Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8876

8876 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-1857 PHPGurukul Nipah Virus Testing Management System check_availability.php sql injection — Nipah Virus Testing Management System 7.3 High2025-03-03
CVE-2025-1856 Codezips Gym Management System gen_invoice.php sql injection — Gym Management System 7.3 High2025-03-03
CVE-2025-1855 PHPGurukul Online Shopping Portal product-details.php sql injection — Online Shopping Portal 6.3 Medium2025-03-03
CVE-2025-1854 Codezips Gym Management System del_member.php sql injection — Gym Management System 6.3 Medium2025-03-03
CVE-2025-1850 Codezips College Management System university.php sql injection — College Management System 7.3 High2025-03-03
CVE-2025-1844 ESAFENET CDG backupLogDetail.jsp sql injection — CDG 6.3 Medium2025-03-03
CVE-2025-1843 Mini-Tmall ProductMapper.java select sql injection — Mini-Tmall 6.3 Medium2025-03-03
CVE-2025-1841 ESAFENET CDG ClientSortLog.jsp sql injection — CDG 7.3 High2025-03-03
CVE-2025-1840 ESAFENET CDG updateorg.jsp sql injection — CDG 7.3 High2025-03-02
CVE-2025-1832 zj1983 zz ZroleAction.java getUserList sql injection — zz 6.3 Medium2025-03-02
CVE-2025-1831 zj1983 zz ZorgAction.java GetDBUser sql injection — zz 6.3 Medium2025-03-02
CVE-2025-1821 zj1983 zz ZorgAction.java getUserOrgForUserId sql injection — zz 6.3 Medium2025-03-02
CVE-2025-1820 zj1983 zz ZworkflowAction.java getOaWid sql injection — zz 6.3 Medium2025-03-02
CVE-2025-1812 zj1983 zz SuperZ.java GetUserOrg sql injection — zz 6.3 Medium2025-03-02
CVE-2025-1811 AT Software Solutions ATSVD Login Endpoint login.aspx sql injection — ATSVD 7.3 High2025-03-02
CVE-2025-1809 Pixsoft Sol Login Endpoint servlet sql injection — Sol 7.3 High2025-03-02
CVE-2025-1808 Pixsoft E-Saphira Login Endpoint servlet sql injection — E-Saphira 7.3 High2025-03-02
CVE-2025-1797 Hunan Zhonghe Baiyi Information Technology Baiyiyun Asset Management and Operations System anyUserBoundHouse.php sql injection — Baiyiyun Asset Management and Operations System 6.3 Medium2025-03-01
CVE-2024-13750 Multilevel Referral Affiliate Plugin for WooCommerce <= 2.28 - Authenticated (Subscriber+) SQL Injection — Multilevel Referral Plugin for WooCommerce 6.5 Medium2025-03-01
CVE-2025-1572 KiviCare – Clinic & Patient Management System (EHR) <= 3.6.7 - Authenticated (Doctor+) SQL Injection via 'u_id' Parameter — KiviCare – Clinic & Patient Management System (EHR) 6.5 Medium2025-02-28
CVE-2024-13148 SQLi in Yukseloglu Filter's B2B Login Platform — B2B Login Platform 9.8 Critical2025-02-27
CVE-2025-1751 SQL Injection CIGES — CIGES 9.8 Critical2025-02-27
CVE-2025-1726 [#BUG-000172669 ArcGIS Monitor has a security vulnerability] — ArcGIS Monitor 4.3 Medium2025-02-26
CVE-2025-22211 Extension - webdesigner-profi.de - SQL injection in JoomShopping component version 1.0.0 - 5.5.5 for Joomla — JoomShopping component for Joomla 7.2 -2025-02-25
CVE-2025-27135 RAGFlow SQL Injection vulnerability — ragflow 9.8 -2025-02-25
CVE-2025-26974 WordPress WP Multi Store Locator plugin <= 2.5.1 - SQL Injection vulnerability — WP Multistore Locator 9.3 Critical2025-02-25
CVE-2025-26971 WordPress Poll Maker <= 5.6.5 - SQL Injection vulnerability — Poll Maker 7.6 High2025-02-25
CVE-2025-26946 WordPress WP Yelp Review Slider Plugin <= 8.1 - SQL Injection vulnerability — WP Yelp Review Slider 7.6 High2025-02-25
CVE-2025-26943 WordPress Easy Quotes plugin <= 1.2.2 - SQL Injection vulnerability — Easy Quotes 9.3 Critical2025-02-25
CVE-2025-26915 WordPress Wishlist Plugin <= 1.0.41 - SQL Injection vulnerability — Wishlist 8.5 High2025-02-25

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8876 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.