Weaknesses of type CWE-89
11,731 resultsCVE-2023-1952MEDIUMSourceCodester Online Computer and Laptop Store Product Search ?p=products sql injectionEPSS 0.7%CVE-2025-25389CRITICALA SQL Injection vulnerability was found in /admin/forgot-password.php in Phpgurukul Land Record System v1.0, which allows remote attackers tEPSS 0.7%CVE-2022-43063HIGHOnline Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Users.EPSS 0.7%CVE-2022-45328HIGHChurch Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/edit_members.php.EPSS 0.7%CVE-2023-2815MEDIUMSourceCodester Online Jewelry Store POST Parameter supplier.php sql injectionEPSS 0.7%CVE-2022-43162HIGHOnline Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /tests/view_tesEPSS 0.7%CVE-2022-43086MEDIUMRestaurant POS System v1.0 was discovered to contain a SQL injection vulnerability via update_customer.php.EPSS 0.7%CVE-2023-1958MEDIUMSourceCodester Online Computer and Laptop Store sql injectionEPSS 0.7%CVE-2022-41498HIGHBilling System Project v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /phpinventory/editbrand.php.EPSS 0.7%CVE-2022-44859HIGHAutomotive Shop Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /asms/admin/products/EPSS 0.7%CVE-2023-1792MEDIUMSourceCodester Simple Mobile Comparison Website GET Parameter manage_field.php sql injectionEPSS 0.7%CVE-2022-43179HIGHOnline Leave Management System v1.0 was discovered to contain a SQL injection vulnerability via the component /admin/?page=user/manage_user&EPSS 0.7%CVE-2023-1793MEDIUMSourceCodester Police Crime Record Management System GET Parameter assigncase.php sql injectionEPSS 0.7%CVE-2022-46121HIGHHelmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/admin/?page=products/manage_product&id=.EPSS 0.7%CVE-2023-26856HIGHDynamic Transaction Queuing System v1.0 was discovered to contain a SQL injection vulnerability via the name parameter at /admin/ajax.php?acEPSS 0.7%CVE-2022-41536HIGHOpen Source SACCO Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /sacco_shield/managEPSS 0.7%CVE-2022-36030CRITICALSQL Injection in Project-nexusEPSS 0.7%CVE-2023-2642MEDIUMSourceCodester Online Exam System GET Parameter updateCourse.php sql injectionEPSS 0.7%CVE-2022-41416HIGHOnline Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /user/update_bEPSS 0.7%CVE-2022-46118HIGHHelmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/?page=product_per_brand&bid=.EPSS 0.7%