CWE-89 SQL命令中使用的特殊元素转义处理不恰当(SQL注入) 类弱点 8883 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2024-2876 | WordPress Plugin email-subscribers SQL注入漏洞 — Email Subscribers & Newsletters – Email Marketing, Post Notifications & Newsletter Plugin for WordPress | 9.8 | Critical | 2024-05-02 |
| CVE-2024-1797 | WordPress plugin WP ULike 安全漏洞 — WP ULike – Like & Dislike Buttons for Engagement and Feedback | 8.8 | High | 2024-05-02 |
| CVE-2024-1173 | WordPress plugin WP ERP 安全漏洞 — ERP: Complete HR, Accounting & CRM Suite with WooCommerce CRM Support | 7.2 | High | 2024-05-02 |
| CVE-2024-2661 | WordPress plugin Barcode Scanner 安全漏洞 — Barcode Scanner (+Mobile App) – Inventory manager, Order fulfillment system, POS (Point of Sale) | 8.8 | High | 2024-05-02 |
| CVE-2024-2831 | WordPress plugin Calendar 安全漏洞 — Calendar | 8.8 | High | 2024-05-02 |
| CVE-2024-33911 | WordPress plugin School Management Pro SQL注入漏洞 — School Management Pro | 7.6 | High | 2024-05-02 |
| CVE-2024-4309 | HubBank SQL注入漏洞 — HubBank | 8.1 | High | 2024-04-29 |
| CVE-2024-4307 | HubBank SQL注入漏洞 — HubBank | 8.1 | High | 2024-04-29 |
| CVE-2024-4308 | HubBank 安全漏洞 — HubBank | 8.1 | High | 2024-04-29 |
| CVE-2024-33544 | WordPress plugin WZone SQL注入漏洞 — WZone | 9.3 | Critical | 2024-04-29 |
| CVE-2024-33546 | WordPress plugin WZone SQL注入漏洞 — WZone | 9.6 | Critical | 2024-04-29 |
| CVE-2024-33551 | WordPress plugin XStore Core SQL注入漏洞 — XStore Core | 9.3 | Critical | 2024-04-29 |
| CVE-2024-33559 | WordPress plugin XStore Core SQL注入漏洞 — XStore | 9.3 | Critical | 2024-04-29 |
| CVE-2024-4257 | BlueNet Technology Clinical Browsing System SQL注入漏洞 — Clinical Browsing System | 6.3 | Medium | 2024-04-27 |
| CVE-2024-3342 | WordPress plugin Timetable and Event Schedule by MotoPress 安全漏洞 — Timetable and Event Schedule by MotoPress | 9.9 | Critical | 2024-04-27 |
| CVE-2024-32872 | Umbraco 安全漏洞 — Umbraco.Workflow.Issues | 5.5 | Medium | 2024-04-24 |
| CVE-2024-32706 | WordPress plugin ARForms SQL注入漏洞 — ARForms | 8.5 | High | 2024-04-24 |
| CVE-2024-32709 | WordPress plugin WP-Recall SQL注入漏洞 — WP-Recall | 9.3 | Critical | 2024-04-24 |
| CVE-2024-32710 | WordPress plugin WP-Recall 安全漏洞 — WP-Recall | 8.5 | High | 2024-04-24 |
| CVE-2024-4093 | Simple Subscription Website SQL注入漏洞 — Simple Subscription Website | 6.3 | Medium | 2024-04-24 |
| CVE-2024-4071 | Kashipara Online Furniture Shopping Ecommerce Website SQL注入漏洞 — Online Furniture Shopping Ecommerce Website | 6.3 | Medium | 2024-04-23 |
| CVE-2024-4070 | Kashipara Online Furniture Shopping Ecommerce Website SQL注入漏洞 — Online Furniture Shopping Ecommerce Website | 6.3 | Medium | 2024-04-23 |
| CVE-2024-4069 | Online Furniture Shopping Ecommerce Website SQL注入漏洞 — Online Furniture Shopping Ecommerce Website | 6.3 | Medium | 2024-04-23 |
| CVE-2024-3293 | WordPress plugin rtMedia for WordPress, BuddyPress and bbPress 安全漏洞 — rtMedia for WordPress, BuddyPress and bbPress | 8.8 | High | 2024-04-23 |
| CVE-2024-32480 | LibreNMS 安全漏洞 — librenms | 7.2 | High | 2024-04-22 |
| CVE-2024-32461 | LibreNMS 安全漏洞 — librenms | 7.1 | High | 2024-04-22 |
| CVE-2024-32551 | WordPress Plugin SP Project & Document Manager SQL注入漏洞 — SP Project & Document Manager | 7.6 | High | 2024-04-18 |
| CVE-2024-32602 | WordPress Plugin WooCommerce Multilingual & Multicurrency with WPML SQL注入漏洞 — WooCommerce Multilingual & Multicurrency | 7.6 | High | 2024-04-18 |
| CVE-2024-29001 | SolarWinds Platform SQL注入漏洞 — SolarWinds Platform | 7.5 | High | 2024-04-18 |
| CVE-2022-47151 | 编号已被CVE保留 — JS Help Desk – Best Help Desk & Support Plugin | 8.6 | High | 2024-04-17 |
CWE-89(SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) 是常见的弱点类别,本平台收录该类弱点关联的 8883 条 CVE 漏洞。