Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8838

8838 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2021-21024 Magento Commerce Blind SQL Injection Could Lead To Unauthorized Access — Magento Commerce 6.5 -2021-02-11
CVE-2021-22658 Advantech Iview SQL注入漏洞 — Advantech iView 9.8 -2021-02-11
CVE-2021-22654 Advantech Iview SQL注入漏洞 — Advantech iView 7.5 -2021-02-11
CVE-2021-20016 Sonicwall SMA100 SQL注入漏洞 — SonicWall SMA100 9.8 -2021-02-03
CVE-2020-5427 Possibility of SQL Injection in Spring Cloud Data Flow Task Execution Sorting Query — Spring Cloud Data Flow 7.2 -2021-01-27
CVE-2020-5428 Possibility of SQL Injection in Spring Cloud Task Execution Sorting Query — Spring Cloud Task 6.7 -2021-01-27
CVE-2021-22847 Hyweb HyCMS-J1 - SQL Injection — HyCMS-J1 8.8 High2021-01-22
CVE-2021-1222 Cisco Smart Software Manager Satellite SQL Injection Vulnerability — Cisco Smart Software Manager On-Prem 8.1 -2021-01-20
CVE-2021-1225 Cisco SD-WAN vManage SQL Injection Vulnerabilities — Cisco SD-WAN vManage 9.1 -2021-01-20
CVE-2021-1248 Cisco Data Center Network Manager SQL Injection Vulnerabilities — Cisco Data Center Network Manager 8.8 High2021-01-20
CVE-2021-1247 Cisco Data Center Network Manager SQL Injection Vulnerabilities — Cisco Data Center Network Manager 8.8 High2021-01-20
CVE-2021-22851 HGiga OAKloud Portal - SQL injection -1 — OAKSv20 OAKlouds-document_v3 2.0 9.8 Critical2021-01-19
CVE-2021-22852 HGiga OAKloud Portal - SQL injection -2 — OAKSv20 OAKlouds-mol_course_v3 2.0 8.8 High2021-01-19
CVE-2020-29493 DELL Dell EMC Avamar Server SQL注入漏洞 — Avamar 10.0 Critical2021-01-14
CVE-2020-35743 HGiga MailSherlock - SQL Injection -3 — MailSherlock MSR45/SSR45 7.0 High2020-12-31
CVE-2020-35742 HGiga MailSherlock - SQL Injection -1 — MailSherlock MSR45/SSR45 7.0 High2020-12-31
CVE-2020-24673 SQL Injection in Symphony Plus — ABB Ability™ Symphony® Plus Operations 9.8 Critical2020-12-22
CVE-2019-19286 Siemens XHQ SQL注入漏洞 — XHQ 7.2 -2020-12-14
CVE-2020-16104 Gallagher Group Command Centre SQL注入漏洞 — Command Centre 8.2 High2020-12-14
CVE-2020-13526 ProcessMaker SQL注入漏洞 — ProcessMaker 8.8 -2020-12-10
CVE-2020-26248 Blind SQL injection during the CommentGrade process — productcomments 6.8 Medium2020-12-03
CVE-2020-13525 Processmaker SQL注入漏洞 — ProcessMaker 8.8 -2020-12-03
CVE-2020-25638 Red Hat Hibernate ORM SQL注入漏洞 — hibernate-core 7.4 -2020-12-02
CVE-2020-27660 Synology SafeAccess SQL注入漏洞 — Safe Access 9.6 Critical2020-11-30
CVE-2020-25700 Moodle SQL注入漏洞 — moodle 6.5 -2020-11-19
CVE-2020-26075 Cisco IoT Field Network REST API Insufficient Input Validation Vulnerability — Cisco IoT Field Network Director (IoT-FND) 7.2 -2020-11-18
CVE-2020-25695 PostgreSQL SQL注入漏洞 — postgresql 8.8 -2020-11-16
CVE-2020-24400 SQL injection allows arbitrary read from database — Magento Commerce 7.1 High2020-11-09
CVE-2020-15792 Siemens DESIGO INSIGHT SQL注入漏洞 — Desigo Insight 6.5 -2020-10-15
CVE-2020-7383 SQL Injection in Rapid7 Nexpose — Nexpose 6.5 Medium2020-10-14

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8838 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.