Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8832

8832 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2026-6006 code-projects Patient Record Management System edit_hpatient.php sql injection — Patient Record Management System 6.3 Medium2026-04-10
CVE-2026-6005 code-projects Patient Record Management System hematology_print.php sql injection — Patient Record Management System 6.3 Medium2026-04-10
CVE-2026-6004 code-projects Simple IT Discussion Forum delete-category.php sql injection — Simple IT Discussion Forum 7.3 High2026-04-10
CVE-2026-5985 code-projects Simple IT Discussion Forum crud.php sql injection — Simple IT Discussion Forum 7.3 High2026-04-09
CVE-2023-54359 WordPress adivaha Travel Plugin 2.3 SQL Injection via pid — WordPress adivaha Travel Plugin 8.2 High2026-04-09
CVE-2026-5961 code-projects Simple IT Discussion Forum topic-details.php sql injection — Simple IT Discussion Forum 7.3 High2026-04-09
CVE-2026-4112 SonicWALL SMA1000 SQL注入漏洞 — SMA1000 8.8AIHighAI2026-04-09
CVE-2026-34185 SQL Injection in Hydrosystem Control System — Control System 8.8AIHighAI2026-04-09
CVE-2026-5840 PHPGurukul News Portal Project check_availability.php sql injection — News Portal Project 4.7 Medium2026-04-09
CVE-2026-5839 PHPGurukul News Portal Project add-subcategory.php sql injection — News Portal Project 4.7 Medium2026-04-09
CVE-2026-5838 PHPGurukul News Portal Project add-subadmins.php sql injection — News Portal Project 4.7 Medium2026-04-09
CVE-2026-5837 PHPGurukul News Portal Project news-details.php sql injection — News Portal Project 7.3 High2026-04-09
CVE-2026-5829 code-projects Simple IT Discussion Forum content.php sql injection — Simple IT Discussion Forum 7.3 High2026-04-09
CVE-2026-5828 code-projects Simple IT Discussion Forum addcomment.php sql injection — Simple IT Discussion Forum 7.3 High2026-04-09
CVE-2026-5827 code-projects Simple IT Discussion Forum question-function.php sql injection — Simple IT Discussion Forum 7.3 High2026-04-09
CVE-2026-5824 code-projects Simple Laundry System userchecklogin.php sql injection — Simple Laundry System 7.3 High2026-04-08
CVE-2026-5823 itsourcecode Construction Management System borrowed_tool_report.php sql injection — Construction Management System 6.3 Medium2026-04-08
CVE-2026-5814 PHPGurukul Online Course Registration check_availability.php sql injection — Online Course Registration 7.3 High2026-04-08
CVE-2026-5813 PHPGurukul Online Course Registration check_availability.php sql injection — Online Course Registration 7.3 High2026-04-08
CVE-2026-5805 code-projects Easy Blog Site contact_us.php sql injection — Easy Blog Site 7.3 High2026-04-08
CVE-2026-33350 LORIS has a SQL injection in MRI feedback popup — Loris 7.5 High2026-04-08
CVE-2026-3396 WCAPF – WooCommerce Ajax Product Filter <= 4.2.3 - Unauthenticated Time-Based SQL Injection — WCAPF – Ajax Product Filter for WooCommerce 7.5 High2026-04-08
CVE-2026-1865 User Registration & Membership <= 5.1.2 - Authenticated (Subscriber+) SQL Injection via membership_ids[] — User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder 6.5 Medium2026-04-08
CVE-2026-33088 Six Apart Movable Type SQL注入漏洞 — Movable Type 9.8AICriticalAI2026-04-08
CVE-2026-39497 WordPress FOX plugin <= 1.4.5 - SQL Injection vulnerability — FOX 9.8AICriticalAI2026-04-08
CVE-2026-39495 WordPress Simply Schedule Appointments plugin <= 1.6.9.27 - SQL Injection vulnerability — Simply Schedule Appointments 9.8AICriticalAI2026-04-08
CVE-2026-39496 WordPress YayMail plugin <= 4.3.3 - SQL Injection vulnerability — YayMail 9.8AICriticalAI2026-04-08
CVE-2026-39487 WordPress Amelia plugin <= 2.1.1 - SQL Injection vulnerability — Amelia 9.8AICriticalAI2026-04-08
CVE-2026-39486 WordPress Download Monitor plugin <= 5.1.8 - SQL Injection vulnerability — Download Monitor 9.8AICriticalAI2026-04-08
CVE-2026-39479 WordPress OttoKit plugin <= 1.1.20 - SQL Injection vulnerability — OttoKit 9.8AICriticalAI2026-04-08

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8832 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.