Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8840

8840 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2021-24200 wpDataTables < 3.4.2 - Blind SQL Injection via length Parameter — wpDataTables – Tables & Table Charts 6.5 -2021-04-12
CVE-2021-24199 wpDataTables < 3.4.2 - Blind SQL Injection via start Parameter — wpDataTables – Tables & Table Charts 6.5 -2021-04-12
CVE-2020-13592 Rukovoditel SQL注入漏洞 — Rukovoditel 8.8 -2021-04-09
CVE-2020-13587 Rukovoditel SQL注入漏洞 — Rukovoditel 8.8 -2021-04-09
CVE-2020-13591 Rukovoditel SQL注入漏洞 — Rukovoditel 8.8 -2021-04-09
CVE-2021-1409 Cisco Unified Communications Products Cross-Site Scripting Vulnerabilities — Cisco Unity Connection 6.1 Medium2021-04-08
CVE-2021-1408 Cisco Unified Communications Products Cross-Site Scripting Vulnerabilities — Cisco Unity Connection 6.1 Medium2021-04-08
CVE-2021-1407 Cisco Unified Communications Products Cross-Site Scripting Vulnerabilities — Cisco Unity Connection 6.1 Medium2021-04-08
CVE-2021-1380 Cisco Unified Communications Products Cross-Site Scripting Vulnerabilities — Cisco Unity Connection 6.1 Medium2021-04-08
CVE-2021-24181 Tutor LMS < 1.7.7 - SQL Injection via tutor_mark_answer_as_correct — Tutor LMS – eLearning and online course solution 6.5 -2021-04-05
CVE-2021-24182 Tutor LMS < 1.8.3 - SQL Injection via tutor_quiz_builder_get_answers_by_question — Tutor LMS – eLearning and online course solution 6.5 -2021-04-05
CVE-2021-24183 Tutor LMS < 1.8.3 - SQL Injection via tutor_quiz_builder_get_question_form — Tutor LMS – eLearning and online course solution 6.5 -2021-04-05
CVE-2021-24185 Tutor LMS < 1.7.7 - SQL Injection via tutor_place_rating — Tutor LMS – eLearning and online course solution 6.5 -2021-04-05
CVE-2021-24186 Tutor LMS < 1.8.3 - SQL Injection via tutor_answering_quiz_question/get_answer_by_id — Tutor LMS – eLearning and online course solution 6.5 -2021-04-05
CVE-2021-21380 Rating Script Service expose XWiki to SQL injection — xwiki-platform 7.7 High2021-03-23
CVE-2021-24142 301 Redirects - Easy Redirect Manager < 2.51 - Authenticated SQL Injection — 301 Redirects - Easy Redirect Manager 7.2 -2021-03-18
CVE-2021-24143 AccessPress Social Icons < 1.8.1 - Authenticated SQL Injection — AccessPress Social Icons 8.8 -2021-03-18
CVE-2021-24149 Modern Events Calendar Lite < 5.16.6 - Authenticated SQL Injection — Modern Events Calendar Lite 8.8 -2021-03-18
CVE-2021-24137 Blog2Social: Social Media Auto Post & Scheduler < 6.3.1 - Authenticated SQL Injection — Blog2Social: Social Media Auto Post & Scheduler 8.8 -2021-03-18
CVE-2021-24138 AdRotate < 5.8.4 - Authenticated SQL Injection — AdRotate 7.2 -2021-03-18
CVE-2021-24139 Photo Gallery by 10Web < 1.5.55 - Unauthenticated SQL Injection — Photo Gallery by 10Web 9.8 -2021-03-18
CVE-2021-24140 Ajax Load More < 5.3.2 - Authenticated SQL Injection — Ajax Load More 9.8 -2021-03-18
CVE-2021-24141 Advanced Database Cleaner < 3.0.2 - Authenticated SQL injection — Advanced Database Cleaner 7.2 -2021-03-18
CVE-2021-24125 Contact Form Submissions < 1.7.1 - Authenticated SQL Injection — Contact Form Submissions 7.2 -2021-03-18
CVE-2021-24130 WP Google Map Plugin < 4.1.5 - Authenticated SQL Injection — WP Google Map Plugin 7.2 -2021-03-18
CVE-2021-24131 Anti-Spam by CleanTalk < 5.149 - Multiple Authenticated SQL Injections — Anti-Spam by CleanTalk 7.2 -2021-03-18
CVE-2021-24132 Slider by 10Web < 1.2.36 - Multiple Authenticated SQL Injection — Slider by 10Web 8.8 -2021-03-18
CVE-2021-22848 HGiga MailSherlock - SQL Injection-2 — MailSherlock MSR45/SSR45 7.0 High2021-03-18
CVE-2021-22859 EIC e-document system - SQL Injection — e-document system 9.8 Critical2021-03-17
CVE-2021-22854 Soar Cloud System Co., Ltd. HR Portal - SQL Injection — HR Portal 7.5 High2021-02-17

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8840 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.