Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8863

8863 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-12594 code-projects Simple Online Hotel Reservation System add_account.php sql injection — Simple Online Hotel Reservation System 4.7 Medium2025-11-02
CVE-2025-11740 wpForo Forum <= 2.4.9 - Authenticated (Susbscriber+) SQL Injection — wpForo Forum 6.5 Medium2025-11-01
CVE-2025-64366 WordPress MasterStudy LMS plugin <= 3.6.27 - SQL Injection vulnerability — MasterStudy LMS 7.6 High2025-10-31
CVE-2025-6520 SQLi in Abis Technology's BAPSIS — BAPSIS 9.8 Critical2025-10-31
CVE-2020-36869 Nagios XI < 5.7.5 SQL injection via SNMP Trap Interface Edit Page — XI 7.2AIHighAI2025-10-30
CVE-2016-15050 Nagios XI < 5.2.4 SQL Injection in Notification Search — XI 8.1AIHighAI2025-10-30
CVE-2020-36859 Nagios XI < 5.7.4 Core Config Manager (CCM) SQL Injection via Object Edit Pages — XI 8.8AIHighAI2025-10-30
CVE-2021-47693 Nagios XI < 5.8.5 Core Config Manager (CCM) SQL Injection via Improper Escaping in Search Text — XI 8.8AIHighAI2025-10-30
CVE-2020-36857 Nagios XI < 5.6.14 Authenticated SQL Injection via SNMP Trap Interface Page — XI 7.2AIHighAI2025-10-30
CVE-2012-10063 Nagios XI < 2012R1.3 Authenticated SQL Injection in Legacy CCM — XI 8.1AIHighAI2025-10-30
CVE-2025-64104 LangGraph SQLite Checkpoint Filter Key SQL Injection POC for SqliteStore — langgraph 7.3 High2025-10-29
CVE-2015-10147 Easy Testimonial Slider and Form <= 1.0.2 - Authenticated (Admin+) SQL injection — Easy Testimonial Slider and Form 4.9 Medium2025-10-29
CVE-2015-10146 Thumbnail Slider With Lightbox <= 1.0.4 - Authenticated (Admin+) SQL Injection — Thumbnail Slider With Lightbox 4.9 Medium2025-10-29
CVE-2025-4665 WordPress plugin Contact Form CFDB7 安全漏洞 — CFDB7 9.6 Critical2025-10-28
CVE-2025-62367 Taiga Blind SQL Injection Time Based — taiga-back 4.8 Medium2025-10-28
CVE-2025-34304 IPFire < v2.29 SQL Injection via OpenVPN Connection Logs — IPFire 6.5AIMediumAI2025-10-28
CVE-2025-11735 HUSKY – Products Filter Professional for WooCommerce <= 1.3.7.1 - Unauthenticated SQL Injection via `phrase` Parameter — HUSKY – Products Filter Professional for WooCommerce 7.5 High2025-10-28
CVE-2025-12342 Serdar Bayram Ghost Hot Spot Login Auth.php sql injection — Ghost Hot Spot 7.3 High2025-10-28
CVE-2025-12339 Campcodes Retro Basketball Shoes Online Store admin_football.php sql injection — Retro Basketball Shoes Online Store 7.3 High2025-10-28
CVE-2025-12338 Campcodes Retro Basketball Shoes Online Store admin_product.ph sql injection — Retro Basketball Shoes Online Store 7.3 High2025-10-28
CVE-2025-12337 Campcodes Retro Basketball Shoes Online Store admin_feature.php sql injection — Retro Basketball Shoes Online Store 7.3 High2025-10-28
CVE-2025-12336 Campcodes Retro Basketball Shoes Online Store admin_index.php sql injection — Retro Basketball Shoes Online Store 7.3 High2025-10-28
CVE-2025-12329 shawon100 RUET OJ details.php sql injection — RUET OJ 6.3 Medium2025-10-27
CVE-2025-12328 shawon100 RUET OJ contestproblem.php sql injection — RUET OJ 6.3 Medium2025-10-27
CVE-2025-12327 shawon100 RUET OJ description.php sql injection — RUET OJ 6.3 Medium2025-10-27
CVE-2025-12326 shawon100 RUET OJ POST Request process.php sql injection — RUET OJ 7.3 High2025-10-27
CVE-2025-12325 SourceCodester Best Salon Management System forgot-password.php sql injection — Best Salon Management System 7.3 High2025-10-27
CVE-2025-12316 code-projects Courier Management System edit-courier.php sql injection — Courier Management System 7.3 High2025-10-27
CVE-2025-12315 code-projects Food Ordering System menu.php sql injection — Food Ordering System 4.7 Medium2025-10-27
CVE-2025-12314 code-projects Food Ordering System deleteitem.php sql injection — Food Ordering System 4.7 Medium2025-10-27

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8863 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.