Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8861

8861 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2013-10033 Kimai 0.9.2 db_restore.php SQL Injection — Kimai 9.8AICriticalAI2025-07-31
CVE-2013-10043 Astium VOIP PBX <= 2.1 SQL Injection File Upload RCE — VoIP PBX 7.2AIHighAI2025-07-31
CVE-2025-8407 code-projects Vehicle Management filter2.php sql injection — Vehicle Management 7.3 High2025-07-31
CVE-2025-8382 Campcodes Online Hotel Reservation System edit_room.php sql injection — Online Hotel Reservation System 6.3 Medium2025-07-31
CVE-2025-8381 Campcodes Online Hotel Reservation System add_reserve.php sql injection — Online Hotel Reservation System 6.3 Medium2025-07-31
CVE-2025-8378 Campcodes Online Hotel Reservation System Login index.php sql injection — Online Hotel Reservation System 7.3 High2025-07-31
CVE-2025-8376 code-projects Vehicle Management updatebal.php sql injection — Vehicle Management 7.3 High2025-07-31
CVE-2025-8375 code-projects Vehicle Management addvehicle.php sql injection — Vehicle Management 7.3 High2025-07-31
CVE-2025-8374 code-projects Vehicle Management addcompany.php sql injection — Vehicle Management 7.3 High2025-07-31
CVE-2025-8373 code-projects Vehicle Management print.php sql injection — Vehicle Management 7.3 High2025-07-31
CVE-2025-8372 code-projects Exam Form Submission update_s7.php sql injection — Exam Form Submission 7.3 High2025-07-31
CVE-2025-8371 code-projects Exam Form Submission update_s5.php sql injection — Exam Form Submission 7.3 High2025-07-31
CVE-2025-8347 Kehua Charging Pile Cloud Platform findAllTask sql injection — Charging Pile Cloud Platform 6.3 Medium2025-07-31
CVE-2025-8345 Shanghai Lingdang Information Technology Lingdang CRM yunzhijiaApi.php delete_user sql injection — Lingdang CRM 6.3 Medium2025-07-31
CVE-2025-8339 code-projects Intern Membership Management System student_login.php sql injection — Intern Membership Management System 7.3 High2025-07-31
CVE-2025-8338 projectworlds Online Admission System adminac.php sql injection — Online Admission System 7.3 High2025-07-30
CVE-2025-8336 Campcodes Online Recruitment Management System ajax.php sql injection — Online Recruitment Management System 7.3 High2025-07-30
CVE-2025-8334 Campcodes Online Recruitment Management System ajax.php sql injection — Online Recruitment Management System 7.3 High2025-07-30
CVE-2025-8333 code-projects Online Farm System categoryvalue.php sql injection — Online Farm System 7.3 High2025-07-30
CVE-2025-8332 code-projects Online Farm System register.php sql injection — Online Farm System 7.3 High2025-07-30
CVE-2025-8331 code-projects Online Farm System forgot_pass.php sql injection — Online Farm System 7.3 High2025-07-30
CVE-2025-8330 code-projects Vehicle Management edit1.php sql injection — Vehicle Management 7.3 High2025-07-30
CVE-2025-8329 code-projects Vehicle Management filter3.php sql injection — Vehicle Management 7.3 High2025-07-30
CVE-2025-8328 code-projects Exam Form Submission register.php sql injection — Exam Form Submission 7.3 High2025-07-30
CVE-2025-8327 code-projects Exam Form Submission delete_s8.php sql injection — Exam Form Submission 7.3 High2025-07-30
CVE-2025-8326 code-projects Exam Form Submission delete_s7.php sql injection — Exam Form Submission 7.3 High2025-07-30
CVE-2025-6348 Smart Slider 3 <= 3.5.1.28 - Authenticated (Administrator+) SQL Injection via `sliderid` Parameter — Smart Slider 3 4.9 Medium2025-07-30
CVE-2025-2928 Genetec Security Center 安全漏洞 — Genetec Security Center 7.2 High2025-07-29
CVE-2025-40682 SQL injection vulnerability in Human Resource Management System — Human Resource Management System 9.8AICriticalAI2025-07-29
CVE-2025-8264 Z-Push 安全漏洞 — z-push/z-push-dev 9.0 Critical2025-07-29

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8861 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.