Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8838

8838 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2019-1942 Cisco Identity Services Engine Blind SQL Injection Vulnerability — Cisco Identity Services Engine Software 6.5 -2019-07-17
CVE-2019-7003 ACM SQL Injection — Avaya Control Manager 9.1 -2019-07-11
CVE-2019-11821 Synology Photo Station SQL注入漏洞 — Photo Station 7.3 High2019-06-30
CVE-2018-5404 The Quest Kace K1000 Appliance is vulnerable to multiple Blind SQL Injections. — K1000 Appliance 6.5 -2019-06-03
CVE-2019-1824 Cisco Prime Infrastructure and Evolved Programmable Network Manager SQL Injection Vulnerabilities — Cisco Prime Infrastructure 8.1 -2019-05-16
CVE-2019-1825 Cisco Prime Infrastructure and Evolved Programmable Network Manager SQL Injection Vulnerabilities — Cisco Prime Infrastructure 8.1 -2019-05-16
CVE-2019-10916 多款Siemens产品SQL注入漏洞 — SIMATIC PCS 7 V8.0 and earlier 8.8 -2019-05-14
CVE-2019-3797 Additional information exposure with Spring Data JPA derived queries — Spring Boot 5.3 -2019-05-06
CVE-2019-7001 Avaya IPOCC WebUI SQL Injection — IP Office Contact Center 8.1 -2019-04-04
CVE-2019-3792 Concourse 5.0.0 SQL Injection vulnerability — Concourse 7.5 -2019-04-01
CVE-2018-14623 Katello SQL注入漏洞 — katello 4.3 -2018-12-13
CVE-2018-15441 Cisco Prime License Manager SQL Injection Vulnerability — Cisco Prime License Manager 9.8 -2018-11-28
CVE-2018-18982 NUUO CMS SQL注入漏洞 — NUUO CMS 9.8 -2018-11-27
CVE-2018-16850 PostgreSQL SQL注入漏洞 — postgresql 9.8 -2018-11-13
CVE-2018-15447 Cisco Integrated Management Controller Supervisor SQL Injection Vulnerability — Cisco Integrated Management Controller (IMC) Supervisor 9.8 -2018-11-08
CVE-2018-0404 Cisco RV180W Wireless-N Multifunction VPN Router SQL Injection Vulnerability — Cisco RV180W Wireless-N Multifunction VPN Router 9.1 -2018-10-05
CVE-2018-12470 SQL injection in RegistrationSharing module — SMT 9.8 -2018-10-04
CVE-2016-8640 pycsw SQL注入漏洞 — pycsw 7.4 -2018-08-01
CVE-2017-3181 Multiple TIBCO Spotfire components are vulnerable to multiple unspecified SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in an SQL query — Spotfire Analyst 9.8 -2018-07-24
CVE-2018-5384 Navarino Infinity web interface up to version 2.2 exposes an unauthenticated script that is prone to blind sql injection — Infinity 9.8 -2018-07-24
CVE-2016-6566 The Sungard eTRAKiT3 software version 3.2.1.17 may be vulnerable to SQL injection which may allow a remote unauthenticated attacker to run a subset of SQL commands against the back-end database — eTRAKiT3 9.8 -2018-07-13
CVE-2018-12464 Unauthenticated SQL injection in Micro Focus Secure Messaging Gateway — Secure Messaging Gateway 9.8 -2018-06-29
CVE-2018-1132 OpenDaylight SDNInterfaceapp SQL注入漏洞 — opendaylight 9.8 -2018-06-20
CVE-2011-0467 SQL injection in SUSE studio via select parameter — SUSE Studio Onsite 8.8 -2018-06-07
CVE-2018-0320 Cisco Prime Collaboration Provisioning SQL注入漏洞 — Cisco Prime Collaboration Provisioning unknown 9.8 -2018-06-07
CVE-2016-9488 ManageEngine Applications Manager versions 12 and 13 suffer from remote SQL injection vulnerabilities — Applications Manager 9.8 -2018-06-05
CVE-2016-10550 sequalize SQL注入漏洞 — sequelize node module 9.8 -2018-05-31
CVE-2016-10553 sequalize SQL注入漏洞 — sequelize node module 9.8 -2018-05-31
CVE-2016-10554 sequelize 安全漏洞 — sequelize node module 9.8 -2018-05-31
CVE-2015-9244 mysql node模块SQL注入漏洞 — mysql node module 9.8 -2018-05-29

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8838 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.