Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8863

8863 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-1800 Export any WordPress data to XML/CSV < 1.3.5 - Admin+ SQL Injection — Export any WordPress data to XML/CSV 8.8 -2022-06-13
CVE-2022-0827 Bestbooks <= 2.6.3 - Unauthenticated SQLi — Bestbooks 9.8 -2022-06-13
CVE-2022-0786 KiviCare < 2.3.9 - Unauthenticated SQLi — KiviCare – Clinic & Patient Management System (EHR) 9.8 -2022-06-13
CVE-2022-2067 SQL Injection in francoisjacquet/rosariosis — francoisjacquet/rosariosis 9.1 -2022-06-13
CVE-2017-20042 Navetti PricePoint Blind sql injection — PricePoint 6.3 Medium2022-06-13
CVE-2017-20032 PHPList Subscription sql injection — PHPList 6.3 Medium2022-06-10
CVE-2017-20030 PHPList Sending Campain sql injection — PHPList 4.7 Medium2022-06-10
CVE-2017-20029 PHPList Edit Subscription index.php sql injection — PHPList 7.3 High2022-06-10
CVE-2022-29250 SQL injection in GLPI — glpi 8.1 High2022-06-09
CVE-2022-2018 SourceCodester Prison Management System Inmate sql injection — Prison Management System 4.7 Medium2022-06-07
CVE-2022-2017 SourceCodester Prison Management System Visit view_visit.php sql injection — Prison Management System 4.7 Medium2022-06-07
CVE-2022-1692 CP Image Store with Slideshow < 1.0.68 - Unauthenticated SQLi — CP Image Store with Slideshow 9.8 -2022-06-06
CVE-2022-1691 Realty Workstation < 1.0.15 - Agent SQLi — Realty Workstation 6.5 -2022-06-06
CVE-2022-1690 Note Press <= 0.1.10 - Admin+ SQLi via Bulk Actions — Note Press 6.5 -2022-06-06
CVE-2022-1689 Note Press <= 0.1.10 - Admin+ SQLi via Update — Note Press 2.7 -2022-06-06
CVE-2022-1688 Note Press <= 0.1.10 - Admin+ SQLi via id — Note Press 6.5 -2022-06-06
CVE-2022-1687 Logo Slider <= 1.4.8 - Admin+ SQLi — Logo Slider 6.5 -2022-06-06
CVE-2022-1686 Five Minute Webshop <= 1.3.2 - Admin+ SQLi via id — Five Minute Webshop 6.5 -2022-06-06
CVE-2022-1685 Five Minute Webshop <= 1.3.2 - Admin+ SQLi via orderby — Five Minute Webshop 6.5 -2022-06-06
CVE-2022-1684 Cube Slider <= 1.2 - Admin+ SQLi — CUBE SLIDER 7.2 -2022-06-06
CVE-2022-1683 amtyThumb <= 4.2.0 - Subscriber+ SQLi — amtyThumb 8.8 -2022-06-06
CVE-2022-0788 WP Fundraising Donation and Crowdfunding Platform < 1.5.0 - Unauthenticated SQLi — WP Fundraising Donation and Crowdfunding Platform 9.8 -2022-06-06
CVE-2017-20017 The Next Generation of Genealogy Sitebuilding timeline2.php sql injection — The Next Generation of Genealogy Sitebuilding 6.3 Medium2022-06-05
CVE-2020-36543 SialWeb CMS about.php sql injection — CMS 6.3 Medium2022-06-04
CVE-2020-36541 Demokratian genera_select.php sql injection — Demokratian 7.3 High2022-06-03
CVE-2020-36540 Neetai Tech product.php sql injection — Neetai Tech 6.3 Medium2022-06-03
CVE-2020-36539 Lógico y Creativo sql injection — Lógico y Creativo 6.3 Medium2022-06-03
CVE-2020-36538 Eatan CMS sql injection — CMS 6.3 Medium2022-06-03
CVE-2020-36537 Everywhere CMS sql injection — CMS 6.3 Medium2022-06-03
CVE-2020-36536 Brandbugle main.php sql injection — Brandbugle 6.3 Medium2022-06-03

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8863 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.