Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8857

8857 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2020-15619 CentOS Web Panel SQL注入漏洞 — CentOS Web Panel 7.5 -2020-07-28
CVE-2020-15620 CentOS Web Panel SQL注入漏洞 — CentOS Web Panel 7.5 -2020-07-28
CVE-2020-15616 CentOS Web Panel SQL注入漏洞 — CentOS Web Panel 7.5 -2020-07-28
CVE-2020-15617 CentOS Web Panel SQL注入漏洞 — CentOS Web Panel 7.5 -2020-07-28
CVE-2020-15618 CentOS Web Panel SQL注入漏洞 — CentOS Web Panel 7.5 -2020-07-28
CVE-2020-15108 SQL Injection in glpi — glpi 7.1 High2020-07-17
CVE-2020-3450 Cisco Vision Dynamic Signage Director SQL Injection Vulnerability — Cisco Vision Dynamic Signage Director 4.9 Medium2020-07-16
CVE-2020-3468 Cisco SD-WAN vManage Software SQL Injection Vulnerability — Cisco SD-WAN vManage 8.1 -2020-07-16
CVE-2020-3378 Cisco SD-WAN vManage Software SQL Injection Vulnerability — Cisco SD-WAN vManage 6.5 -2020-07-16
CVE-2020-14497 Advantech iView SQL注入漏洞 — Advantech iView 9.8 -2020-07-15
CVE-2020-7577 Siemens Camstar Enterprise Platform和Opcenter Execution Core V8 SQL注入漏洞 — Camstar Enterprise Platform 8.1 -2020-07-14
CVE-2020-6114 Glacies IceHRM SQL注入漏洞 — Glacies IceHRM" 7.2 -2020-07-10
CVE-2020-7500 多款Schneider Electric产品SQL注入漏洞 — U.motion Servers and Touch Panels (affected versions listed in the security notification) 9.8 -2020-06-16
CVE-2020-7493 Schneider Electric EcoStruxure Operator Terminal Expert SQL注入漏洞 — EcoStruxure Operator Terminal Expert 3.1 Service Pack 1 and prior (formerly known as Vijeo XD) 7.8 -2020-06-16
CVE-2020-3339 Cisco Prime Infrastructure SQL Injection Vulnerability — Cisco Prime Infrastructure 8.1 -2020-06-03
CVE-2020-4035 DoS or local data modification via malicious record IDs in WatermelonDB — WatermelonDB 5.9 Medium2020-06-03
CVE-2020-8967 GESIO SQL injection vulnerability — GESIO ERP 10.0 Critical2020-06-01
CVE-2020-3184 Cisco Prime Collaboration Provisioning Software SQL Injection Vulnerability — Cisco Prime Collaboration Provisioning 7.2 -2020-05-22
CVE-2020-12034 Rockwell Automation EDS Subsystem SQL注入漏洞 — EDS Subsystem, FactoryTalk Linx software (Previously called RSLinx Enterprise), RSLinx Classic, RSNetWorx software, Studio 5000 Logix Designer software 7.9 -2020-05-20
CVE-2020-12014 Advantech WebAccess Node SQL注入漏洞 — Advantech WebAccess Node 9.1 -2020-05-08
CVE-2020-11032 SQL injection on addme_observer and addme_assign in GLPI — GLPI 7.6 High2020-05-05
CVE-2020-11004 SQL Injection in Admidio — admidio 7.7 High2020-04-24
CVE-2020-11010 SQL injection in Tortoise ORM — tortoise-orm 6.3 Medium2020-04-20
CVE-2020-10512 HGiga C&Cmail - SQL Injection — C&Cmail 8.8 High2020-04-15
CVE-2020-10505 ALLE INFORMATION CO., LTD. School Manage System - SQL Injection — School Manage System 9.8 Critical2020-04-15
CVE-2020-10617 Advantech WebAccess/NMS SQL注入漏洞 — WebAccess/NMS 7.5 -2020-04-09
CVE-2020-10623 Advantech WebAccess/NMS SQL注入漏洞 — WebAccess/NMS 6.5 -2020-04-09
CVE-2019-19094 ABB eSOMS: SQL injection vulnerability — eSOMS 7.6 High2020-04-02
CVE-2020-6009 LearnDash SQL注入漏洞 — LearnDash Wordpress Plugin 9.8 -2020-04-01
CVE-2020-5292 Time-based blind injection in Leantime — Leantime 8.7 High2020-03-31

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8857 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.