Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8857

8857 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2026-24367 WordPress Traveler theme < 3.2.8 - SQL Injection vulnerability — Traveler 8.5 High2026-01-22
CVE-2026-22470 WordPress FireStorm Professional Real Estate plugin <= 2.7.11 - SQL Injection vulnerability — FireStorm Professional Real Estate 9.8AICriticalAI2026-01-22
CVE-2025-69180 WordPress Ultra Portfolio plugin <= 6.7 - SQL Injection vulnerability — Ultra Portfolio 8.5 High2026-01-22
CVE-2025-69045 WordPress FooEvents for WooCommerce plugin <= 1.20.4 - SQL Injection vulnerability — FooEvents for WooCommerce 9.8AICriticalAI2026-01-22
CVE-2025-68999 WordPress Happy Addons for Elementor plugin <= 3.20.4 - SQL Injection vulnerability — Happy Addons for Elementor 8.5 High2026-01-22
CVE-2025-68881 WordPress AppExperts plugin <= 1.4.5 - SQL Injection vulnerability — AppExperts 8.8AIHighAI2026-01-22
CVE-2025-68857 WordPress Paid Downloads plugin <= 3.15 - SQL Injection vulnerability — Paid Downloads 9.8AICriticalAI2026-01-22
CVE-2025-68034 WordPress CleverReach® WP plugin <= 1.5.21 - SQL Injection vulnerability — CleverReach® WP 9.3 Critical2026-01-22
CVE-2025-68017 WordPress Antideo Email Validator plugin <= 1.0.10 - SQL Injection vulnerability — Antideo Email Validator 7.5 High2026-01-22
CVE-2025-67945 WordPress MailerLite – WooCommerce integration plugin <= 3.1.2 - SQL Injection vulnerability — MailerLite – WooCommerce integration 9.3 Critical2026-01-22
CVE-2025-49055 WordPress WP Lead Capturing Pages plugin <= 2.5 - SQL Injection vulnerability — WP Lead Capturing Pages 9.3 Critical2026-01-22
CVE-2025-49049 WordPress DZS Video Gallery plugin <= 12.39 - SQL Injection vulnerability — DZS Video Gallery 8.5 High2026-01-22
CVE-2025-49050 WordPress WP Lead Capturing Pages plugin <= 2.5 - SQL Injection vulnerability — WP Lead Capturing Pages 8.5 High2026-01-22
CVE-2025-36588 Dell Unisphere for PowerMax SQL注入漏洞 — Unisphere for PowerMax 8.8 High2026-01-22
CVE-2025-4764 SQLi in Aida Computer's Hotspot — Hotel Guest Hotspot 8.0 High2026-01-22
CVE-2025-27378 SQL Injection in AES Due to Inactive SQL Parsing Configuration — AES 8.6 High2026-01-22
CVE-2021-47872 SEO Panel < 4.9.0 - 'order_col' Blind SQL Injection — SEO Panel 7.1 High2026-01-21
CVE-2021-47848 Blitar Tourism 1.0 - Authentication Bypass SQLi — Aplikasi-Biro-Travel 8.2 High2026-01-21
CVE-2021-47846 Digital Crime Report Management System 1.0 - SQL Injection — Digital Crime Report Management System 8.2 High2026-01-21
CVE-2026-1179 Yonyou KSOA HTTP GET Parameter user_popedom.jsp sql injection — KSOA 7.3 High2026-01-19
CVE-2026-1178 Yonyou KSOA HTTP GET Parameter select.jsp sql injection — KSOA 7.3 High2026-01-19
CVE-2026-1177 Yonyou KSOA HTTP GET Parameter save_folder.jsp sql injection — KSOA 7.3 High2026-01-19
CVE-2026-1176 itsourcecode School Management System index.php sql injection — School Management System 7.3 High2026-01-19
CVE-2026-22850 Koko Analytics vulnerable to arbitrary SQL execution through unescaped analytics export/import and permissive admin SQL import — koko-analytics 8.4 High2026-01-19
CVE-2026-1160 PHPGurukul Directory Management System Search index.php sql injection — Directory Management System 7.3 High2026-01-19
CVE-2026-1159 itsourcecode Online Frozen Foods Ordering System order_online.php sql injection — Online Frozen Foods Ordering System 7.3 High2026-01-19
CVE-2026-0610 Devolutions Server 安全漏洞 — Server 8.8AIHighAI2026-01-19
CVE-2026-1133 Yonyou KSOA HTTP GET Parameter folder.jsp sql injection — KSOA 7.3 High2026-01-19
CVE-2026-1132 Yonyou KSOA HTTP GET Parameter edit_folder.jsp sql injection — KSOA 7.3 High2026-01-19
CVE-2026-1131 Yonyou KSOA HTTP GET Parameter save_catalog.jsp sql injection — KSOA 7.3 High2026-01-19

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8857 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.