Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8861

8861 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2021-24511 Create WooCommerce Product Feeds For 40+ Merchants < 3.3.1.0 - Authenticated SQL Injection — Product Feed on WooCommerce for Google, Awin, Shareasale, Bing, and More 7.2 -2021-09-20
CVE-2021-24404 WP-Board <= 1.1 (beta) - Unauthenticated SQL Injection — WP-Board 7.2 -2021-09-20
CVE-2021-24403 WordPress Page Contact <= 1.0 - Authenticated (editor+) SQL Injection — WordPress Page Contact 7.2 -2021-09-20
CVE-2021-24402 WP iCommerce <= 1.1.1 - Authenticated (contributor+) SQL Injection — WP iCommerce – the first interactive ecommerce for wordpress 7.2 -2021-09-20
CVE-2021-24401 WP Domain Redirect <= 1.0 - Authenticated SQL Injection — WP Domain Redirect 7.2 -2021-09-20
CVE-2021-24400 Display users <= 2.0.0 - Authenticated SQL Injection — Display Users 7.2 -2021-09-20
CVE-2021-24399 The Sorter <= 1.0 - Authenticated SQL Injection — The Sorter 7.2 -2021-09-20
CVE-2021-24398 Responsive 3D Slider <= 1.2 - Authenticated SQL Injection — RESPONSIVE 3D SLIDER 7.2 -2021-09-20
CVE-2021-24397 MicroCopy <= 1.1.0 - Authenticated SQL Injection — MicroCopy 7.2 -2021-09-20
CVE-2021-24396 GSEOR <= 1.3 - Authenticated SQL Injection — GSEOR – WordPress SEO Plugin 7.2 -2021-09-20
CVE-2021-33701 SAP ERP SQL注入漏洞 — DMIS Mobile Plug-In 7.2 -2021-09-15
CVE-2021-23040 F5 BIG-IP APM和F5 BIG-IP SQL注入漏洞 — BIG-IP AFM 8.8 -2021-09-14
CVE-2021-24728 Paid Member Subscriptions < 2.4.2 - Authenticated SQL Injection — Membership & Content Restriction – Paid Member Subscriptions 8.8 -2021-09-13
CVE-2021-24727 Block and Stop Bad Bots < 6.60 - Authenticated SQL Injections — WP Block and Stop Bad Bots Crawlers and Spiders and Anti Spam Protection Plugin StopBadBots 8.8 -2021-09-13
CVE-2021-24726 WP Simple Booking Calendar <= 2.0.6 (before 07/12/2021) - Authenticated SQL Injection — WP Simple Booking Calendar 7.2 -2021-09-13
CVE-2021-38324 SP Rental Manager <= 1.5.3 Unauthenticated SQL Injection — SP Rental Manager 8.2 High2021-09-09
CVE-2021-24395 Embed Youtube Video <= 1.0 - Authenticated SQL Injection — Embed Youtube Video 7.2 -2021-09-06
CVE-2021-24393 Comment Highlighter <= 0.13 - Authenticated SQL Injection — Comment Highlighter 7.2 -2021-09-06
CVE-2021-24394 Easy Testimonial Manager <= 1.2.0 - Authenticated SQL Injection — Easy Testimonial Manager 7.2 -2021-09-06
CVE-2021-24392 WordPress Membership SwiftCloud.io <= 1.0 - Authenticated SQL Injection — WordPress Membership SwiftCloud.io 7.2 -2021-09-06
CVE-2021-24391 Cashtomer <= 1.0.0 - Authenticated SQL Injection — Cashtomer 7.2 -2021-09-06
CVE-2021-24390 Alipay <= 3.7.2 - Authenticated SQL Injection — WordPress支付宝Alipay|财付通Tenpay|贝宝PayPal集成插件 7.2 -2021-09-06
CVE-2021-24303 JiangQie Official Website Mini Program < 1.1.1 - Authenticated SQL Injection — JiangQie Official Website Mini Program 7.2 -2021-09-06
CVE-2021-38390 Delta Electronics DIAEnergie SQL注入漏洞 — Delta Electronics DIAEnergie 9.8 -2021-08-30
CVE-2021-32983 Delta Electronics DIAEnergie SQL注入漏洞 — Delta Electronics DIAEnergie 9.8 -2021-08-30
CVE-2021-38393 Delta Electronics DIAEnergie SQL注入漏洞 — Delta Electronics DIAEnergie 9.8 -2021-08-30
CVE-2021-38391 Delta Electronics DIAEnergie SQL注入漏洞 — Delta Electronics DIAEnergie 9.8 -2021-08-30
CVE-2021-24580 Side Menu Lite < 2.2.6 - Authenticated SQL Injection — Side Menu Lite - add sticky fixed buttons 7.2 -2021-08-30
CVE-2021-24557 M-vSlider <= 2.1.3 - Authenticated (admin+) SQL Injection — M-vSlider 7.2 -2021-08-23
CVE-2021-24554 Paytm - Donation Plugin <= 1.3.2 - Authenticated (admin+) SQL Injection — Paytm – Donation Plugin 7.2 -2021-08-23

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8861 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.