Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8861

8861 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-9155 itsourcecode Online Tour and Travel Management System forget_password.php sql injection — Online Tour and Travel Management System 7.3 High2025-08-19
CVE-2025-9154 itsourcecode Online Tour and Travel Management System page-login.php sql injection — Online Tour and Travel Management System 7.3 High2025-08-19
CVE-2025-9150 Surbowl dormitory-management-php violation_add.php sql injection — dormitory-management-php 7.3 High2025-08-19
CVE-2025-9148 CodePhiliaX Chat2DB JDBC Connection DataSourceController.java sql injection — Chat2DB 6.3 Medium2025-08-19
CVE-2025-9140 Shanghai Lingdang Information Technology Lingdang CRM tabdetail_moduleSave.php sql injection — Lingdang CRM 6.3 Medium2025-08-19
CVE-2025-7670 JS Archive List <= 6.1.5 - Unauthenticated SQL Injection via build_sql_where Function — JS Archive List 7.5 High2025-08-19
CVE-2024-12612 School Management System for Wordpress <= 93.2.0 - Unauthenticated SQL Injection — School Management System for Wordpress 7.5 High2025-08-16
CVE-2025-52618 HCL BigFix SaaS Authentication Service is affected by a SQL injection vulnerability — BigFix SaaS Remediate 4.3 Medium2025-08-15
CVE-2025-49897 WordPress Vertical scroll slideshow gallery v2 plugin <= 9.1 - SQL Injection vulnerability — Vertical scroll slideshow gallery v2 8.8 High2025-08-15
CVE-2025-9053 projectworlds Travel Management System updatesubcategory.php sql injection — Travel Management System 7.3 High2025-08-15
CVE-2025-9052 projectworlds Travel Management System updatepackage.php sql injection — Travel Management System 7.3 High2025-08-15
CVE-2025-1929 SQLi in RiskTurk's Treasury Management Software — Reel Sektör Hazine ve Risk Yönetimi Yazılımı 7.2 High2025-08-15
CVE-2025-9051 projectworlds Travel Management System updatecategory.php sql injection — Travel Management System 7.3 High2025-08-15
CVE-2025-54475 Extension - joomsky.com - SQL injection in JS jobs component version 1.3.2 - 1.4.4 for Joomla — JS Jobs component for Joomla 8.8AIHighAI2025-08-15
CVE-2025-54474 Extension - dj-extensions.com - SQLi vulnerability in DJ-Classifieds component 3.9.2-3.10.1 for Joomla — DJ-Classifieds component for Joomla 7.2AIHighAI2025-08-15
CVE-2025-9050 projectworlds Travel Management System addcategory.php sql injection — Travel Management System 7.3 High2025-08-15
CVE-2025-9047 projectworlds Visitor Management System visitor_out.php sql injection — Visitor Management System 7.3 High2025-08-15
CVE-2025-9028 code-projects Online Medicine Guide adphar.php sql injection — Online Medicine Guide 7.3 High2025-08-15
CVE-2025-9027 code-projects Online Medicine Guide addelivery.php sql injection — Online Medicine Guide 7.3 High2025-08-15
CVE-2025-9025 code-projects Simple Cafe Ordering System portal.php sql injection — Simple Cafe Ordering System 6.3 Medium2025-08-15
CVE-2025-9024 PHPGurukul Beauty Parlour Management System book-appointment.php sql injection — Beauty Parlour Management System 7.3 High2025-08-15
CVE-2025-7662 Gestion de tarifs <= 1.4 - Authenticated (Contributor+) SQL Injection — Gestion de tarifs 6.5 Medium2025-08-15
CVE-2025-9022 SourceCodester Online Bank Management System statements.php sql injection — Online Bank Management System 7.3 High2025-08-15
CVE-2025-9021 SourceCodester Online Bank Management System transfer.php sql injection — Online Bank Management System 7.3 High2025-08-15
CVE-2025-9013 PHPGurukul Online Shopping Portal Project password-recovery.php sql injection — Online Shopping Portal Project 7.3 High2025-08-15
CVE-2025-9012 PHPGurukul Online Shopping Portal Project bill-ship-addresses.php sql injection — Online Shopping Portal Project 7.3 High2025-08-15
CVE-2025-9011 PHPGurukul Online Shopping Portal Project signup.php sql injection — Online Shopping Portal Project 7.3 High2025-08-15
CVE-2025-9010 itsourcecode Online Tour and Travel Management System booking_report.php sql injection — Online Tour and Travel Management System 7.3 High2025-08-15
CVE-2025-9009 itsourcecode Online Tour and Travel Management System email_setup.php sql injection — Online Tour and Travel Management System 7.3 High2025-08-15
CVE-2025-9008 itsourcecode Online Tour and Travel Management System sms_setting.php sql injection — Online Tour and Travel Management System 7.3 High2025-08-15

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8861 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.