CWE-89 SQL命令中使用的特殊元素转义处理不恰当(SQL注入) 类弱点 8861 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2021-21917 | Advantech R-SeeNet SQL注入漏洞 — Advantech | 8.8 | - | 2021-12-22 |
| CVE-2021-21915 | Advantech R-SeeNet SQL注入漏洞 — Advantech | 8.8 | - | 2021-12-22 |
| CVE-2021-43851 | Anuko Time Tracker SQL注入漏洞 — timetracker | 8.1 | High | 2021-12-21 |
| CVE-2021-24849 | WordPress SQL注入漏洞 — WCFM Marketplace – Best Multivendor Marketplace for WooCommerce | 9.8 | - | 2021-12-21 |
| CVE-2021-24846 | WordPress 插件 SQL注入漏洞 — Ni WooCommerce Custom Order Status | 8.8 | - | 2021-12-21 |
| CVE-2021-24750 | WordPress SQL注入漏洞 — WP Visitor Statistics (Real Time Traffic) | 8.8 | - | 2021-12-21 |
| CVE-2021-35234 | SolarWinds Orion SQL注入漏洞 — Orion Core | 8.0 | High | 2021-12-20 |
| CVE-2021-3860 | Jfrog JFrog Artifactory SQL注入漏洞 — JFrog Artifactory | 8.8 | High | 2021-12-20 |
| CVE-2021-40850 | Tcman Gim SQL注入漏洞 — GIM | 10.0 | Critical | 2021-12-17 |
| CVE-2021-41262 | Galette SQL注入漏洞 — galette | 8.8 | High | 2021-12-16 |
| CVE-2021-43806 | Tuleap SQL注入漏洞 — tuleap | 8.8 | High | 2021-12-15 |
| CVE-2021-43830 | OpenProject SQL注入漏洞 — openproject | 7.4 | High | 2021-12-14 |
| CVE-2021-43822 | Jackalope Doctrine-DBAL SQL注入漏洞 — jackalope-doctrine-dbal | 8.5 | High | 2021-12-13 |
| CVE-2021-24951 | WordPress和WordPress 插件 SQL注入漏洞 — LearnPress – WordPress LMS Plugin | 7.2 | - | 2021-12-13 |
| CVE-2021-24946 | WordPress SQL注入漏洞 — Modern Events Calendar Lite | 9.8 | - | 2021-12-13 |
| CVE-2021-24863 | WordPress和WordPress 插件 SQL注入漏洞 — WP Block and Stop Bad Bots Crawlers and Spiders and Anti Spam Protection Plugin StopBadBots | 7.2 | - | 2021-12-13 |
| CVE-2021-24861 | WordPress和WordPress 插件 SQL注入漏洞 — Quotes Collection | 7.2 | - | 2021-12-13 |
| CVE-2021-24848 | WordPress SQL注入漏洞 — Mediamatic – Media Library Folders | 8.8 | - | 2021-12-13 |
| CVE-2021-24747 | WordPress SQL注入漏洞 — SEO Booster | 7.2 | - | 2021-12-13 |
| CVE-2021-3817 | WBCE CMS SQL注入漏洞 — wbce/wbce_cms | 9.8 | - | 2021-12-09 |
| CVE-2021-43789 | Prestashop SQL注入漏洞 — PrestaShop | 7.5 | High | 2021-12-07 |
| CVE-2021-42131 | Ivanti Avalanche SQL注入漏洞 — Ivanti Avalanche | 8.8 | - | 2021-12-07 |
| CVE-2021-29114 | Esri Arcgis Server SQL注入漏洞 — ArcGIS Server | 9.8 | - | 2021-12-07 |
| CVE-2021-24943 | WordPress和WordPress 插件 SQL注入漏洞 — Registrations for the Events Calendar – Event Registration Plugin | 9.8 | - | 2021-12-06 |
| CVE-2021-24931 | WordPress SQL注入漏洞 — Secure Copy Content Protection and Content Locking | 9.8 | - | 2021-12-06 |
| CVE-2021-24866 | WordPress和WordPress 插件 SQL注入漏洞 — WP Data Access | 9.8 | - | 2021-12-06 |
| CVE-2020-35012 | WordPress SQL注入漏洞 — Events Manager | 7.2 | - | 2021-12-01 |
| CVE-2021-24915 | WordPress SQL注入漏洞 — Contest Gallery – Photo Contest Plugin for WordPress | 9.1 | - | 2021-11-29 |
| CVE-2021-24889 | WordPress和WordPress 插件 SQL注入漏洞 — Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress | 7.2 | - | 2021-11-29 |
| CVE-2021-24860 | WordPress和WordPress 插件 SQL注入漏洞 — BSK PDF Manager | 7.2 | - | 2021-11-29 |
CWE-89(SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) 是常见的弱点类别,本平台收录该类弱点关联的 8861 条 CVE 漏洞。