Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8827

8827 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2026-6164 code-projects Lost and Found Thing Management addcat.php sql injection — Lost and Found Thing Management 7.3 High2026-04-13
CVE-2026-6163 code-projects Lost and Found Thing Management catageory.php sql injection — Lost and Found Thing Management 7.3 High2026-04-13
CVE-2026-6161 code-projects Simple ChatBox Endpoint insert.php sql injection — Simple ChatBox 7.3 High2026-04-13
CVE-2026-6153 code-projects Vehicle Showroom Management System StaffDetailsFunction.php sql injection — Vehicle Showroom Management System 7.3 High2026-04-13
CVE-2026-6152 code-projects Vehicle Showroom Management System StaffAddingFunction.php sql injection — Vehicle Showroom Management System 7.3 High2026-04-13
CVE-2026-6151 code-projects Vehicle Showroom Management System PaymentStatusFunction.php sql injection — Vehicle Showroom Management System 7.3 High2026-04-13
CVE-2026-6149 code-projects Vehicle Showroom Management System BookVehicleFunction.php sql injection — Vehicle Showroom Management System 7.3 High2026-04-13
CVE-2026-6148 code-projects Vehicle Showroom Management System MonthTotalReportUpdateFunction.php sql injection — Vehicle Showroom Management System 7.3 High2026-04-13
CVE-2026-6142 tushar-2223 Hotel Management System roomdelete.php sql injection — Hotel Management System 7.3 High2026-04-13
CVE-2019-25713 MyT-PM 1.5.1 SQL Injection via Charge[group_total] Parameter — Project Management 7.1 High2026-04-12
CVE-2019-25710 Dolibarr ERP-CRM 8.0.4 SQL Injection via rowid Parameter — Dolibarr ERP-CRM 8.2 High2026-04-12
CVE-2019-25707 eBrigade ERP 4.5 SQL Injection via pdf.php — eBrigade ERP 7.1 High2026-04-12
CVE-2019-25703 ImpressCMS 1.3.11 SQL Injection via bid Parameter — ImpressCMS 7.1 High2026-04-12
CVE-2019-25699 Newsbull Haber Script 1.0.0 Authenticated SQL Injection via search parameter — Newsbull Haber Script 7.1 High2026-04-12
CVE-2019-25697 CMSsite 1.0 SQL Injection via category.php — CMSsite 8.2 High2026-04-12
CVE-2018-25257 Adianti Framework 5.5.0 and 5.6.0 SQL Injection via Profile — Adianti Framework 7.1 High2026-04-12
CVE-2026-5207 LifterLMS <= 9.2.1 - Authenticated (Custom+) SQL Injection via 'order' Parameter — LifterLMS – WP LMS for eLearning, Online Courses, & Quizzes 6.5 Medium2026-04-11
CVE-2026-6038 code-projects Vehicle Showroom Management System RegisterCustomerFunction.php sql injection — Vehicle Showroom Management System 7.3 High2026-04-10
CVE-2026-6037 code-projects Vehicle Showroom Management System AddVehicleFunction.php sql injection — Vehicle Showroom Management System 7.3 High2026-04-10
CVE-2026-6036 code-projects Vehicle Showroom Management System VehicleDetailsFunction.php sql injection — Vehicle Showroom Management System 7.3 High2026-04-10
CVE-2026-6033 CodeAstro Online Classroom updatedetailsfromstudent.php sql injection — Online Classroom 6.3 Medium2026-04-10
CVE-2026-6031 code-projects Simple IT Discussion Forum add-category-function.php sql injection — Simple IT Discussion Forum 7.3 High2026-04-10
CVE-2026-6030 itsourcecode Construction Management System del1.php sql injection — Construction Management System 6.3 Medium2026-04-10
CVE-2026-6010 CodeAstro Online Classroom takeassessment2.php sql injection — Online Classroom 6.3 Medium2026-04-10
CVE-2026-6007 itsourcecode Construction Management System del.php sql injection — Construction Management System 6.3 Medium2026-04-10
CVE-2026-6006 code-projects Patient Record Management System edit_hpatient.php sql injection — Patient Record Management System 6.3 Medium2026-04-10
CVE-2026-6005 code-projects Patient Record Management System hematology_print.php sql injection — Patient Record Management System 6.3 Medium2026-04-10
CVE-2026-6004 code-projects Simple IT Discussion Forum delete-category.php sql injection — Simple IT Discussion Forum 7.3 High2026-04-10
CVE-2026-5985 code-projects Simple IT Discussion Forum crud.php sql injection — Simple IT Discussion Forum 7.3 High2026-04-09
CVE-2023-54359 WordPress adivaha Travel Plugin 2.3 SQL Injection via pid — WordPress adivaha Travel Plugin 8.2 High2026-04-09

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8827 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.