Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8844

8844 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2021-24848 Mediamatic < 2.8.1 - Subscriber+ SQL Injection — Mediamatic – Media Library Folders 8.8 -2021-12-13
CVE-2021-24747 SEO Booster < 3.8 - Admin+ SQL Injection — SEO Booster 7.2 -2021-12-13
CVE-2021-3817 SQL Injection in wbce/wbce_cms — wbce/wbce_cms 9.8 -2021-12-09
CVE-2021-43789 Blind SQLi using Search filters in PrestaShop — PrestaShop 7.5 High2021-12-07
CVE-2021-42131 Ivanti Avalanche SQL注入漏洞 — Ivanti Avalanche 8.8 -2021-12-07
CVE-2021-29114 SQL injection vulnerability in ArcGIS Server — ArcGIS Server 9.8 -2021-12-07
CVE-2021-24943 Registrations for the Events Calendar < 2.7.6 - Unauthenticated SQL Injection — Registrations for the Events Calendar – Event Registration Plugin 9.8 -2021-12-06
CVE-2021-24931 Secure Copy Content Protection and Content Locking < 2.8.2 - Unauthenticated SQL Injection — Secure Copy Content Protection and Content Locking 9.8 -2021-12-06
CVE-2021-24866 WP Data Access < 5.0.0 - Admin+ SQL Injection — WP Data Access 9.8 -2021-12-06
CVE-2020-35012 Events Manager < 5.9.8 - Admin+ SQL Injection — Events Manager 7.2 -2021-12-01
CVE-2021-24915 Contest Gallery < 13.1.0.6 - Missing Access Controls to Unauthenticated SQL injection / Email Address Disclosure — Contest Gallery – Photo Contest Plugin for WordPress 9.1 -2021-11-29
CVE-2021-24889 Ninja Forms < 3.6.4 - Admin+ SQL Injection — Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress 7.2 -2021-11-29
CVE-2021-24860 BSK PDF Manager < 3.1.2 - Admin+ SQL Injection — BSK PDF Manager 7.2 -2021-11-29
CVE-2021-24755 myCred < 2.3 - Subscriber+ SQL Injection — myCred – Points, Rewards, Gamification, Ranks, Badges & Loyalty Plugin 8.8 -2021-11-29
CVE-2021-24748 Email Before Download < 6.8 - Admin+ SQL Injection — Email Before Download 8.8 -2021-11-29
CVE-2021-36916 WordPress Hide My WP premium plugin <= 6.2.3 - Unauthenticated SQL injection (SQLi) vulnerability — Hide My WP (WordPress plugin) 8.6 High2021-11-24
CVE-2021-36300 Dell Emc Idrac SQL注入漏洞 — Integrated Dell Remote Access Controller (iDRAC) 6.5 Medium2021-11-23
CVE-2021-36299 DELL Dell EMC iDRAC9 SQL注入漏洞 — Integrated Dell Remote Access Controller (iDRAC) 7.1 High2021-11-23
CVE-2021-24877 MainWP Child < 4.1.8 - Admin+ SQL Injection — MainWP Child - Securely connects sites to the MainWP WordPress Manager Dashboard 7.2 -2021-11-23
CVE-2021-3935 PgBouncer 信任管理问题漏洞 — pgbouncer 8.1 -2021-11-22
CVE-2021-43408 Duplicate Post WordPress Plugin SQL Injection Vulnerability — Duplicate Post WordPress Plugin 6.5 Medium2021-11-19
CVE-2021-40129 Cisco Common Services Platform Collector SQL Injection Vulnerability — Cisco Common Services Platform Collector Software 4.9 Medium2021-11-18
CVE-2021-24847 SEO Redirection < 8.2 - Subscriber+ SQL Injection — SEO Redirection Plugin – 301 Redirect Manager 8.8 -2021-11-17
CVE-2021-24772 Stream < 3.8.2 - Admin+ SQL Injection — Stream 8.8 -2021-11-17
CVE-2021-24758 Email Log < 2.4.7 - Admin+ SQL Injection — Email Log 8.8 -2021-11-17
CVE-2021-3958 SQL Injection Vulnerability in Ipack SCADA Software — Ipack SCADA Software 9.8 Critical2021-11-16
CVE-2021-24844 Affiliate Manager < 2.8.7 - Admin+ SQL injection — Affiliates Manager 7.2 -2021-11-08
CVE-2021-24835 WCFM - Frontend Manager for WooCommerce < 6.5.12 - Customer/Subscriber+ SQL Injection — WCFM – Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible 8.8 -2021-11-08
CVE-2021-24829 Visitor Traffic Real Time Statistics < 3.9 - Subscriber+ SQL Injection — Visitor Traffic Real Time Statistics 8.8 -2021-11-08
CVE-2021-24827 Asgaros Forum < 1.15.13 - Unauthenticated SQL Injection — Asgaros Forum 9.8 -2021-11-08

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8844 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.