Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8863

8863 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-13344 SourceCodester Train Station Ticketing System ajax.php sql injection — Train Station Ticketing System 7.3 High2025-11-18
CVE-2025-41348 Stored Cross-Site Scripting (XSS) in WinPlus by Informática del Este — WinPlus 9.8AICriticalAI2025-11-18
CVE-2025-12411 Premmerce Wholesale Pricing for WooCommerce <= 1.1.10 - Authenticated (Subscriber+) SQL Injection — Premmerce Wholesale Pricing for WooCommerce 7.1 High2025-11-18
CVE-2025-13325 itsourcecode Student Information System enrollment_edit1.php sql injection — Student Information System 6.3 Medium2025-11-18
CVE-2025-13323 code-projects Simple Pizza Ordering System listorder.php sql injection — Simple Pizza Ordering System 7.3 High2025-11-18
CVE-2025-13303 code-projects Courier Management System search-edit.php sql injection — Courier Management System 6.3 Medium2025-11-17
CVE-2025-13302 code-projects Courier Management System add-new-officer.php sql injection — Courier Management System 4.7 Medium2025-11-17
CVE-2025-13301 itsourcecode Web-Based Internet Laboratory Management System controller.php sql injection — Web-Based Internet Laboratory Management System 7.3 High2025-11-17
CVE-2025-13300 itsourcecode Web-Based Internet Laboratory Management System controller.php sql injection — Web-Based Internet Laboratory Management System 7.3 High2025-11-17
CVE-2025-13299 itsourcecode Web-Based Internet Laboratory Management System controller.php sql injection — Web-Based Internet Laboratory Management System 7.3 High2025-11-17
CVE-2025-13298 itsourcecode Web-Based Internet Laboratory Management System controller.php sql injection — Web-Based Internet Laboratory Management System 7.3 High2025-11-17
CVE-2025-13297 itsourcecode Web-Based Internet Laboratory Management System controller.php sql injection — Web-Based Internet Laboratory Management System 7.3 High2025-11-17
CVE-2025-13291 Campcodes Supplier Management System confirm_order.php sql injection — Supplier Management System 7.3 High2025-11-17
CVE-2025-62519 phpMyFAQ has Authenticated SQL Injection in Configuration Update Functionality — phpMyFAQ 7.2 High2025-11-17
CVE-2025-13290 code-projects Simple Food Ordering System saveorder.php sql injection — Simple Food Ordering System 6.3 Medium2025-11-17
CVE-2025-13289 1000projects Design & Development of Student Database Management System SubjectDetails.php sql injection — Design & Development of Student Database Management System 6.3 Medium2025-11-17
CVE-2025-13287 itsourcecode Online Voting System index.php sql injection — Online Voting System 6.3 Medium2025-11-17
CVE-2025-13286 itsourcecode Online Voting System ajax.php sql injection — Online Voting System 6.3 Medium2025-11-17
CVE-2025-13285 itsourcecode Online Voting System login.php sql injection — Online Voting System 7.3 High2025-11-17
CVE-2025-13280 CodeAstro Simple Inventory System Login index.php sql injection — Simple Inventory System 7.3 High2025-11-17
CVE-2025-13279 code-projects Nero Social Networking Site profilefriends.php sql injection — Nero Social Networking Site 6.3 Medium2025-11-17
CVE-2025-13278 projectworlds Advanced Library Management System borrowed_book_search.php sql injection — Advanced Library Management System 6.3 Medium2025-11-17
CVE-2025-13277 code-projects Nero Social Networking Site friendsphoto.php sql injection — Nero Social Networking Site 7.3 High2025-11-17
CVE-2025-13276 g33kyrash Online-Banking-System index.php sql injection — Online-Banking-System 7.3 High2025-11-17
CVE-2025-13274 Campcodes School Fees Payment Management System ajax.php sql injection — School Fees Payment Management System 6.3 Medium2025-11-17
CVE-2025-13273 Campcodes School Fees Payment Management System ajax.php sql injection — School Fees Payment Management System 6.3 Medium2025-11-17
CVE-2025-13272 Campcodes School Fees Payment Management System manage_course.php sql injection — School Fees Payment Management System 7.3 High2025-11-17
CVE-2025-13271 Campcodes School Fees Payment Management System ajax.php sql injection — School Fees Payment Management System 7.3 High2025-11-17
CVE-2025-13270 Campcodes School Fees Payment Management System ajax.php sql injection — School Fees Payment Management System 6.3 Medium2025-11-17
CVE-2025-13269 Campcodes School Fees Payment Management System ajax.php sql injection — School Fees Payment Management System 6.3 Medium2025-11-17

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8863 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.