Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8842

8842 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-13652 CBX Bookmark & Favorite <= 2.0.4 - Authenticated (Subscriber+) SQL Injection via `orderby` Parameter — CBX Bookmark & Favorite 6.5 Medium2026-01-06
CVE-2025-13409 Form Vibes – Database Manager for Forms <= 1.4.13 - Authenticated (Admin+) SQL Injection — Form Vibes – Database Manager for Forms 4.9 Medium2026-01-06
CVE-2026-0607 code-projects Online Music Site AdminViewSongs.php sql injection — Online Music Site 7.3 High2026-01-05
CVE-2026-0606 code-projects Online Music Site Albums.php sql injection — Online Music Site 7.3 High2026-01-05
CVE-2026-0605 code-projects Online Music Site login.php sql injection — Online Music Site 7.3 High2026-01-05
CVE-2025-39484 WordPress Entrada Theme <= 5.7.7 - SQL Injection vulnerability — Entrada 9.3 Critical2026-01-05
CVE-2025-15029 An unauthenticated user is able to introduce SQL Injection using the Awie export module — Infra Monitoring 9.8 Critical2026-01-05
CVE-2026-0597 Campcodes Supplier Management System edit_profile.php sql injection — Supplier Management System 6.3 Medium2026-01-05
CVE-2026-0592 code-projects Online Product Reservation System User Registration register_code.php sql injection — Online Product Reservation System 7.3 High2026-01-05
CVE-2026-0591 code-projects Online Product Reservation System Cart Update update.php sql injection — Online Product Reservation System 6.3 Medium2026-01-05
CVE-2026-0590 code-projects Online Product Reservation System POST Parameter delete.php sql injection — Online Product Reservation System 6.3 Medium2026-01-05
CVE-2025-68865 WordPress Infility Global plugin <= 2.15.11 - SQL Injection vulnerability — Infility Global 9.3 Critical2026-01-05
CVE-2025-31044 WordPress Premium SEO Pack <= 3.3.2 - SQL Injection Vulnerability — Premium SEO Pack 8.5 High2026-01-05
CVE-2025-30633 WordPress Amazon Native Shopping Recommendations Plugin <= 1.3 - SQL Injection Vulnerability — Amazon Native Shopping Recommendations 9.3 Critical2026-01-05
CVE-2026-0585 code-projects Online Product Reservation System GET Parameter order_view.php sql injection — Online Product Reservation System 7.3 High2026-01-05
CVE-2026-0584 code-projects Online Product Reservation System left_cart.php sql injection — Online Product Reservation System 6.3 Medium2026-01-05
CVE-2026-0583 code-projects Online Product Reservation System User Login login.php sql injection — Online Product Reservation System 7.3 High2026-01-05
CVE-2026-0582 itsourcecode Society Management System edit_activity_query.php sql injection — Society Management System 6.3 Medium2026-01-05
CVE-2025-15239 Quanta Computer|QOCA aim AI Medical Cloud Platform - SQL Injection — QOCA aim AI Medical Cloud Platform 6.5 Medium2026-01-05
CVE-2025-15238 Quanta Computer|QOCA aim AI Medical Cloud Platform - SQL Injection — QOCA aim AI Medical Cloud Platform 6.5 Medium2026-01-05
CVE-2025-15450 sfturing hosp_order orderHos findOrderHosNum sql injection — hosp_order 6.3 Medium2026-01-05
CVE-2026-0579 code-projects Online Product Reservation System POST Parameter edit.php sql injection — Online Product Reservation System 7.3 High2026-01-04
CVE-2026-0578 code-projects Online Product Reservation System delete.php sql injection — Online Product Reservation System 7.3 High2026-01-04
CVE-2025-15443 CRMEB product_export sql injection — CRMEB 4.7 Medium2026-01-04
CVE-2025-15442 CRMEB product_list sql injection — CRMEB 4.7 Medium2026-01-04
CVE-2026-0576 code-projects Online Product Reservation System Parameter prod.php sql injection — Online Product Reservation System 7.3 High2026-01-04
CVE-2026-0575 code-projects Online Product Reservation System Administrator Login adminlogin.php sql injection — Online Product Reservation System 7.3 High2026-01-04
CVE-2026-0570 code-projects Online Music Site Feedback.php sql injection — Online Music Site 7.3 High2026-01-02
CVE-2026-0569 code-projects Online Music Site AlbumByCategory.php sql injection — Online Music Site 7.3 High2026-01-02
CVE-2026-0568 code-projects Online Music Site ViewSongs.php sql injection — Online Music Site 7.3 High2026-01-02

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8842 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.