CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8853

8853 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2025-11589	CodeAstro Gym Management System user-payment.php sql injection — Gym Management System	6.3	Medium	2025-10-10
CVE-2025-11588	CodeAstro Gym Management System index.php sql injection — Gym Management System	6.3	Medium	2025-10-10
CVE-2025-11585	code-projects Project Monitoring System useredit.php sql injection — Project Monitoring System	7.3	High	2025-10-10
CVE-2025-11584	code-projects Online Job Search Engine searchjob.php sql injection — Online Job Search Engine	7.3	High	2025-10-10
CVE-2025-11583	code-projects Online Job Search Engine postjob.php sql injection — Online Job Search Engine	7.3	High	2025-10-10
CVE-2025-11582	code-projects Online Job Search Engine registration.php sql injection — Online Job Search Engine	7.3	High	2025-10-10
CVE-2025-11558	code-projects E-Commerce Website user_index_search.php sql injection — E-Commerce Website	7.3	High	2025-10-09
CVE-2025-11557	projectworlds Gate Pass Management System add-pass.php sql injection — Gate Pass Management System	7.3	High	2025-10-09
CVE-2025-11556	code-projects Simple Leave Manager user.php sql injection — Simple Leave Manager	7.3	High	2025-10-09
CVE-2025-11555	Campcodes Online Learning Management System calendar_of_events.php sql injection — Online Learning Management System	7.3	High	2025-10-09
CVE-2025-11553	code-projects Courier Management System add-courier.php sql injection — Courier Management System	6.3	Medium	2025-10-09
CVE-2025-11552	code-projects Online Complaint Site category.php sql injection — Online Complaint Site	6.3	Medium	2025-10-09
CVE-2025-11551	code-projects Student Result Manager Database.java sql injection — Student Result Manager	6.3	Medium	2025-10-09
CVE-2025-62228	Apache Flink CDC, Apache Flink CDC, Apache Flink CDC, Apache Flink CDC, Apache Flink CDC: SQL injection via maliciously crafted identifiers — Apache Flink CDC	8.8^AI	High^AI	2025-10-09
CVE-2025-10862	Popup builder with Gamification, Multi-Step Popups, Page-Level Targeting, and WooCommerce Triggers <= 2.1.3 - Unauthenticated SQL Injection via 'id' — Popup builder with Gamification, Multi-Step Popups, Page-Level Targeting, and WooCommerce Triggers	7.5	High	2025-10-09
CVE-2025-11530	code-projects Online Complaint Site state.php sql injection — Online Complaint Site	6.3	Medium	2025-10-09
CVE-2025-10586	Community Events <= 1.5.1 - Unauthenticated SQL Injection — Community Events	9.8	Critical	2025-10-09
CVE-2025-11516	code-projects Online Complaint Site complaint-details.php sql injection — Online Complaint Site	6.3	Medium	2025-10-09
CVE-2025-11515	code-projects Online Complaint Site register-complaint.php sql injection — Online Complaint Site	6.3	Medium	2025-10-09
CVE-2025-11514	code-projects Online Complaint Site index.php sql injection — Online Complaint Site	6.3	Medium	2025-10-09
CVE-2025-11513	code-projects E-Commerce Website supplier_update.php sql injection — E-Commerce Website	7.3	High	2025-10-08
CVE-2025-11511	code-projects E-Commerce Website supplier_add.php sql injection — E-Commerce Website	6.3	Medium	2025-10-08
CVE-2025-11509	code-projects E-Commerce Website product_add.php sql injection — E-Commerce Website	6.3	Medium	2025-10-08
CVE-2025-11507	PHPGurukul Beauty Parlour Management System search-invoices.php sql injection — Beauty Parlour Management System	7.3	High	2025-10-08
CVE-2025-11506	PHPGurukul Beauty Parlour Management System search-appointment.php sql injection — Beauty Parlour Management System	7.3	High	2025-10-08
CVE-2025-11505	PHPGurukul Beauty Parlour Management System new-appointment.php sql injection — Beauty Parlour Management System	7.3	High	2025-10-08
CVE-2025-11503	PHPGurukul Beauty Parlour Management System manage-services.php sql injection — Beauty Parlour Management System	7.3	High	2025-10-08
CVE-2025-11487	SourceCodester Farm Management System uploadProduct.php sql injection — Farm Management System	6.3	Medium	2025-10-08
CVE-2025-11486	SourceCodester Farm Management System buyNow.php sql injection — Farm Management System	6.3	Medium	2025-10-08
CVE-2025-11481	varunsardana004 Blood-Bank-And-Donation-Management-System donate_blood.php sql injection — Blood-Bank-And-Donation-Management-System	6.3	Medium	2025-10-08

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8853 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8853