Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8859

8859 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2021-24451 Export Users With Meta < 0.6.5 - Authenticated SQL Injection — Export Users With Meta 7.2 -2021-07-06
CVE-2021-35049 Command Injection Vulnerability in Fidelis Network and Deception — Fidelis Network 9.9 Critical2021-06-25
CVE-2021-35048 Unauthenticated SQL Injection Vulnerability in Fidelis Network and Deception — Fidelis Network 9.8 Critical2021-06-25
CVE-2021-32704 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in dhis2-core — dhis2-core 8.5 High2021-06-24
CVE-2021-24361 GeoDirectory Location Manager < 2.1.0.10 - Multiple Unauthenticated SQL Injections — Location Manager 9.8 -2021-06-21
CVE-2021-24360 Yes/No Chart < 1.0.12 - Authenticated (contributor+) Blind SQL Injection — Yes/No Chart 8.1 -2021-06-14
CVE-2021-24341 Xllentech English Islamic Calendar < 2.6.8 - Authenticated SQL Injection — Xllentech English Islamic Calendar 8.8 -2021-06-14
CVE-2021-24345 Sendit WP Newsletter <= 2.5.1 - Authenticated (admin+) SQL Injection — Sendit WP Newsletter 7.2 -2021-06-14
CVE-2021-24348 Side Menu < 3.1.5 - Authenticated (admin+) SQL Injection — Side Menu – add fixed side buttons 7.2 -2021-06-14
CVE-2021-32932 Advantech Iview SQL注入漏洞 — iView 7.5 -2021-06-11
CVE-2021-23230 Gallagher Command Centre Server SQL注入漏洞 — Command Centre 9.9 Critical2021-06-11
CVE-2021-29099 There is a SQL injection vulnerability in ArcGIS Server — ArcGIS Server 5.3 -2021-06-07
CVE-2021-24337 Video Embed <= 1.0 - Authenticated (subscriber+) SQL Injection — Video Embed 8.8 -2021-06-07
CVE-2021-24340 WP Statistics < 13.0.8 - Unauthenticated SQL Injection — WP Statistics 7.5 -2021-06-07
CVE-2021-24336 FlightLog <= 3.0.2 - Authenticated (editor+) SQL Injection — FlightLog 7.2 -2021-06-07
CVE-2021-29089 Synology Photo Station SQL注入漏洞 — Synology Photo Station 9.8 Critical2021-06-02
CVE-2021-29090 Synology Photo Station SQL注入漏洞 — Synology Photo Station 7.2 High2021-06-02
CVE-2021-24321 Bello < 1.6.0 - Unauthenticated Blind SQL Injection — Bello - Directory & Listing 8.8 -2021-06-01
CVE-2021-33180 Synology Media Server SQL注入漏洞 — Synology Media Server 7.3 High2021-06-01
CVE-2021-24295 Time-based Blind SQL Injection in Spam protection, AntiSpam, FireWall by CleanTalk < 5.153.4 — Spam protection, AntiSpam, FireWall by CleanTalk 9.1 -2021-05-17
CVE-2021-24314 Goto < 2.1 - Unauthenticated Blind SQL Injection — Goto 9.8 -2021-05-17
CVE-2021-24285 Car Seller - Auto Classifieds Script <= 2.1.0 - Unauthenticated SQL Injection — Car Seller - Auto Classifieds Script 9.8 -2021-05-14
CVE-2020-27246 OpenClinic GA SQL注入漏洞 — OpenClinic GA 8.8 -2021-05-11
CVE-2020-27245 OpenClinic GA SQL注入漏洞 — OpenClinic GA 8.8 -2021-05-11
CVE-2020-27244 OpenClinic GA SQL注入漏洞 — OpenClinic GA 8.8 -2021-05-11
CVE-2020-27243 OpenClinic GA SQL注入漏洞 — OpenClinic GA 8.8 -2021-05-11
CVE-2020-27242 OpenClinic GA SQL注入漏洞 — OpenClinic GA 8.8 -2021-05-11
CVE-2020-27232 OpenClinic GA SQL注入漏洞 — OpenClinic GA 8.8 -2021-05-10
CVE-2020-27226 OpenClinic GA SQL注入漏洞 — OpenClinic 8.8 -2021-05-10
CVE-2020-27231 OpenClinic GA SQL注入漏洞 — OpenClinic GA 8.8 -2021-05-10

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8859 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.