Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8844

8844 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2026-0569 code-projects Online Music Site AlbumByCategory.php sql injection — Online Music Site 7.3 High2026-01-02
CVE-2026-0568 code-projects Online Music Site ViewSongs.php sql injection — Online Music Site 7.3 High2026-01-02
CVE-2026-0567 code-projects Content Management System pages.php sql injection — Content Management System 7.3 High2026-01-02
CVE-2025-15439 Daptin Aggregate API resource_aggregate.go goqu.L sql injection — Daptin 6.3 Medium2026-01-02
CVE-2025-59389 Hyper Data Protector — Hyper Data Protector 9.8 -2026-01-02
CVE-2025-59387 MARS (Multi-Application Recovery Service) — MARS (Multi-Application Recovery Service) 9.8 -2026-01-02
CVE-2026-0565 code-projects Content Management System delete.php sql injection — Content Management System 7.3 High2026-01-02
CVE-2026-0546 code-projects Content Management System search.php sql injection — Content Management System 7.3 High2026-01-02
CVE-2025-15436 Yonyou KSOA work_edit.jsp sql injection — KSOA 7.3 High2026-01-02
CVE-2025-15435 Yonyou KSOA work_update.jsp sql injection — KSOA 7.3 High2026-01-02
CVE-2025-15434 Yonyou KSOA PrintZPYG.jsp sql injection — KSOA 7.3 High2026-01-02
CVE-2025-15425 Yonyou KSOA HTTP GET Parameter del_user.jsp sql injection — KSOA 7.3 High2026-01-02
CVE-2025-15424 Yonyou KSOA HTTP GET Parameter agent_worksdel.jsp sql injection — KSOA 7.3 High2026-01-02
CVE-2025-15421 Yonyou KSOA HTTP GET Parameter agent_worksadd.jsp sql injection — KSOA 7.3 High2026-01-02
CVE-2025-15420 Yonyou KSOA agent_work_report.jsp sql injection — KSOA 7.3 High2026-01-02
CVE-2025-15410 code-projects Online Guitar Store login.php sql injection — Online Guitar Store 7.3 High2026-01-01
CVE-2025-15409 code-projects Online Guitar Store Delete_product.php sql injection — Online Guitar Store 7.3 High2026-01-01
CVE-2025-55065 Kopek Reem ReKord Client SQL注入漏洞 — ReKord client 7.5 High2026-01-01
CVE-2025-15408 code-projects Online Guitar Store Create_product.php sql injection — Online Guitar Store 7.3 High2026-01-01
CVE-2025-15407 code-projects Online Guitar Store Create_category.php sql injection — Online Guitar Store 7.3 High2026-01-01
CVE-2026-0544 itsourcecode School Management System index.php sql injection — School Management System 7.3 High2026-01-01
CVE-2023-7331 PKrystian Full-Stack-Bank User sql injection — Full-Stack-Bank 4.7 Medium2025-12-31
CVE-2025-30628 WordPress Amazon Affiliates Addon for WPBakery Page Builder (formerly Visual Composer) plugin <= 1.2 - SQL Injection Vulnerability — Amazon Affiliates Addon for WPBakery Page Builder (formerly Visual Composer) 8.5 High2025-12-31
CVE-2025-28949 WordPress Mediabay - WordPress Media Library Folders <= 1.4 - SQL Injection Vulnerability — Mediabay - WordPress Media Library Folders 8.5 High2025-12-31
CVE-2025-15392 Kohana KodiCMS Search API Endpoint page.php like sql injection — KodiCMS 6.3 Medium2025-12-31
CVE-2023-54163 NLB mKlik Macedonia 3.3.12 SQL Injection via International Transfer Parameters — NLB mKlik Makedonija 7.5 High2025-12-30
CVE-2022-50694 SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x SQL Injection via Username Parameter — Impact/Pulse/First 9.8 Critical2025-12-30
CVE-2025-15354 itsourcecode Society Management System add_admin.php sql injection — Society Management System 7.3 High2025-12-30
CVE-2025-15353 itsourcecode Society Management System edit_admin_query.php edit_admin_query sql injection — Society Management System 7.3 High2025-12-30
CVE-2025-15263 BiggiDroid Simple PHP CMS Admin Login login.php sql injection — Simple PHP CMS 7.3 High2025-12-30

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8844 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.