Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8861

8861 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-58454 WeGIA vulnerable to Blind Time-Based SQL Injection in endpoint 'listar_despachos.php' parameter 'id_memorando' — WeGIA 6.5AIMediumAI2025-09-08
CVE-2025-10110 ChanCMS search sql injection — ChanCMS 6.3 Medium2025-09-08
CVE-2025-10109 Campcodes Online Loan Management System ajax.php sql injection — Online Loan Management System 7.3 High2025-09-08
CVE-2025-58453 WeGIA vulnerable to Blind Time-Based SQL Injection in endpoint 'exibe_anexo.php' parameter 'id_anexo' — WeGIA 6.5AIMediumAI2025-09-08
CVE-2025-10108 Campcodes Online Loan Management System ajax.php sql injection — Online Loan Management System 7.3 High2025-09-08
CVE-2025-58450 pREST has Systemic SQL Injection Vulnerability — prest 9.8AICriticalAI2025-09-08
CVE-2025-10106 yanyutao0402 ChanCMS search sql injection — ChanCMS 6.3 Medium2025-09-08
CVE-2025-10105 yanyutao0402 ChanCMS search sql injection — ChanCMS 6.3 Medium2025-09-08
CVE-2025-10104 code-projects Online Event Judging System review_search.php sql injection — Online Event Judging System 7.3 High2025-09-08
CVE-2025-10103 code-projects Online Event Judging System home.php sql injection — Online Event Judging System 7.3 High2025-09-08
CVE-2025-10102 code-projects Online Event Judging System index.php sql injection — Online Event Judging System 7.3 High2025-09-08
CVE-2025-10100 SourceCodester Simple Forum Discussion System admin_class.php sql injection — Simple Forum Discussion System 7.3 High2025-09-08
CVE-2025-10098 PHPGurukul User Management System edit-user-profile.php sql injection — User Management System 6.3 Medium2025-09-08
CVE-2025-10090 Jinher OA GetTreeDate.aspx sql injection — OA 7.3 High2025-09-08
CVE-2025-10087 SourceCodester Pet Grooming Management Software profit_report.php sql injection — Pet Grooming Management Software 4.7 Medium2025-09-08
CVE-2025-10082 SourceCodester Online Polling System manage-admins.php sql injection — Online Polling System 7.3 High2025-09-08
CVE-2025-10079 PHPGurukul Small CRM get-quote.php sql injection — Small CRM 7.3 High2025-09-08
CVE-2025-10078 SourceCodester Online Polling System candidates.php sql injection — Online Polling System 7.3 High2025-09-08
CVE-2025-10077 SourceCodester Online Polling System registeracc.php sql injection — Online Polling System 7.3 High2025-09-08
CVE-2025-10076 SourceCodester Online Polling System manage-profile.php sql injection — Online Polling System 7.3 High2025-09-08
CVE-2025-10068 itsourcecode Online Discussion Forum add_views.php sql injection — Online Discussion Forum 7.3 High2025-09-07
CVE-2025-10062 itsourcecode Student Information Management System login.php sql injection — Student Information Management System 7.3 High2025-09-06
CVE-2025-10033 itsourcecode Online Discussion Forum admin sql injection — Online Discussion Forum 7.3 High2025-09-06
CVE-2025-10031 Campcodes Grocery Sales and Inventory System ajax.php sql injection — Grocery Sales and Inventory System 7.3 High2025-09-06
CVE-2025-10030 Campcodes Grocery Sales and Inventory System ajax.php sql injection — Grocery Sales and Inventory System 7.3 High2025-09-06
CVE-2025-10046 ELEX WooCommerce Google Shopping (Google Product Feed) <= 1.4.3 - Authenticated (Admin+) SQL Inejction — ELEX WooCommerce Google Shopping (Google Product Feed) 4.9 Medium2025-09-06
CVE-2025-10003 UsersWP – Front-end login form, User Registration, User Profile & Members Directory plugin for WP <= 1.2.44 - Authenticated (Subscriber+) SQL Injection — UsersWP – Front-end login form, User Registration, User Profile & Members Directory plugin for WP 6.5 Medium2025-09-06
CVE-2025-9085 User Registration & Membership <= 4.3.0 - Authenticated (Admin+) SQL Injection — User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder 4.9 Medium2025-09-06
CVE-2025-58439 ERP: Possibility of SQL injection due to missing validation — erpnext 8.1 High2025-09-06
CVE-2025-10025 PHPGurukul Online Course Registration semester.php sql injection — Online Course Registration 7.3 High2025-09-05

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8861 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.