Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8861

8861 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-67962 WordPress Broken Link Checker plugin <= 1.2.6 - SQL Injection vulnerability — Broken Link Checker 7.6 High2025-12-16
CVE-2025-67950 WordPress All In One SEO Pack plugin <= 4.9.1 - SQL Injection vulnerability — All In One SEO Pack 8.5 High2025-12-16
CVE-2025-62849 QTS, QuTS hero — QTS 9.8AICriticalAI2025-12-16
CVE-2025-67751 ChurchCRM has SQL Injection in Event Editor via `EN_tyid` Parameter caused by an Incomplete Fix — CRM 7.2 High2025-12-16
CVE-2025-67736 Authenticated SQL Injection in FreePBX tts (Text To Speech) module — tts 7.2AIHighAI2025-12-16
CVE-2023-53877 Bus Reservation System 1.1 Multiple SQL Injection via pickup_id Parameter — Bus Reservation System 9.1AICriticalAI2025-12-15
CVE-2025-34179 NetSupport Manager < 14.12.0001 Unauthenticated SQLi Local File Disclosure — Manager 9.1AICriticalAI2025-12-15
CVE-2025-14383 Booking Calendar <= 10.14.8 - Unauthenticated SQL Injection via dates_to_check — Booking Calendar 7.5 High2025-12-15
CVE-2025-14711 FantasticLBP Hotels Server hotelList.php sql injection — Hotels Server 7.3 High2025-12-15
CVE-2025-14710 FantasticLBP Hotels Server OrderList.php sql injection — Hotels Server 7.3 High2025-12-15
CVE-2025-14694 ketr JEPaaS readAllPostil sql injection — JEPaaS 4.7 Medium2025-12-15
CVE-2025-14668 campcodes Advanced Online Examination System loginExe.php sql injection — Advanced Online Examination System 7.3 High2025-12-14
CVE-2025-14667 itsourcecode COVID Tracking System page sql injection — COVID Tracking System 7.3 High2025-12-14
CVE-2025-14666 itsourcecode COVID Tracking System page sql injection — COVID Tracking System 7.3 High2025-12-14
CVE-2025-14664 Campcodes Supplier Management System view_unit.php sql injection — Supplier Management System 7.3 High2025-12-14
CVE-2025-14661 itsourcecode Student Managemen System advisers.php sql injection — Student Managemen System 7.3 High2025-12-14
CVE-2025-14653 itsourcecode Student Management System addrecord.php sql injection — Student Management System 7.3 High2025-12-14
CVE-2025-14652 itsourcecode Online Cake Ordering System admindetail.php sql injection — Online Cake Ordering System 7.3 High2025-12-14
CVE-2025-14650 itsourcecode Online Cake Ordering System product.php sql injection — Online Cake Ordering System 7.3 High2025-12-14
CVE-2025-14649 itsourcecode Online Cake Ordering System supplier.php sql injection — Online Cake Ordering System 7.3 High2025-12-14
CVE-2025-14647 code-projects Computer Book Store admin_delete.php sql injection — Computer Book Store 7.3 High2025-12-14
CVE-2025-14646 code-projects Student File Management System delete_student.php sql injection — Student File Management System 7.3 High2025-12-14
CVE-2025-14645 code-projects Student File Management System delete_user.php sql injection — Student File Management System 7.3 High2025-12-14
CVE-2025-13126 wpForo Forum <= 2.4.12 - Unauthenticated SQL Injection — wpForo Forum 7.5 High2025-12-14
CVE-2025-14644 itsourcecode Student Management System update_subject.php sql injection — Student Management System 7.3 High2025-12-14
CVE-2025-14643 code-projects Simple Attendance Record System check.php sql injection — Simple Attendance Record System 7.3 High2025-12-14
CVE-2025-14640 code-projects Student File Management System save_student.php sql injection — Student File Management System 7.3 High2025-12-14
CVE-2025-14639 itsourcecode Student Management System uprec.php sql injection — Student Management System 7.3 High2025-12-14
CVE-2025-14638 itsourcecode Online Pet Shop Management System update_cnp.php sql injection — Online Pet Shop Management System 7.3 High2025-12-14
CVE-2025-14637 itsourcecode Online Pet Shop Management System addcnp.php sql injection — Online Pet Shop Management System 7.3 High2025-12-13

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8861 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.