Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8861

8861 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-11329 code-projects Online Course Registration manage-students.php sql injection — Online Course Registration 7.3 High2025-10-06
CVE-2025-11319 nahiduddinahammed Hospital-Management-System-Website delete.php sql injection — Hospital-Management-System-Website 6.3 Medium2025-10-06
CVE-2025-11317 Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 findSingConfigPage.do findRolePage sql injection — Data Leakage Prevention System 天锐数据泄露防护系统 7.3 High2025-10-06
CVE-2025-11316 Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 findCategoryPage.do findCategoryPage sql injection — Data Leakage Prevention System 天锐数据泄露防护系统 7.3 High2025-10-06
CVE-2025-11315 Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 findUserPage.do findUserPage sql injection — Data Leakage Prevention System 天锐数据泄露防护系统 7.3 High2025-10-06
CVE-2025-11314 Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 findSingConfigPage.do findRolePage sql injection — Data Leakage Prevention System 天锐数据泄露防护系统 7.3 High2025-10-06
CVE-2025-11313 Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 findRolePage.do findRolePage sql injection — Data Leakage Prevention System 天锐数据泄露防护系统 7.3 High2025-10-06
CVE-2025-11312 Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 findModulePage.do findModulePage sql injection — Data Leakage Prevention System 天锐数据泄露防护系统 7.3 High2025-10-06
CVE-2025-11311 Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 findTenantPage.do findTenantPage sql injection — Data Leakage Prevention System 天锐数据泄露防护系统 7.3 High2025-10-06
CVE-2025-11310 Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 findFileServerPage.do findFileServerPage sql injection — Data Leakage Prevention System 天锐数据泄露防护系统 7.3 High2025-10-05
CVE-2025-11309 Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 findDeptPage.do doFilter sql injection — Data Leakage Prevention System 天锐数据泄露防护系统 7.3 High2025-10-05
CVE-2025-11288 CRMEB GET Parameter product sql injection — CRMEB 6.3 Medium2025-10-05
CVE-2025-10692 OpenSupports 4.11.0 — SQL Injection — OpenSupports 7.1AIHighAI2025-10-03
CVE-2025-54153 Qsync Central — Qsync Central 9.8 -2025-10-03
CVE-2025-53595 Qsync Central — Qsync Central 9.8 -2025-10-03
CVE-2024-56804 Video Station — Video Station 9.8 -2025-10-03
CVE-2025-40636 SQL injection in the mod_vvisit_counter module — mod_vvisit_counter 7.5AIHighAI2025-10-03
CVE-2025-10582 WP Dispatcher <= 1.2.0 - Authenticated (Contributor+) SQL Injection — WP Dispatcher 8.8 High2025-10-03
CVE-2025-9200 Blappsta Mobile App Plugin – Your native, mobile iPhone App and Android App <= 0.8.8.8 - Unauthenticated SQL Injection — Blappsta Mobile App Plugin – Your native, mobile iPhone App and Android App 7.5 High2025-10-03
CVE-2025-9199 Woo superb slideshow transition gallery with random effect <= 9.1 - Authenticated (Contributor+) SQL Injection — Woo superb slideshow transition gallery with random effect 6.5 Medium2025-10-03
CVE-2025-9198 Wp cycle text announcement <= 8.1 - Authenticated (Contributor+) SQL Injection — Wp cycle text announcement 6.5 Medium2025-10-03
CVE-2025-10726 WPRecovery <= 2.0 - Unauthenticated SQL Injection to Arbitrary File Deletion — WPRecovery 9.1 Critical2025-10-03
CVE-2025-0616 SQLi in Teknolojik Center Telecommunication's B2B - Netsis Panel — B2B - Netsis Panel 8.2 High2025-10-03
CVE-2025-61605 WeGIA: SQL Injection (Blind Time-Based) Vulnerability in /pet/profile_pet.php Endpoint — WeGIA 9.8 -2025-10-02
CVE-2025-61603 WeGIA: SQL Injection (Blind Time-Based) Vulnerability in API `descricao` Parameter — WeGIA 9.8 -2025-10-02
CVE-2025-59743 Multiple vulnerabilities in AndSoft's e-TMS — e-TMS 9.8 -2025-10-02
CVE-2025-59742 Multiple vulnerabilities in AndSoft's e-TMS — e-TMS 9.8 -2025-10-02
CVE-2025-11020 Remote Code Execution in MarkAny SafePC Enterprise — SafePC Enterprise 8.8 High2025-10-02
CVE-2025-59681 Django SQL注入漏洞 — Django 7.1 High2025-10-01
CVE-2025-8122 Blind SQL Injection in PAD CMS — PAD CMS 8.8AIHighAI2025-09-30

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8861 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.