Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8863

8863 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2020-36535 MINMAX newsDia.php sql injection — MINMAX 6.3 Medium2022-06-03
CVE-2020-36530 SevOne Network Management System Alert Summary sql injection — Network Management System 6.3 Medium2022-06-03
CVE-2022-24848 SQL Injection in DHIS2's in OrgUnit program association — dhis2-core 8.8 High2022-06-01
CVE-2021-26634 Maxboard multiple vulnerabilities — Maxboard 9.8 Critical2022-06-01
CVE-2021-26633 Maxboard SQL injection and LFI vulnerability — MaxBoard 7.5 High2022-06-01
CVE-2022-1556 StaffList < 3.1.5 - Admin+ SQLi — StaffList 9.8 -2022-05-30
CVE-2022-1883 SQL Injection in camptocamp/terraboard — camptocamp/terraboard 8.8 -2022-05-25
CVE-2013-10003 Telecommunication Software SAMwin Contact Center Suite Database SAMwinLIBVB.dll getCurrentDBVersion sql injection — SAMwin Contact Center Suite 6.5 Medium2022-05-24
CVE-2022-1839 Home Clean Services Management System login.php sql injection — Home Clean Services Management System 6.3 Medium2022-05-24
CVE-2022-1838 Home Clean Services Management System login.php sql injection — Home Clean Services Management System 4.7 Medium2022-05-24
CVE-2022-1014 WP Contacts Manager <= 2.2.4 - Unauthenticated SQLi — WP Contacts Manager 9.8 -2022-05-23
CVE-2022-0781 Nirweb support < 2.8.2 - Unauthenticated SQLi — Nirweb support 9.8 -2022-05-23
CVE-2022-30599 Moodle SQL注入漏洞 — moodle 8.8 -2022-05-18
CVE-2022-1361 Cambium Networks cnMaestro SQL Injection — cnMaestro 7.4 High2022-05-17
CVE-2022-1358 Cambium Networks cnMaestro SQL Injection — cnMaestro 5.9 Medium2022-05-17
CVE-2022-24391 Authenticated SQL Injection Vulnerability in Fidelis Network and Deception — Fidelis Network 8.8 High2022-05-17
CVE-2022-1182 Visual Slide Box Builder <= 3.2.9 - Subscriber+ SQLi — Visual Slide Box Builder 8.8 -2022-05-16
CVE-2022-0867 ARPrice Lite < 3.6.1 - Unauthenticated SQLi — Pricing Table Plugin 9.8 -2022-05-16
CVE-2022-24831 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in OpenClinica — OpenClinica 8.3 High2022-05-14
CVE-2022-1505 RSVPMaker <= 9.2.6 - Unauthenticated SQL Injection — RSVPMaker 9.8 Critical2022-05-10
CVE-2022-1453 RSVPMaker <= 9.2.5 - Unauthenticated SQL Injection — RSVPMaker 9.8 Critical2022-05-10
CVE-2022-1013 Personal Dictionary < 1.3.4 - Unauthenticated SQLi — Personal Dictionary 9.8 -2022-05-09
CVE-2022-0948 Order Listener for WooCommerce < 3.2.2 - Unauthenticated SQLi — Order Listener for WooCommerce – Play Sounds Instantly on New Orders 9.8 -2022-05-09
CVE-2022-0836 SEMA API < 4.02 - Unauthenticated SQLi — SEMA API 9.8 -2022-05-09
CVE-2022-0826 WP Video Gallery <= 1.7.1 - Unauthenticated SQLi — WP Video Gallery 9.8 -2022-05-09
CVE-2022-0817 BadgeOS <= 3.7.0 - Unauthenticated SQLi — BadgeOS 9.8 -2022-05-09
CVE-2022-0814 Ubigeo de Peru < 3.6.4 - Unauthenticated SQLi — Ubigeo de Perú para Woocommerce y WordPress 9.8 -2022-05-09
CVE-2022-0592 MapSVG < 6.2.20 - Unauthenticated SQLi — MapSVG 9.8 -2022-05-09
CVE-2022-1378 Delta Electronics DIAEnergie SQL注入漏洞 — DIAEnergie 9.8 Critical2022-05-02
CVE-2022-1377 Delta Electronics DIAEnergie SQL注入漏洞 — DIAEnergie 9.8 Critical2022-05-02

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8863 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.