Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8844

8844 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-15078 itsourcecode Student Management System list_report.php sql injection — Student Management System 7.3 High2025-12-25
CVE-2025-15077 itsourcecode Student Management System form137.php sql injection — Student Management System 7.3 High2025-12-25
CVE-2025-15075 itsourcecode Student Management System student_p.php sql injection — Student Management System 7.3 High2025-12-25
CVE-2025-15074 itsourcecode Online Frozen Foods Ordering System customer_details.php sql injection — Online Frozen Foods Ordering System 7.3 High2025-12-25
CVE-2025-15073 itsourcecode Online Frozen Foods Ordering System contact_us.php sql injection — Online Frozen Foods Ordering System 7.3 High2025-12-24
CVE-2025-68914 Riello UPS NetMan 208 SQL注入漏洞 — NetMan 6.5 Medium2025-12-24
CVE-2018-25128 SOCA Access Control System 180612 SQL Injection and Authentication Bypass — SOCA Access Control System 8.2 High2025-12-24
CVE-2025-68590 WordPress Integration for Contact Form 7 HubSpot plugin <= 1.4.2 - SQL Injection vulnerability — Integration for Contact Form 7 HubSpot 7.6 High2025-12-24
CVE-2025-68570 WordPress Captivate Sync plugin <= 3.2.2 - SQL Injection vulnerability — Captivate Sync 7.6 High2025-12-24
CVE-2023-36525 WordPress WPJobBoard plugin <= 5.9.0 - Unauth. Blind SQL Injection (SQLi) vulnerability — WPJobBoard 8.6 High2025-12-24
CVE-2025-68519 WordPress Brands for WooCommerce plugin <= 3.8.6.3 - SQL Injection vulnerability — Brands for WooCommerce 8.5 High2025-12-24
CVE-2025-68496 WordPress User Feedback plugin <= 1.10.0 - SQL Injection vulnerability — User Feedback 7.6 High2025-12-24
CVE-2025-15053 code-projects Student Information System searchresults.php sql injection — Student Information System 7.3 High2025-12-24
CVE-2025-15049 code-projects Online Farm System addProduct.php sql injection — Online Farm System 7.3 High2025-12-23
CVE-2023-53982 PMB 7.4.6 SQL Injection Vulnerability via Unsanitized Storage Parameter — PMB 7.5 High2025-12-23
CVE-2021-47720 Orangescrum 1.8.0 Authenticated SQL Injection via Multiple Parameters — orangescrum 7.1 High2025-12-23
CVE-2025-68550 WordPress WPBulky plugin <= 1.1.13 - SQL Injection vulnerability — WPBulky 7.6 High2025-12-23
CVE-2025-68561 WordPress AutomatorWP plugin <= 5.2.4 - SQL Injection vulnerability — AutomatorWP 7.6 High2025-12-23
CVE-2025-15034 itsourcecode Student Management System record.php sql injection — Student Management System 7.3 High2025-12-23
CVE-2023-53960 SOUND4 IMPACT/FIRST/PULSE/Eco v2.x SQL Injection via Authentication Bypass — Impact/Pulse/First 9.8 Critical2025-12-22
CVE-2023-53975 Atom CMS 2.0 Unauthenticated SQL Injection via Admin Index Page — Atom CMS 7.5 High2025-12-22
CVE-2023-53972 WebTareas 2.4 Unauthenticated SQL Injection via Session Cookie Parameter — WebTareas 7.5 High2025-12-22
CVE-2021-47714 Hasura GraphQL 1.3.3 Local File Read via SQL Injection — Hasura GraphQL 5.5 Medium2025-12-22
CVE-2025-12514 A user with elevated privileges is able to introduce a SQL Injection using the Open-tickets Notification rules configuration parameters — Infra Monitoring - Open-tickets 7.2 High2025-12-22
CVE-2025-15014 loganhong php loganSite Article article_detail.php sql injection — php loganSite 6.3 Medium2025-12-22
CVE-2025-15012 code-projects Refugee Food Management System home.php sql injection — Refugee Food Management System 7.3 High2025-12-22
CVE-2025-15011 code-projects Simple Stock System logout.php sql injection — Simple Stock System 7.3 High2025-12-22
CVE-2025-15004 DedeCMS freelist_main.php sql injection — DedeCMS 6.3 Medium2025-12-22
CVE-2025-15003 SeaCMS admin_video.php sql injection — SeaCMS 4.7 Medium2025-12-21
CVE-2025-15002 SeaCMS mysqli.class.php sql injection — SeaCMS 7.3 High2025-12-21

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8844 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.