Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8842

8842 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2021-33732 Siemens SINEC NMS SQL注入漏洞 — SINEC NMS 7.2 -2021-10-12
CVE-2021-33731 Siemens SINEC NMS SQL注入漏洞 — SINEC NMS 7.2 -2021-10-12
CVE-2021-33730 Siemens SINEC NMS SQL注入漏洞 — SINEC NMS 7.2 -2021-10-12
CVE-2021-33729 Siemens SINEC NMS SQL注入漏洞 — SINEC NMS 8.8 -2021-10-12
CVE-2021-24651 Poll Maker < 3.4.2 - Unauthenticated Time Based SQL Injection — Poll Maker 7.5 -2021-10-11
CVE-2021-39351 WP Bannerize 2.0.0 - 4.0.2 - Authenticated SQL Injection — WP Bannerize 6.5 -2021-10-06
CVE-2021-24465 Meow Gallery < 4.1.9 - Contributor+ SQL Injection — Meow Gallery (+ Gallery Block) 8.1 -2021-10-04
CVE-2021-36880 WordPress uListing plugin <= 2.0.3 - Unauthenticated SQL Injection (SQLi) vulnerability — uListing (WordPress plugin) 8.6 High2021-09-27
CVE-2021-24666 Podlove Podcast Publisher < 3.5.6 - Unauthenticated SQL Injection — Podlove Podcast Publisher 9.8 -2021-09-27
CVE-2021-24741 Support Board < 3.3.4 - Multiple Unauthenticated SQL Injections — Support Board 9.8 -2021-09-20
CVE-2021-24606 Availability Calendar < 1.2.1 - Authenticated SQL Injection — Availability Calendar 8.8 -2021-09-20
CVE-2021-24511 Create WooCommerce Product Feeds For 40+ Merchants < 3.3.1.0 - Authenticated SQL Injection — Product Feed on WooCommerce for Google, Awin, Shareasale, Bing, and More 7.2 -2021-09-20
CVE-2021-24404 WP-Board <= 1.1 (beta) - Unauthenticated SQL Injection — WP-Board 7.2 -2021-09-20
CVE-2021-24403 WordPress Page Contact <= 1.0 - Authenticated (editor+) SQL Injection — WordPress Page Contact 7.2 -2021-09-20
CVE-2021-24402 WP iCommerce <= 1.1.1 - Authenticated (contributor+) SQL Injection — WP iCommerce – the first interactive ecommerce for wordpress 7.2 -2021-09-20
CVE-2021-24401 WP Domain Redirect <= 1.0 - Authenticated SQL Injection — WP Domain Redirect 7.2 -2021-09-20
CVE-2021-24400 Display users <= 2.0.0 - Authenticated SQL Injection — Display Users 7.2 -2021-09-20
CVE-2021-24399 The Sorter <= 1.0 - Authenticated SQL Injection — The Sorter 7.2 -2021-09-20
CVE-2021-24398 Responsive 3D Slider <= 1.2 - Authenticated SQL Injection — RESPONSIVE 3D SLIDER 7.2 -2021-09-20
CVE-2021-24397 MicroCopy <= 1.1.0 - Authenticated SQL Injection — MicroCopy 7.2 -2021-09-20
CVE-2021-24396 GSEOR <= 1.3 - Authenticated SQL Injection — GSEOR – WordPress SEO Plugin 7.2 -2021-09-20
CVE-2021-33701 SAP ERP SQL注入漏洞 — DMIS Mobile Plug-In 7.2 -2021-09-15
CVE-2021-23040 F5 BIG-IP APM和F5 BIG-IP SQL注入漏洞 — BIG-IP AFM 8.8 -2021-09-14
CVE-2021-24728 Paid Member Subscriptions < 2.4.2 - Authenticated SQL Injection — Membership & Content Restriction – Paid Member Subscriptions 8.8 -2021-09-13
CVE-2021-24727 Block and Stop Bad Bots < 6.60 - Authenticated SQL Injections — WP Block and Stop Bad Bots Crawlers and Spiders and Anti Spam Protection Plugin StopBadBots 8.8 -2021-09-13
CVE-2021-24726 WP Simple Booking Calendar <= 2.0.6 (before 07/12/2021) - Authenticated SQL Injection — WP Simple Booking Calendar 7.2 -2021-09-13
CVE-2021-38324 SP Rental Manager <= 1.5.3 Unauthenticated SQL Injection — SP Rental Manager 8.2 High2021-09-09
CVE-2021-24395 Embed Youtube Video <= 1.0 - Authenticated SQL Injection — Embed Youtube Video 7.2 -2021-09-06
CVE-2021-24393 Comment Highlighter <= 0.13 - Authenticated SQL Injection — Comment Highlighter 7.2 -2021-09-06
CVE-2021-24394 Easy Testimonial Manager <= 1.2.0 - Authenticated SQL Injection — Easy Testimonial Manager 7.2 -2021-09-06

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8842 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.