Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8863

8863 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-52831 WordPress Video List Manager plugin <= 1.7 - SQL Injection Vulnerability — Video List Manager 9.3 Critical2025-07-04
CVE-2025-52832 WordPress NGG Smart Image Search plugin <= 3.4.1 - SQL Injection Vulnerability — NGG Smart Image Search 9.3 Critical2025-07-04
CVE-2025-52833 WordPress LMS theme <= 9.2 - SQL Injection Vulnerability — LMS 9.3 Critical2025-07-04
CVE-2025-30979 WordPress Pixelating image slideshow gallery plugin <= 8.0 - SQL Injection Vulnerability — Pixelating image slideshow gallery 8.5 High2025-07-04
CVE-2025-30969 WordPress iFrame Images Gallery plugin <= 9.0 - SQL Injection Vulnerability — iFrame Images Gallery 8.5 High2025-07-04
CVE-2025-30947 WordPress Cool fade popup plugin <= 10.1 - SQL Injection Vulnerability — Cool fade popup 8.5 High2025-07-04
CVE-2025-28969 WordPress Gallery Widget plugin <= 1.2.1 - SQL Injection Vulnerability — Gallery Widget 8.5 High2025-07-04
CVE-2025-28967 WordPress Contact Us page - Contact people LITE plugin <= 3.7.4 - SQL Injection Vulnerability — Contact Us page - Contact people LITE 8.5 High2025-07-04
CVE-2025-6782 GoZen Forms <= 1.1.5 - Unauthenticated SQL Injection via dirGZActiveForm() — GoZen Forms 7.5 High2025-07-04
CVE-2025-6783 GoZen Forms <= 1.1.5 - Unauthenticated SQL Injection via emdedSc() — GoZen Forms 7.5 High2025-07-04
CVE-2025-6739 WPQuiz <= 0.4.2 - Authenticated (Contributor+) SQL Injection — WPQuiz 6.5 Medium2025-07-04
CVE-2025-1708 CVE-2025-1708 — Endress+Hauser MEAC300-FNADE4 8.6 High2025-07-03
CVE-2025-5339 Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager <= 4.89 - Unauthenticated Time-Based SQL Injection via ‘bsa_pro_id' — Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager 7.5 High2025-07-02
CVE-2025-6437 Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager <= 4.89 - Unauthenticated SQL Injection via oid — Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager 7.5 High2025-07-02
CVE-2025-4381 Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager <= 4.89 - Unauthenticated SQL Injection — Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager 7.5 High2025-07-02
CVE-2025-6963 Campcodes Employee Management System myprofile.php sql injection — Employee Management System 7.3 High2025-07-01
CVE-2025-6962 Campcodes Employee Management System myprofileup.php sql injection — Employee Management System 7.3 High2025-07-01
CVE-2025-6961 Campcodes Employee Management System mark.php sql injection — Employee Management System 7.3 High2025-07-01
CVE-2025-6960 Campcodes Employee Management System empproject.php sql injection — Employee Management System 7.3 High2025-07-01
CVE-2025-6959 Campcodes Employee Management System eloginwel.php sql injection — Employee Management System 7.3 High2025-07-01
CVE-2025-34059 Dahua Smart Cloud Gateway Registration Management Platform SQL Injection — Smart Cloud Gateway Registration Management Platform 9.1AICriticalAI2025-07-01
CVE-2025-6958 Campcodes Employee Management System edit.php sql injection — Employee Management System 7.3 High2025-07-01
CVE-2025-6957 Campcodes Employee Management System eprocess.php sql injection — Employee Management System 7.3 High2025-07-01
CVE-2025-6956 Campcodes Employee Management System changepassemp.php sql injection — Employee Management System 7.3 High2025-07-01
CVE-2025-6955 Campcodes Employee Management System aprocess.php sql injection — Employee Management System 7.3 High2025-07-01
CVE-2025-6954 Campcodes Employee Management System applyleave.php sql injection — Employee Management System 7.3 High2025-07-01
CVE-2025-6938 code-projects Simple Pizza Ordering System editcus.php sql injection — Simple Pizza Ordering System 7.3 High2025-07-01
CVE-2025-6937 code-projects Simple Pizza Ordering System large.php sql injection — Simple Pizza Ordering System 7.3 High2025-07-01
CVE-2025-6936 code-projects Simple Pizza Ordering System addpro.php sql injection — Simple Pizza Ordering System 7.3 High2025-07-01
CVE-2025-6935 Campcodes Sales and Inventory System payment_add.php sql injection — Sales and Inventory System 7.3 High2025-06-30

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8863 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.