Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8861

8861 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-9002 Surbowl dormitory-management-php login.php sql injection — dormitory-management-php 7.3 High2025-08-15
CVE-2025-8993 itsourcecode Online Tour and Travel Management System expense_report.php sql injection — Online Tour and Travel Management System 7.3 High2025-08-15
CVE-2025-8990 code-projects Online Medicine Guide browsemdcn.php sql injection — Online Medicine Guide 7.3 High2025-08-15
CVE-2025-8989 SourceCodester COVID 19 Testing Management System edit-phlebotomist.php sql injection — COVID 19 Testing Management System 7.3 High2025-08-14
CVE-2025-8988 SourceCodester COVID 19 Testing Management System bwdates-report-result.php sql injection — COVID 19 Testing Management System 7.3 High2025-08-14
CVE-2025-8987 SourceCodester COVID 19 Testing Management System test-details.php sql injection — COVID 19 Testing Management System 7.3 High2025-08-14
CVE-2025-8986 SourceCodester COVID 19 Testing Management System search-report-result.php sql injection — COVID 19 Testing Management System 7.3 High2025-08-14
CVE-2025-8985 SourceCodester COVID 19 Testing Management System profile.php sql injection — COVID 19 Testing Management System 7.3 High2025-08-14
CVE-2025-8984 itsourcecode Online Tour and Travel Management System expense_category.php sql injection — Online Tour and Travel Management System 7.3 High2025-08-14
CVE-2025-8983 itsourcecode Online Tour and Travel Management System expense.php sql injection — Online Tour and Travel Management System 7.3 High2025-08-14
CVE-2025-8982 itsourcecode Online Tour and Travel Management System currency.php sql injection — Online Tour and Travel Management System 7.3 High2025-08-14
CVE-2025-8981 itsourcecode Online Tour and Travel Management System payment.php sql injection — Online Tour and Travel Management System 7.3 High2025-08-14
CVE-2025-55708 WordPress Quiz And Survey Master Plugin <= 10.2.4 - SQL Injection Vulnerability — Quiz And Survey Master 8.5 High2025-08-14
CVE-2025-8973 SourceCodester Cashier Queuing System Actions.php sql injection — Cashier Queuing System 7.3 High2025-08-14
CVE-2025-8972 itsourcecode Online Tour and Travel Management System page-login.php sql injection — Online Tour and Travel Management System 7.3 High2025-08-14
CVE-2025-8971 itsourcecode Online Tour and Travel Management System travellers.php sql injection — Online Tour and Travel Management System 7.3 High2025-08-14
CVE-2025-8970 itsourcecode Online Tour and Travel Management System booking.php sql injection — Online Tour and Travel Management System 7.3 High2025-08-14
CVE-2025-8969 itsourcecode Online Tour and Travel Management System approve_user.php sql injection — Online Tour and Travel Management System 7.3 High2025-08-14
CVE-2025-8968 itsourcecode Online Tour and Travel Management System disapprove_user.php sql injection — Online Tour and Travel Management System 7.3 High2025-08-14
CVE-2025-8967 itsourcecode Online Tour and Travel Management System packages.php sql injection — Online Tour and Travel Management System 7.3 High2025-08-14
CVE-2025-8966 itsourcecode Online Tour and Travel Management System tax.php sql injection — Online Tour and Travel Management System 7.3 High2025-08-14
CVE-2025-55674 Apache Superset: Improper SQL authorisation, parse not checking for specific engine functions — Apache Superset 6.5AIMediumAI2025-08-14
CVE-2025-8960 Campcodes Online Flight Booking Management System save_airlines.php sql injection — Online Flight Booking Management System 7.3 High2025-08-14
CVE-2025-54707 WordPress MDTF Plugin <= 1.3.3.7 - SQL Injection Vulnerability — MDTF 9.3 Critical2025-08-14
CVE-2025-54678 WordPress Easy Form Builder Plugin <= 3.8.15 - SQL Injection Vulnerability — Easy Form Builder 9.3 Critical2025-08-14
CVE-2025-54669 WordPress MapSVG Plugin < 8.7.4 - SQL Injection Vulnerability — MapSVG 9.3 Critical2025-08-14
CVE-2025-30998 WordPress WP Links Page plugin <= 4.9.6 - SQL Injection vulnerability — WP Links Page 8.5 High2025-08-14
CVE-2025-39510 WordPress Pinterest Automatic Pin plugin < 4.19.0 - SQL Injection vulnerability — Pinterest Automatic Pin 8.5 High2025-08-14
CVE-2025-49033 WordPress ProfileGrid plugin <= 5.9.5.3 - SQL Injection vulnerability — ProfileGrid 8.5 High2025-08-14
CVE-2025-49059 WordPress CleverReach® WP Plugin <= 1.5.20 - SQL Injection Vulnerability — CleverReach® WP 9.3 Critical2025-08-14

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8861 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.