Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) — Vulnerability Class 8872

8872 vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-10076 SourceCodester Online Polling System manage-profile.php sql injection — Online Polling System 7.3 High2025-09-08
CVE-2025-10068 itsourcecode Online Discussion Forum add_views.php sql injection — Online Discussion Forum 7.3 High2025-09-07
CVE-2025-10062 itsourcecode Student Information Management System login.php sql injection — Student Information Management System 7.3 High2025-09-06
CVE-2025-10033 itsourcecode Online Discussion Forum admin sql injection — Online Discussion Forum 7.3 High2025-09-06
CVE-2025-10031 Campcodes Grocery Sales and Inventory System ajax.php sql injection — Grocery Sales and Inventory System 7.3 High2025-09-06
CVE-2025-10030 Campcodes Grocery Sales and Inventory System ajax.php sql injection — Grocery Sales and Inventory System 7.3 High2025-09-06
CVE-2025-10046 ELEX WooCommerce Google Shopping (Google Product Feed) <= 1.4.3 - Authenticated (Admin+) SQL Inejction — ELEX WooCommerce Google Shopping (Google Product Feed) 4.9 Medium2025-09-06
CVE-2025-10003 UsersWP – Front-end login form, User Registration, User Profile & Members Directory plugin for WP <= 1.2.44 - Authenticated (Subscriber+) SQL Injection — UsersWP – Front-end login form, User Registration, User Profile & Members Directory plugin for WP 6.5 Medium2025-09-06
CVE-2025-9085 User Registration & Membership <= 4.3.0 - Authenticated (Admin+) SQL Injection — User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder 4.9 Medium2025-09-06
CVE-2025-58439 ERP: Possibility of SQL injection due to missing validation — erpnext 8.1 High2025-09-06
CVE-2025-10025 PHPGurukul Online Course Registration semester.php sql injection — Online Course Registration 7.3 High2025-09-05
CVE-2025-58628 WordPress Miraculous Theme < 2.0.9 - SQL Injection Vulnerability — Miraculous 9.3 Critical2025-09-05
CVE-2025-10012 Portabilis i-Educar educar_historico_escolar_lst.php sql injection — i-Educar 6.3 Medium2025-09-05
CVE-2025-10011 Portabilis i-Educar edit sql injection — i-Educar 6.3 Medium2025-09-05
CVE-2025-58881 WordPress New Simple Gallery Plugin <= 8.0 - SQL Injection Vulnerability — New Simple Gallery 8.5 High2025-09-05
CVE-2025-58789 WordPress WP Full Stripe Free Plugin <= 8.2.5 - SQL Injection Vulnerability — WP Full Stripe Free 7.6 High2025-09-05
CVE-2025-58788 WordPress License Manager for WooCommerce Plugin <= 3.0.12 - SQL Injection Vulnerability — License Manager for WooCommerce 7.6 High2025-09-05
CVE-2025-58780 ScienceLogic SL1 SQL注入漏洞 — SL1 7.2 High2025-09-05
CVE-2025-8311 DotCMS 安全漏洞 — dotCMS Cloud Services (dCS) 8.8AIHighAI2025-09-04
CVE-2025-7385 SQL Injection in GOV CMS — GOV CMS 9.8AICriticalAI2025-09-04
CVE-2025-41034 SQL injection vulnerability in appRain CMF — appRain CMF 9.8 -2025-09-04
CVE-2025-41033 SQL injection vulnerability in appRain CMF — appRain CMF 9.8 -2025-09-04
CVE-2025-41032 SQL injection vulnerability in appRain CMF — appRain CMF 8.8 -2025-09-04
CVE-2025-9933 PHPGurukul Beauty Parlour Management System view-appointment.php sql injection — Beauty Parlour Management System 7.3 High2025-09-03
CVE-2025-9932 PHPGurukul Beauty Parlour Management System update-image.php sql injection — Beauty Parlour Management System 7.3 High2025-09-03
CVE-2025-9930 1000projects Beauty Parlour Management System contact-us.php sql injection — Beauty Parlour Management System 7.3 High2025-09-03
CVE-2025-9928 projectworlds Travel Management System viewcategory.php sql injection — Travel Management System 7.3 High2025-09-03
CVE-2025-9927 projectworlds Travel Management System viewpackage.php sql injection — Travel Management System 7.3 High2025-09-03
CVE-2025-9926 projectworlds Travel Management System viewsubcategory.php sql injection — Travel Management System 7.3 High2025-09-03
CVE-2025-9925 projectworlds Travel Management System detail.php sql injection — Travel Management System 7.3 High2025-09-03

Vulnerabilities classified as CWE-89 (SQL命令中使用的特殊元素转义处理不恰当(SQL注入)) represent 8872 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.