Weaknesses of type CWE-89
11,540 resultsCVE-2022-0786—KiviCare < 2.3.9 - Unauthenticated SQLiEPSS 11.2%CVE-2025-15029CRITICALAn unauthenticated user is able to introduce SQL Injection using the Awie export moduleEPSS 11.2%CVE-2023-23489CRITICALThe Easy Digital Downloads WordPress Plugin, versions 3.1.0.2 & 3.1.0.3, is affected by an unauthenticated SQL injection vulnerability in thEPSS 11.2%CVE-2024-1061HIGHThe 'HTML5 Video Player' WordPress Plugin, version < 2.5.25 is affected by an unauthenticated SQL injection vulnerability in the 'id' parameEPSS 11.1%CVE-2025-26086HIGHAn unauthenticated blind SQL injection vulnerability exists in RSI Queue Management System v3.0 within the TaskID parameter of the get requeEPSS 11.0%CVE-2023-4166MEDIUMTongda OA delete_log.php sql injectionEPSS 10.8%CVE-2023-4165MEDIUMTongda OA delete_seal.php sql injectionEPSS 10.8%CVE-2022-0760—Simple Link Directory < 7.7.2 - Unauthenticated SQL injectionEPSS 10.8%CVE-2020-15160—Blind SQL Injection in PrestaShopEPSS 10.8%CVE-2023-29809CRITICALSQL injection vulnerability found in Maximilian Vogt companymaps (cmaps) v.8.0 allows a remote attacker to execute arbitrary code via a crafEPSS 10.5%CVE-2022-1692—CP Image Store with Slideshow < 1.0.68 - Unauthenticated SQLiEPSS 10.4%CVE-2022-0784—Title Experiments Free < 9.0.1 - Unauthenticated SQLiEPSS 10.4%CVE-2024-4443CRITICALBusiness Directory Plugin – Easy Listing Directories for WordPress <= 6.4.2 - Unauthenticated SQL Injection via listingfields ParameterEPSS 10.3%CVE-2022-3142—NEX-Forms < 7.9.7 - Authenticated SQLiEPSS 10.3%CVE-2024-6497HIGHSEO Plugin by Squirrly SEO <= 12.3.19 - Authenticated (Contributor+) SQL Injection via url ParameterEPSS 10.3%CVE-2024-4295CRITICALEmail Subscribers by Icegram Express <= 5.7.20 - Unauthenticated SQL Injection via hashEPSS 10.2%CVE-2024-36680HIGHIn the module "Facebook" (pkfacebook) <=1.0.1 from Promokit.eu for PrestaShop, a guest can perform SQL injection. The ajax script facebookCoEPSS 10.1%CVE-2022-2135HIGHAdvantech iViewEPSS 10.1%CVE-2024-50387CRITICALSMB ServiceEPSS 10.1%CVE-2017-17417—This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Quest NetVault Backup 11.3.0.12. AuthentEPSS 10.0%