Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8851

8851 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-4665 WordPress plugin Contact Form CFDB7 安全漏洞 — CFDB7 9.6 Critical2025-10-28
CVE-2025-62367 Taiga Blind SQL Injection Time Based — taiga-back 4.8 Medium2025-10-28
CVE-2025-34304 IPFire < v2.29 SQL Injection via OpenVPN Connection Logs — IPFire 6.5AIMediumAI2025-10-28
CVE-2025-11735 HUSKY – Products Filter Professional for WooCommerce <= 1.3.7.1 - Unauthenticated SQL Injection via `phrase` Parameter — HUSKY – Products Filter Professional for WooCommerce 7.5 High2025-10-28
CVE-2025-12342 Serdar Bayram Ghost Hot Spot Login Auth.php sql injection — Ghost Hot Spot 7.3 High2025-10-28
CVE-2025-12339 Campcodes Retro Basketball Shoes Online Store admin_football.php sql injection — Retro Basketball Shoes Online Store 7.3 High2025-10-28
CVE-2025-12338 Campcodes Retro Basketball Shoes Online Store admin_product.ph sql injection — Retro Basketball Shoes Online Store 7.3 High2025-10-28
CVE-2025-12337 Campcodes Retro Basketball Shoes Online Store admin_feature.php sql injection — Retro Basketball Shoes Online Store 7.3 High2025-10-28
CVE-2025-12336 Campcodes Retro Basketball Shoes Online Store admin_index.php sql injection — Retro Basketball Shoes Online Store 7.3 High2025-10-28
CVE-2025-12329 shawon100 RUET OJ details.php sql injection — RUET OJ 6.3 Medium2025-10-27
CVE-2025-12328 shawon100 RUET OJ contestproblem.php sql injection — RUET OJ 6.3 Medium2025-10-27
CVE-2025-12327 shawon100 RUET OJ description.php sql injection — RUET OJ 6.3 Medium2025-10-27
CVE-2025-12326 shawon100 RUET OJ POST Request process.php sql injection — RUET OJ 7.3 High2025-10-27
CVE-2025-12325 SourceCodester Best Salon Management System forgot-password.php sql injection — Best Salon Management System 7.3 High2025-10-27
CVE-2025-12316 code-projects Courier Management System edit-courier.php sql injection — Courier Management System 7.3 High2025-10-27
CVE-2025-12315 code-projects Food Ordering System menu.php sql injection — Food Ordering System 4.7 Medium2025-10-27
CVE-2025-12314 code-projects Food Ordering System deleteitem.php sql injection — Food Ordering System 4.7 Medium2025-10-27
CVE-2025-12309 code-projects Nero Social Networking Site friendprofile.php sql injection — Nero Social Networking Site 7.3 High2025-10-27
CVE-2025-12308 code-projects Nero Social Networking Site deletemessage.php sql injection — Nero Social Networking Site 7.3 High2025-10-27
CVE-2025-12307 code-projects Nero Social Networking Site addfriend.php sql injection — Nero Social Networking Site 7.3 High2025-10-27
CVE-2025-12306 code-projects Nero Social Networking Site acceptoffres.php sql injection — Nero Social Networking Site 7.3 High2025-10-27
CVE-2025-12294 SourceCodester Point of Sales delete_category.php sql injection — Point of Sales 4.7 Medium2025-10-27
CVE-2025-12293 SourceCodester Point of Sales category.php sql injection — Point of Sales 7.3 High2025-10-27
CVE-2025-12292 SourceCodester Point of Sales index.php sql injection — Point of Sales 7.3 High2025-10-27
CVE-2025-12287 Bdtask Wholesale Inventory Control and Inventory Management System edit_profile sql injection — Wholesale Inventory Control and Inventory Management System 4.7 Medium2025-10-27
CVE-2025-12277 Abdullah-Hasan-Sajjad Online-School studentLogin.php sql injection — Online-School 7.3 High2025-10-27
CVE-2025-41009 SQL injection on the virtual campus platform of Diseño de Recursos Educativos — virtual campus platform 9.8AICriticalAI2025-10-27
CVE-2025-12263 code-projects Online Event Judging System edit_judge.php sql injection — Online Event Judging System 6.3 Medium2025-10-27
CVE-2025-12262 code-projects Online Event Judging System edit_criteria.php sql injection — Online Event Judging System 6.3 Medium2025-10-27
CVE-2025-12261 CodeAstro Gym Management System remove-announcement.php sql injection — Gym Management System 6.3 Medium2025-10-27

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8851 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.