Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8861

8861 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-9665 code-projects Simple Grading System Admin Panel edit_student.php sql injection — Simple Grading System 6.3 Medium2025-08-29
CVE-2025-29894 Qsync Central — Qsync Central 9.8 -2025-08-29
CVE-2025-29893 Qsync Central — Qsync Central 9.8 -2025-08-29
CVE-2025-9664 code-projects Simple Grading System Admin Panel add_student_grade.php sql injection — Simple Grading System 6.3 Medium2025-08-29
CVE-2025-9663 code-projects Simple Grading System Admin Panel edit_account.php sql injection — Simple Grading System 6.3 Medium2025-08-29
CVE-2025-9662 code-projects Simple Grading System Admin Panel login.php sql injection — Simple Grading System 7.3 High2025-08-29
CVE-2025-9660 SourceCodester Bakeshop Online Ordering System passwordrecover.php sql injection — Bakeshop Online Ordering System 7.3 High2025-08-29
CVE-2025-9651 shafhasan chatbox chat.php sql injection — chatbox 6.3 Medium2025-08-29
CVE-2025-9645 itsourcecode Apartment Management System r_all_info.php sql injection — Apartment Management System 7.3 High2025-08-29
CVE-2025-9644 itsourcecode Apartment Management System bill_setup.php sql injection — Apartment Management System 7.3 High2025-08-29
CVE-2025-9643 itsourcecode Apartment Management System utility_bill_setup.php sql injection — Apartment Management System 7.3 High2025-08-29
CVE-2025-9441 iATS Online Forms <= 1.2 - Authenticated (Contributor+) SQL Injection via order Parameter — iATS Online Forms 6.5 Medium2025-08-29
CVE-2025-8858 Changing|Clinic Image System - SQL Injection — Clinic Image System 7.5 High2025-08-29
CVE-2025-9610 code-projects Online Event Judging System create_account.php sql injection — Online Event Judging System 7.3 High2025-08-29
CVE-2025-9608 Portabilis i-Educar Formula de Cálculo de Média view sql injection — i-Educar 6.3 Medium2025-08-29
CVE-2025-9607 Portabilis i-Educar Tabelas de Arredondamento view sql injection — i-Educar 6.3 Medium2025-08-29
CVE-2025-9606 Portabilis i-Educar agenda_preferencias.php sql injection — i-Educar 6.3 Medium2025-08-29
CVE-2025-9601 itsourcecode Apartment Management System employee_salary_setup.php sql injection — Apartment Management System 7.3 High2025-08-29
CVE-2025-9600 itsourcecode Apartment Management System member_type_setup.php sql injection — Apartment Management System 7.3 High2025-08-29
CVE-2025-9599 itsourcecode Apartment Management System month_setup.php sql injection — Apartment Management System 7.3 High2025-08-29
CVE-2025-9598 itsourcecode Apartment Management System year_setup.php sql injection — Apartment Management System 7.3 High2025-08-29
CVE-2025-9597 itsourcecode Apartment Management System rented_all_info.php sql injection — Apartment Management System 7.3 High2025-08-29
CVE-2025-9596 itsourcecode Sports Management System login.php sql injection — Sports Management System 7.3 High2025-08-28
CVE-2025-9594 itsourcecode Apartment Management System complain_info.php sql injection — Apartment Management System 7.3 High2025-08-28
CVE-2025-9593 itsourcecode Apartment Management System unit_status_info.php sql injection — Apartment Management System 7.3 High2025-08-28
CVE-2025-9592 itsourcecode Apartment Management System bill_info.php sql injection — Apartment Management System 7.3 High2025-08-28
CVE-2025-57819 FreePBX Affected by Authentication Bypass Leading to SQL Injection and RCE — endpoint 9.8AICriticalAI2025-08-28
CVE-2025-54720 WordPress Nest Addons Plugin <= 1.6.3 - SQL Injection Vulnerability — Nest Addons 9.3 Critical2025-08-28
CVE-2025-49404 WordPress Listeo-Core Plugin < 2.0.7 - SQL Injection Vulnerability — Listeo Core 8.5 High2025-08-28
CVE-2025-49402 WordPress Exertio Framework Plugin <= 1.3.3 - SQL Injection Vulnerability — Exertio Framework 8.5 High2025-08-28

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8861 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.