Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8862

8862 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-7860 code-projects Church Donation System login_admin.php sql injection — Church Donation System 7.3 High2025-07-20
CVE-2025-7859 code-projects Church Donation System update_password_admin.php sql injection — Church Donation System 7.3 High2025-07-20
CVE-2025-7838 Campcodes Online Movie Theater Seat Reservation System manage_seat.php sql injection — Online Movie Theater Seat Reservation System 7.3 High2025-07-19
CVE-2025-7833 code-projects Church Donation System giving.php sql injection — Church Donation System 7.3 High2025-07-19
CVE-2025-7832 code-projects Church Donation System offering.php sql injection — Church Donation System 7.3 High2025-07-19
CVE-2025-7831 code-projects Church Donation System Tithes.php sql injection — Church Donation System 7.3 High2025-07-19
CVE-2025-7830 code-projects Church Donation System reg.php sql injection — Church Donation System 7.3 High2025-07-19
CVE-2025-7829 code-projects Church Donation System login.php sql injection — Church Donation System 7.3 High2025-07-19
CVE-2025-52924 One Identity OneLogin SQL注入漏洞 — OneLogin 4.0 Medium2025-07-19
CVE-2025-7814 code-projects Food Ordering Review System signup_function.php sql injection — Food Ordering Review System 7.3 High2025-07-18
CVE-2025-7801 BossSoft CRM HNDCBas_customPrmSearchDtl.jsp sql injection — CRM 7.3 High2025-07-18
CVE-2025-7798 Beijing Shenzhou Shihan Technology Multimedia Integrated Business Display System companyManage sql injection — Multimedia Integrated Business Display System 6.3 Medium2025-07-18
CVE-2025-54079 WeGIA vulnerable to SQL Injection (Blind Time-Based) in endpoint 'Profile_Atendido.php' parameter 'idatendido' — WeGIA 6.5 -2025-07-18
CVE-2025-49484 Extension - joomsky.com - SQL injection in JS jobs component version 1.1.5 - 1.4.1 for Joomla — JS Jobs component for Joomla 8.8 -2025-07-18
CVE-2025-49485 Extension - balbooa.com - SQL injection in Balbooa Forms component version 1.0.0 - 2.3.1.1 for Joomla — Balbooa Forms component for Joomla 7.2 -2025-07-18
CVE-2025-26855 Extension - joomcar.net - SQL injection in Articles Calendar 1.0.0 - 1.0.1.0007 for Joomla — Articles Calendar extension for Joomla 9.8 -2025-07-18
CVE-2025-26854 Extension - joomcar.net - SQL injection in Articles Good Search 1.0.0 - 1.2.4.0011 for Joomla — Articles Good Search extension for Joomla 9.8 -2025-07-18
CVE-2025-6717 B1.lt for WooCommerce <= 2.2.56 - Authenticated (Subscriber+) SQL Injection — Site.pro for WooCommerce 6.5 Medium2025-07-18
CVE-2025-7638 Forminator Forms – Contact Form, Payment Form & Custom Form Builder <= 1.45.0 - Authenticated (Administrator+) SQL Injection via `order_by` Parameter — Forminator Forms – Contact Form, Payment Form & Custom Form Builder 4.9 Medium2025-07-18
CVE-2025-7765 code-projects Online Appointment Booking System addmanagerclinic.php sql injection — Online Appointment Booking System 7.3 High2025-07-17
CVE-2025-7764 code-projects Online Appointment Booking System deletedoctorclinic.php sql injection — Online Appointment Booking System 7.3 High2025-07-17
CVE-2025-7757 PHPGurukul Land Record System edit-property.php sql injection — Land Record System 7.3 High2025-07-17
CVE-2025-7754 code-projects Patient Record Management System xray_form.php sql injection — Patient Record Management System 6.3 Medium2025-07-17
CVE-2025-7753 code-projects Online Appointment Booking System adddoctor.php sql injection — Online Appointment Booking System 7.3 High2025-07-17
CVE-2025-7752 code-projects Online Appointment Booking System deletedoctor.php sql injection — Online Appointment Booking System 7.3 High2025-07-17
CVE-2025-6230 Lenovo Vantage 安全漏洞 — Vantage 5.3 Medium2025-07-17
CVE-2025-7751 code-projects Online Appointment Booking System addclinic.php sql injection — Online Appointment Booking System 7.3 High2025-07-17
CVE-2025-7750 code-projects Online Appointment Booking System adddoctorclinic.php sql injection — Online Appointment Booking System 7.3 High2025-07-17
CVE-2025-7749 code-projects Online Appointment Booking System getmanagerregion.php sql injection — Online Appointment Booking System 7.3 High2025-07-17
CVE-2025-25257 Fortinet FortiWeb SQL注入漏洞 — FortiWeb 9.6 Critical2025-07-17

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8862 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.