Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8845

8845 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-65024 i-Educar Authenticated Time-based SQL Injection in `agenda_admin_cad.php` — i-educar 7.2 High2025-11-19
CVE-2025-13396 code-projects Courier Management System add-office.php sql injection — Courier Management System 6.3 Medium2025-11-19
CVE-2025-10437 SQLi in Exagate's Webpack Management System — Webpack Management System 9.8 Critical2025-11-19
CVE-2025-13395 codehub666 94list function.php login sql injection — 94list 7.3 High2025-11-19
CVE-2025-12646 Community Events <= 1.5.4 - Unauthenticated SQL Injection — Community Events 7.5 High2025-11-19
CVE-2025-65093 LibreNMS is vulnerable to SQL Injection (Boolean-Based Blind) in hostname parameter in ajax_output.php endpoint — librenms 5.5 Medium2025-11-18
CVE-2025-58692 Fortinet FortiVoice SQL注入漏洞 — FortiVoice 7.7 High2025-11-18
CVE-2025-9977 Improper neutralization of input in Times Software E-PAYROLL — E-Payroll 7.5AIHighAI2025-11-18
CVE-2025-13347 SourceCodester Train Station Ticketing System ajax.php sql injection — Train Station Ticketing System 6.3 Medium2025-11-18
CVE-2025-13346 SourceCodester Train Station Ticketing System ajax.php sql injection — Train Station Ticketing System 6.3 Medium2025-11-18
CVE-2025-13345 SourceCodester Train Station Ticketing System ajax.php sql injection — Train Station Ticketing System 6.3 Medium2025-11-18
CVE-2025-13344 SourceCodester Train Station Ticketing System ajax.php sql injection — Train Station Ticketing System 7.3 High2025-11-18
CVE-2025-41348 Stored Cross-Site Scripting (XSS) in WinPlus by Informática del Este — WinPlus 9.8AICriticalAI2025-11-18
CVE-2025-12411 Premmerce Wholesale Pricing for WooCommerce <= 1.1.10 - Authenticated (Subscriber+) SQL Injection — Premmerce Wholesale Pricing for WooCommerce 7.1 High2025-11-18
CVE-2025-13325 itsourcecode Student Information System enrollment_edit1.php sql injection — Student Information System 6.3 Medium2025-11-18
CVE-2025-13323 code-projects Simple Pizza Ordering System listorder.php sql injection — Simple Pizza Ordering System 7.3 High2025-11-18
CVE-2025-13303 code-projects Courier Management System search-edit.php sql injection — Courier Management System 6.3 Medium2025-11-17
CVE-2025-13302 code-projects Courier Management System add-new-officer.php sql injection — Courier Management System 4.7 Medium2025-11-17
CVE-2025-13301 itsourcecode Web-Based Internet Laboratory Management System controller.php sql injection — Web-Based Internet Laboratory Management System 7.3 High2025-11-17
CVE-2025-13300 itsourcecode Web-Based Internet Laboratory Management System controller.php sql injection — Web-Based Internet Laboratory Management System 7.3 High2025-11-17
CVE-2025-13299 itsourcecode Web-Based Internet Laboratory Management System controller.php sql injection — Web-Based Internet Laboratory Management System 7.3 High2025-11-17
CVE-2025-13298 itsourcecode Web-Based Internet Laboratory Management System controller.php sql injection — Web-Based Internet Laboratory Management System 7.3 High2025-11-17
CVE-2025-13297 itsourcecode Web-Based Internet Laboratory Management System controller.php sql injection — Web-Based Internet Laboratory Management System 7.3 High2025-11-17
CVE-2025-13291 Campcodes Supplier Management System confirm_order.php sql injection — Supplier Management System 7.3 High2025-11-17
CVE-2025-62519 phpMyFAQ has Authenticated SQL Injection in Configuration Update Functionality — phpMyFAQ 7.2 High2025-11-17
CVE-2025-13290 code-projects Simple Food Ordering System saveorder.php sql injection — Simple Food Ordering System 6.3 Medium2025-11-17
CVE-2025-13289 1000projects Design & Development of Student Database Management System SubjectDetails.php sql injection — Design & Development of Student Database Management System 6.3 Medium2025-11-17
CVE-2025-13287 itsourcecode Online Voting System index.php sql injection — Online Voting System 6.3 Medium2025-11-17
CVE-2025-13286 itsourcecode Online Voting System ajax.php sql injection — Online Voting System 6.3 Medium2025-11-17
CVE-2025-13285 itsourcecode Online Voting System login.php sql injection — Online Voting System 7.3 High2025-11-17

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8845 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.