Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8850

8850 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-64293 WordPress 0 Day Analytics plugin <= 4.0.0 - SQL Injection vulnerability — 0 Day Analytics 7.6 High2025-11-12
CVE-2025-11454 Specific Content For Mobile – Customize the mobile version without redirections <= 0.5.5 - Authenticated (Contributor+) SQL Injection — Specific Content For Mobile – Customize the mobile version without redirections 6.5 Medium2025-11-12
CVE-2025-59499 Microsoft SQL Server Elevation of Privilege Vulnerability — Microsoft SQL Server 2016 Service Pack 3 (GDR) 8.8 High2025-11-11
CVE-2025-8324 SQL Injection — ManageEngine Analytics Plus 9.8 Critical2025-11-11
CVE-2025-42889 SQL Injection vulnerability in SAP Starter Solution (PL SAFT) — SAP Starter Solution (PL SAFT) 5.4 Medium2025-11-11
CVE-2025-64519 TorrentPier is Vulnerable to Authenticated SQL Injection through Moderator Control Panel's topic_id parameter — torrentpier 8.8 High2025-11-10
CVE-2025-12939 SourceCodester Interview Management System addCandidate.php sql injection — Interview Management System 6.3 Medium2025-11-10
CVE-2025-12938 projectworlds Online Admission System process_login.php sql injection — Online Admission System 7.3 High2025-11-10
CVE-2025-12409 SQL Injection in Looker Studio — Looker Studio 8.1 -2025-11-10
CVE-2025-12397 SQL Injection in Looker Studio — Looker Studio 8.8 -2025-11-10
CVE-2025-12933 SourceCodester Baby Care System updatewelcome.php sql injection — Baby Care System 6.3 Medium2025-11-10
CVE-2025-12932 SourceCodester Baby Care System admin.php sql injection — Baby Care System 4.7 Medium2025-11-10
CVE-2025-12931 SourceCodester Food Ordering System edit-orders.php sql injection — Food Ordering System 6.3 Medium2025-11-10
CVE-2025-12930 SourceCodester Food Ordering System view-ticket.php sql injection — Food Ordering System 6.3 Medium2025-11-10
CVE-2025-12929 SourceCodester Survey Application System LoginRegistration.php update_user sql injection — Survey Application System 7.3 High2025-11-10
CVE-2025-12928 code-projects Online Job Search Engine login.php sql injection — Online Job Search Engine 7.3 High2025-11-10
CVE-2025-12927 DedeBIZ archives_add.php sql injection — DedeBIZ 4.7 Medium2025-11-10
CVE-2025-12865 e-Excellence|U-Office Force - SQL Injection — U-Office Force 8.8 High2025-11-10
CVE-2025-12864 e-Excellence|U-Office Force - SQL Injection — U-Office Force 8.8 High2025-11-10
CVE-2025-12926 SourceCodester Farm Management System review.php sql injection — Farm Management System 6.3 Medium2025-11-10
CVE-2025-12914 aaPanel BaoTa Backend database sql injection — BaoTa 4.7 Medium2025-11-08
CVE-2025-12913 code-projects Responsive Hotel Site roomdel.php sql injection — Responsive Hotel Site 4.7 Medium2025-11-08
CVE-2025-11980 Quick Featured Images <= 13.7.3 - Authenticated (Editor+) SQL Injection via delete_orphaned — Quick Featured Images 4.9 Medium2025-11-08
CVE-2025-11972 Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI <= 3.40.0 - Authenticated (Editor+) SQL Injection — Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI 4.9 Medium2025-11-08
CVE-2025-11452 Asgaros Forum <= 3.1.0 - Unauthenticated SQL Injection — Asgaros Forum 7.5 High2025-11-08
CVE-2025-64493 SuiteCRM is Vulnerable to Authenticated Blind SQL Injection via GraphQL — SuiteCRM-Core 6.5 Medium2025-11-08
CVE-2025-64492 SuiteCRM is Vulnerable to Authenticated Time Based Blind SQL Injection — SuiteCRM-Core 8.8 High2025-11-08
CVE-2025-64488 SuiteCRM: Authenticated SQL Injection Possible in Reschedule Call Module — SuiteCRM 8.8 -2025-11-07
CVE-2025-12873 Campcodes School File Management update_user.php sql injection — School File Management 4.7 Medium2025-11-07
CVE-2025-12861 DedeBIZ spec_add.php sql injection — DedeBIZ 4.7 Medium2025-11-07

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8850 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.