Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8862

8862 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-8219 Shanghai Lingdang Information Technology Lingdang CRM HTTP POST Request tabdetail_moduleSave_dxkp.php sql injection — Lingdang CRM 6.3 Medium2025-07-27
CVE-2025-8203 Jingmen Zeyou Large File Upload Control index.jsp sql injection — Large File Upload Control 6.3 Medium2025-07-26
CVE-2025-8190 Campcodes Courier Management System print_pdets.php sql injection — Courier Management System 6.3 Medium2025-07-26
CVE-2025-8189 Campcodes Courier Management System edit_user.php sql injection — Courier Management System 6.3 Medium2025-07-26
CVE-2025-8188 Campcodes Courier Management System edit_staff.php sql injection — Courier Management System 6.3 Medium2025-07-26
CVE-2025-8187 Campcodes Courier Management System edit_parcel.php sql injection — Courier Management System 6.3 Medium2025-07-26
CVE-2025-8186 Campcodes Courier Management System edit_branch.php sql injection — Courier Management System 6.3 Medium2025-07-26
CVE-2025-8185 1000 Projects ABC Courier Management System getbyid.php sql injection — ABC Courier Management System 7.3 High2025-07-26
CVE-2025-8179 PHPGurukul Local Services Search Engine Management System changeimage.php sql injection — Local Services Search Engine Management System 7.3 High2025-07-26
CVE-2024-13507 GeoDirectory – WP Business Directory Plugin and Classified Listings Directory <= 2.8.97 - Unauthenticated SQL Injection — GeoDirectory – WP Business Directory Plugin and Classified Listings Directory 7.5 High2025-07-26
CVE-2025-8173 1000 Projects ABC Courier Management System Add_reciver.php sql injection — ABC Courier Management System 7.3 High2025-07-25
CVE-2025-8172 itsourcecode Employee Management System index.php sql injection — Employee Management System 6.3 Medium2025-07-25
CVE-2025-8166 code-projects Church Donation System HTTP POST Request index.php sql injection — Church Donation System 7.3 High2025-07-25
CVE-2025-8165 code-projects Food Review System approve_reservation.php sql injection — Food Review System 6.3 Medium2025-07-25
CVE-2025-8164 code-projects Public Chat Room send_message.php sql injection — Public Chat Room 6.3 Medium2025-07-25
CVE-2025-8163 deerwms deer-wms-2 list sql injection — deer-wms-2 6.3 Medium2025-07-25
CVE-2025-8162 deerwms deer-wms-2 list sql injection — deer-wms-2 6.3 Medium2025-07-25
CVE-2025-8161 deerwms deer-wms-2 export sql injection — deer-wms-2 6.3 Medium2025-07-25
CVE-2025-34136 Commvault CommServe Web Server Unauthenticated SQL Injection — Commvault 9.8 -2025-07-25
CVE-2025-8158 PHPGurukul Login and User Management System yesterday-reg-users.php sql injection — Login and User Management System 6.3 Medium2025-07-25
CVE-2025-8157 PHPGurukul User Registration & Login and User Management lastthirtyays-reg-users.php sql injection — User Registration & Login and User Management 6.3 Medium2025-07-25
CVE-2025-8156 PHPGurukul User Registration & Login and User Management lastsevendays-reg-users.php sql injection — User Registration & Login and User Management 6.3 Medium2025-07-25
CVE-2025-8135 itsourcecode Insurance Management System updateAgent.php sql injection — Insurance Management System 6.3 Medium2025-07-25
CVE-2025-8134 PHPGurukul BP Monitoring Management System bwdates-report-result.php sql injection — BP Monitoring Management System 6.3 Medium2025-07-25
CVE-2025-8127 deerwms deer-wms-2 list sql injection — deer-wms-2 6.3 Medium2025-07-25
CVE-2025-8126 deerwms deer-wms-2 export sql injection — deer-wms-2 6.3 Medium2025-07-25
CVE-2025-8125 deerwms deer-wms-2 allocatedList sql injection — deer-wms-2 6.3 Medium2025-07-25
CVE-2025-8124 deerwms deer-wms-2 unallocatedList sql injection — deer-wms-2 6.3 Medium2025-07-24
CVE-2025-54379 eKuiper API endpoints handling SQL queries with user-controlled table names. — ekuiper 9.8 -2025-07-24
CVE-2025-32429 XWiki Platform vulnerable to SQL injection through getdeleteddocuments.vm template sort parameter — xwiki-platform 9.8 -2025-07-24

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8862 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.