Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8851

8851 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-64459 Potential SQL injection via _connector keyword argument in QuerySet and Q objects — Django 9.8 -2025-11-05
CVE-2025-12197 The Events Calendar 6.15.1.1 - 6.15.9 - Unauthenticated SQL Injection via s — The Events Calendar 7.5 High2025-11-05
CVE-2025-32786 GLPI Inventory Plugin is Vulnerable to Unauthenticated SQL Injection — glpi-inventory-plugin 7.5 High2025-11-04
CVE-2025-12463 Unauthenticated SQL Injection in Guetebruck G-Cam Series Cameras — G-Cam 9.8 Critical2025-11-03
CVE-2025-12503 Digiwin|EasyFlow .NET and EasyFlow AiNet — EasyFlow .NET 6.5 Medium2025-11-03
CVE-2025-12617 itsourcecode Billing System login_crud.php sql injection — Billing System 7.3 High2025-11-03
CVE-2025-12614 SourceCodester Best House Rental Management System admin_class.php delete_payment sql injection — Best House Rental Management System 4.7 Medium2025-11-03
CVE-2025-12612 Campcodes School Fees Payment Management System ajax.php sql injection — School Fees Payment Management System 6.3 Medium2025-11-03
CVE-2025-12610 CodeAstro Gym Management System view-progress-report.php sql injection — Gym Management System 4.7 Medium2025-11-03
CVE-2025-12609 CodeAstro Gym Management System update-progress.php sql injection — Gym Management System 4.7 Medium2025-11-03
CVE-2025-12608 itsourcecode Online Loan Management System manage_user.php sql injection — Online Loan Management System 7.3 High2025-11-03
CVE-2025-12607 itsourcecode Online Loan Management System manage_payment.php sql injection — Online Loan Management System 7.3 High2025-11-03
CVE-2025-12606 itsourcecode Online Loan Management System manage_borrower.php sql injection — Online Loan Management System 7.3 High2025-11-02
CVE-2025-12605 itsourcecode Online Loan Management System manage_loan.php sql injection — Online Loan Management System 7.3 High2025-11-02
CVE-2025-12604 itsourcecode Online Loan Management System load_fields.php sql injection — Online Loan Management System 7.3 High2025-11-02
CVE-2025-12598 SourceCodester Best House Rental Management System admin_class.php save_tenant sql injection — Best House Rental Management System 4.7 Medium2025-11-02
CVE-2025-12597 SourceCodester Best House Rental Management System admin_class.php save_category sql injection — Best House Rental Management System 4.7 Medium2025-11-02
CVE-2025-12594 code-projects Simple Online Hotel Reservation System add_account.php sql injection — Simple Online Hotel Reservation System 4.7 Medium2025-11-02
CVE-2025-11740 wpForo Forum <= 2.4.9 - Authenticated (Susbscriber+) SQL Injection — wpForo Forum 6.5 Medium2025-11-01
CVE-2025-64366 WordPress MasterStudy LMS plugin <= 3.6.27 - SQL Injection vulnerability — MasterStudy LMS 7.6 High2025-10-31
CVE-2025-6520 SQLi in Abis Technology's BAPSIS — BAPSIS 9.8 Critical2025-10-31
CVE-2020-36869 Nagios XI < 5.7.5 SQL injection via SNMP Trap Interface Edit Page — XI 7.2AIHighAI2025-10-30
CVE-2016-15050 Nagios XI < 5.2.4 SQL Injection in Notification Search — XI 8.1AIHighAI2025-10-30
CVE-2020-36859 Nagios XI < 5.7.4 Core Config Manager (CCM) SQL Injection via Object Edit Pages — XI 8.8AIHighAI2025-10-30
CVE-2021-47693 Nagios XI < 5.8.5 Core Config Manager (CCM) SQL Injection via Improper Escaping in Search Text — XI 8.8AIHighAI2025-10-30
CVE-2020-36857 Nagios XI < 5.6.14 Authenticated SQL Injection via SNMP Trap Interface Page — XI 7.2AIHighAI2025-10-30
CVE-2012-10063 Nagios XI < 2012R1.3 Authenticated SQL Injection in Legacy CCM — XI 8.1AIHighAI2025-10-30
CVE-2025-64104 LangGraph SQLite Checkpoint Filter Key SQL Injection POC for SqliteStore — langgraph 7.3 High2025-10-29
CVE-2015-10147 Easy Testimonial Slider and Form <= 1.0.2 - Authenticated (Admin+) SQL injection — Easy Testimonial Slider and Form 4.9 Medium2025-10-29
CVE-2015-10146 Thumbnail Slider With Lightbox <= 1.0.4 - Authenticated (Admin+) SQL Injection — Thumbnail Slider With Lightbox 4.9 Medium2025-10-29

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8851 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.