Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8861

8861 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-0190 Ad Invalid Click Protector (AICP) < 1.2.6 - Authenticated SQL Injection — Ad Invalid Click Protector (AICP) 8.8 -2022-02-14
CVE-2021-25109 Futurio Extra < 1.6.3 - Authenticated SQL Injection — Futurio Extra 2.7 -2022-02-14
CVE-2022-22540 SAP NetWeaver AS SQL注入漏洞 — SAP NetWeaver AS ABAP (Workplace Server) 7.5 -2022-02-09
CVE-2021-25114 Paid Memberships Pro < 2.6.7 - Unauthenticated Blind SQL Injection — Paid Memberships Pro 9.8 -2022-02-07
CVE-2021-24928 Rearrange Woocommerce Products < 3.0.8 - Subscriber+ SQL Injection — Rearrange Woocommerce Products 7.1 -2022-02-07
CVE-2021-43927 Synology DiskStation Manager SQL注入漏洞 — DiskStation Manager (DSM) 4.7 Medium2022-02-07
CVE-2021-43926 Synology DiskStation Manager SQL注入漏洞 — DiskStation Manager (DSM) 4.7 Medium2022-02-07
CVE-2021-43925 Synology DiskStation Manager SQL注入漏洞 — DiskStation Manager (DSM) 4.7 Medium2022-02-07
CVE-2021-44779 WordPress [GWA] AutoResponder plugin <= 2.3 - Unauthenticated SQL Injection (SQLi) vulnerability — [GWA] AutoResponder (WordPress plugin) 7.3 High2022-02-04
CVE-2021-24762 Perfect Survey < 1.5.2 - Unauthenticated SQL Injection — Perfect Survey 9.8 -2022-02-01
CVE-2022-0362 SQL Injection in star7th/showdoc — star7th/showdoc 8.8 -2022-01-26
CVE-2021-36348 Dell Emc Idrac 注入漏洞 — Integrated Dell Remote Access Controller (iDRAC) 8.1 -2022-01-25
CVE-2022-0332 Moodle SQL注入漏洞 — moodle 9.8 -2022-01-25
CVE-2021-43863 SQL Injection in FileContentProvider (GHSL-2021-1007) — android 7.5 High2022-01-25
CVE-2021-4088 Blind SQL injection in DLP ePO extension — McAfee Data Loss Prevention (DLP) ePO Extension 8.4 High2022-01-24
CVE-2021-25076 WP User Frontend < 3.5.26 - SQL Injection to Reflected Cross-Site Scripting — WP User Frontend – Membership, Profile, Registration & Post Submission Plugin for WordPress 8.8 -2022-01-24
CVE-2021-25045 Asgaros Forum < 1.15.15 - Admin+ SQL Injection via forum_id — Asgaros Forum 7.2 -2022-01-24
CVE-2021-24865 Advanced Custom Fields: Extended < 0.8.8.7 - Admin+ SQL Injection — Advanced Custom Fields: Extended 7.2 -2022-01-24
CVE-2021-24858 WP Cookie User Info < 1.0.9 - Admin+ SQL Injection — Cookie Notification Plugin for WordPress – WP Cookie User Info 7.2 -2022-01-24
CVE-2022-23305 SQL injection in JDBC Appender in Apache Log4j V1 — Apache Log4j 1.x 9.8 -2022-01-18
CVE-2022-0258 SQL Injection in pimcore/pimcore — pimcore/pimcore 8.8 -2022-01-17
CVE-2021-25037 All In One SEO < 4.1.5.3 - Authenticated SQL Injection — All in One SEO – Best WordPress SEO Plugin – Easily Improve SEO Rankings & Increase Traffic 6.5 -2022-01-17
CVE-2022-0224 SQL Injection in dolibarr/dolibarr — dolibarr/dolibarr 8.8 -2022-01-14
CVE-2022-22055 Le-yan Co., Ltd. dental management system - SQL Injection — Dental Management System 9.8 Critical2022-01-14
CVE-2021-37197 Siemens Comos SQL注入漏洞 — COMOS V10.2 8.8 -2022-01-11
CVE-2022-21666 SQL Injection in useredit.php — USOC 7.2 High2022-01-10
CVE-2021-25054 WPcalc <= 2.1 - Authenticated SQL Injection — WPcalc – create any online calculators 7.2 -2022-01-10
CVE-2021-24949 The Plus Addons for Elementor Pro < 5.0.7 - Unauthenticated SQL Injection — The Plus Addons for Elementor - Pro 7.2 -2022-01-10
CVE-2021-24862 RegistrationMagic < 5.0.1.6 - Admin+ SQL Injection — RegistrationMagic – Custom Registration Forms, User Registration and User Login Plugin 7.2 -2022-01-10
CVE-2022-21664 SQL injection in WordPress — wordpress-develop 7.4 High2022-01-06

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8861 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.