronics DIAEnergie SQL Injection in HandlerCommon.ashx — DIAEnergie 9.8 Critical2022-03-29
CVE-2022-26059 Delta Electronics DIAEnergie SQL Injection in GetQueryData — DIAEnergie 9.8 Critical2022-03-29
CVE-2022-1083 Microfinance Management System sql injection — Microfinance Management System 7.3 High2022-03-29
CVE-2022-1082 SourceCodester Microfinance Management System Login Page login.php sql injection — Microfinance Management System 7.3 High2022-03-29
CVE-2022-1080 SourceCodester One Church Management System attendancy.php sql injection — One Church Management System 7.3 High2022-03-29
CVE-2022-1078 SourceCodester College Website Management System sql injection — College Website Management System 7.3 High2022-03-29
CVE-2022-0846 SpeakOut! Email Petitions < 2.14.15.1 - Unauthenticated SQLi — SpeakOut! Email Petitions 9.8 -2022-03-28
CVE-2022-0787 Limit Login Attempts (Spam Protection) < 5.1 - Unauthenticated SQLi — Limit Login Attempts (Spam Protection) 9.8 -2022-03-28
CVE-2022-0784 Title Experiments Free < 9.0.1 - Unauthenticated SQLi — Title Experiments Free 9.8 -2022-03-28
CVE-2022-0479 Popup Builder < 4.1.1 - SQL Injection to Reflected Cross-Site Scripting — Popup Builder – Create highly converting, mobile friendly marketing popups. 9.8 -2022-03-28
CVE-2021-25070 WP Block and Stop Bad Bots < 6.88 - Unauthenticated SQLi — Block Bad Bots and Stop Bad Bots Crawlers and Spiders and Anti Spam Protection 9.1 -2022-03-28
CVE-2021-25068 Sync WooCommerce Product feed to Google Shopping <= 1.2.4 - Admin+ SQLi — Sync WooCommerce Product feed to Google Shopping 7.2 -2022-03-28
CVE-2021-25064 Wow Countdowns <= 3.1.2 - Admin+ SQLi — Wow Countdowns – easily create any countdowns, counters and timers 7.2 -2022-03-28
CVE-2022-0983 Moodle SQL注入漏洞 — moodle 8.8 -2022-03-25
CVE-2022-1064 SQL injection through marking blog comments on bulk as spam in forkcms/forkcms — forkcms/forkcms 8.8 -2022-03-25
CVE-2022-0153 SQL Injection in forkcms/forkcms — forkcms/forkcms 8.1 -2022-03-24
CVE-2021-27468 Rockwell Automation FactoryTalk AssetCentre SQL Injection — FactoryTalk AssetCentre 10.0 Critical2022-03-23
CVE-2021-27472 Rockwell Automation FactoryTalk AssetCentre SQL Injection — FactoryTalk AssetCentre 10.0 Critical2022-03-23
CVE-2021-27464 Rockwell Automation FactoryTalk AssetCentre SQL Injection — FactoryTalk AssetCentre 10.0 Critical2022-03-23
CVE-2022-0842 ePO blind SQL Injection vulnerability — McAfee ePolicy Orchestrator (ePO) 5.4 Medium2022-03-23
CVE-2022-0760 Simple Link Directory < 7.7.2 - Unauthenticated SQL injection — Simple Link Directory 9.8 -2022-03-21

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8845 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.