Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8853

8853 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-11663 Campcodes Online Beauty Parlor Management System manage-services.php sql injection — Online Beauty Parlor Management System 4.7 Medium2025-10-13
CVE-2025-11662 SourceCodester Best Salon Management System booking.php sql injection — Best Salon Management System 7.3 High2025-10-13
CVE-2025-11654 yousaf530 Inferno Online Clothing Store log.php sql injection — Inferno Online Clothing Store 7.3 High2025-10-13
CVE-2025-11629 RainyGao DocSys getUserList.do getUserList sql injection — DocSys 6.3 Medium2025-10-12
CVE-2025-11628 jimit105 Project-Online-Shopping-Website Product Inventory delete.php sql injection — Project-Online-Shopping-Website 4.7 Medium2025-10-12
CVE-2025-11615 SourceCodester Best Salon Management System add_invoice.php sql injection — Best Salon Management System 7.3 High2025-10-11
CVE-2025-11614 SourceCodester Best Salon Management System edit-appointment.php sql injection — Best Salon Management System 7.3 High2025-10-11
CVE-2025-11613 code-projects Simple Food Ordering System addcategory.php sql injection — Simple Food Ordering System 6.3 Medium2025-10-11
CVE-2025-11612 code-projects Simple Food Ordering System addproduct.php sql injection — Simple Food Ordering System 6.3 Medium2025-10-11
CVE-2025-11611 SourceCodester Simple Inventory System user.php sql injection — Simple Inventory System 6.3 Medium2025-10-11
CVE-2025-11610 SourceCodester Simple Inventory System brand.php sql injection — Simple Inventory System 6.3 Medium2025-10-11
CVE-2025-11608 code-projects E-Banking System POST Parameter register.php sql injection — E-Banking System 7.3 High2025-10-11
CVE-2025-11606 iPynch Social Network Website Search sql injection — Social Network Website 6.3 Medium2025-10-11
CVE-2025-11605 code-projects Client Details System update-profile.php sql injection — Client Details System 6.3 Medium2025-10-11
CVE-2025-11604 projectworlds Online Ordering Food System all-orders.php sql injection — Online Ordering Food System 7.3 High2025-10-11
CVE-2025-11603 code-projects Simple Food Ordering System editproduct.php sql injection — Simple Food Ordering System 6.3 Medium2025-10-11
CVE-2025-11601 SourceCodester Online Student Result System login.php sql injection — Online Student Result System 7.3 High2025-10-11
CVE-2025-11600 code-projects Simple Food Ordering System editcategory.php sql injection — Simple Food Ordering System 6.3 Medium2025-10-11
CVE-2025-11599 Campcodes Online Apartment Visitor Management System forgot-password.php sql injection — Online Apartment Visitor Management System 7.3 High2025-10-11
CVE-2025-11597 code-projects E-Commerce Website product_add_qty.php sql injection — E-Commerce Website 6.3 Medium2025-10-11
CVE-2025-11596 code-projects E-Commerce Website delete_order_details.php sql injection — E-Commerce Website 7.3 High2025-10-11
CVE-2025-11595 Campcodes Online Apartment Visitor Management System admin-profile.php sql injection — Online Apartment Visitor Management System 4.7 Medium2025-10-11
CVE-2025-9947 Custom 404 Pro <= 3.12.0 - Authenticated (Administrator+) SQL Injection via `path` Parameter — Custom 404 Pro 4.9 Medium2025-10-11
CVE-2025-10175 WP Links Page <= 4.9.6 - Authenticated (Subscriber+) SQL Injection — WP Links Page 6.5 Medium2025-10-11
CVE-2025-10048 My Auctions Allegro Plugin <= 3.6.31 - Authenticated (Admin+) SQL Injection — My auctions allegro 4.9 Medium2025-10-11
CVE-2025-10185 NEX-Forms – Ultimate Forms Plugin for WordPress <= 9.1.6 - Authenticated (Admin+) SQL Injection — NEX-Forms – Ultimate Forms Plugin for WordPress 4.9 Medium2025-10-11
CVE-2025-11593 CodeAstro Gym Management System delete-equipment.php sql injection — Gym Management System 6.3 Medium2025-10-11
CVE-2025-11592 CodeAstro Gym Management System edit-equipmentform.php sql injection — Gym Management System 6.3 Medium2025-10-11
CVE-2025-11591 CodeAstro Gym Management System delete-member.php sql injection — Gym Management System 6.3 Medium2025-10-11
CVE-2025-11590 CodeAstro Gym Management System equipment-entry.php sql injection — Gym Management System 6.3 Medium2025-10-11

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8853 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.