Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8861

8861 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-39496 WordPress WooBeWoo Product Filter Pro plugin < 2.9.6 - SQL Injection vulnerability — WooBeWoo Product Filter Pro 9.3 Critical2025-08-28
CVE-2025-8977 Simple Download Monitor <= 3.9.33 - Simple Download Monitor <= 3.9.33 – Authenticated (Contributor+) SQL Injection via order parameter in Log Export functionality — Simple Download Monitor 6.5 Medium2025-08-28
CVE-2024-13979 St. Joe ERP System SingleRowQueryConverter SQL Injection — St. Joe ERP System ("圣乔ERP系统") 9.4AICriticalAI2025-08-27
CVE-2025-34162 Bian Que Feijiu Intelligent Emergency and Quality Control System SQL Injection via GetLyfsByParams — Bian Que Feijiu Intelligent Emergency and Quality Control System 9.8AICriticalAI2025-08-27
CVE-2025-9532 Portabilis i-Educar view sql injection — i-Educar 6.3 Medium2025-08-27
CVE-2025-9531 Portabilis i-Educar Agenda agenda.php sql injection — i-Educar 6.3 Medium2025-08-27
CVE-2025-30061 SQL injection in utils/Reporter/OpenReportWindow.pl via the UserID parameter — CGM CLININET 9.8AICriticalAI2025-08-27
CVE-2025-30060 SQL injection in ReturnUserUnitsXML.pl via the UserID parameter — CGM CLININET 9.8AICriticalAI2025-08-27
CVE-2025-30059 Authenticated SQL injection in PrepareCDExportJSON.pl — CGM CLININET 9.8AICriticalAI2025-08-27
CVE-2025-30058 SQL injection in getPatientIdentifier function of PatientService.pl — CGM CLININET 9.8AICriticalAI2025-08-27
CVE-2025-9511 itsourcecode Apartment Management System addvisitor.php sql injection — Apartment Management System 7.3 High2025-08-27
CVE-2025-9510 itsourcecode Apartment Management System addbranch.php sql injection — Apartment Management System 7.3 High2025-08-27
CVE-2025-9509 itsourcecode Apartment Management System fair_info_all.php sql injection — Apartment Management System 7.3 High2025-08-27
CVE-2025-9508 itsourcecode Apartment Management System rented_info.php sql injection — Apartment Management System 7.3 High2025-08-27
CVE-2025-9507 itsourcecode Apartment Management System visitor_info.php sql injection — Apartment Management System 7.3 High2025-08-27
CVE-2025-9506 Campcodes Online Loan Management System ajax.php sql injection — Online Loan Management System 7.3 High2025-08-27
CVE-2025-9505 Campcodes Online Loan Management System ajax.php sql injection — Online Loan Management System 7.3 High2025-08-27
CVE-2025-9504 Campcodes Online Loan Management System ajax.php sql injection — Online Loan Management System 7.3 High2025-08-27
CVE-2025-9503 Campcodes Online Loan Management System ajax.php sql injection — Online Loan Management System 7.3 High2025-08-27
CVE-2025-9502 Campcodes Online Loan Management System ajax.php sql injection — Online Loan Management System 7.3 High2025-08-27
CVE-2025-9492 Campcodes Online Water Billing System addclient1.php sql injection — Online Water Billing System 7.3 High2025-08-26
CVE-2025-9473 SourceCodester Online Bank Management System feedback.php sql injection — Online Bank Management System 7.3 High2025-08-26
CVE-2025-9472 itsourcecode Apartment Management System add_owner_utility.php sql injection — Apartment Management System 7.3 High2025-08-26
CVE-2025-9471 itsourcecode Apartment Management System add_maintenance_cost.php sql injection — Apartment Management System 7.3 High2025-08-26
CVE-2025-9470 itsourcecode Apartment Management System add_m_committee.php sql injection — Apartment Management System 7.3 High2025-08-26
CVE-2025-9469 itsourcecode Apartment Management System add_fund.php sql injection — Apartment Management System 7.3 High2025-08-26
CVE-2025-9468 itsourcecode Apartment Management System add_bill.php sql injection — Apartment Management System 7.3 High2025-08-26
CVE-2025-9172 Vibes <= 2.2.0 - Unauthenticated SQL Injection via `resource` Parameter — Vibes 7.5 High2025-08-26
CVE-2025-9444 1000projects Online Project Report Submission and Evaluation System delete_group_student.php sql injection — Online Project Report Submission and Evaluation System 7.3 High2025-08-26
CVE-2025-9426 itsourcecode Online Tour and Travel Management System package.php sql injection — Online Tour and Travel Management System 7.3 High2025-08-25

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8861 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.