Weaknesses of type CWE-89
11,756 resultsCVE-2023-25047MEDIUMWordPress RSVPMarker Plugin <= 9.9.3 is vulnerable to SQL InjectionEPSS 0.7%CVE-2024-3457MEDIUMNetentsec NS-ASG Application Security Gateway config_ISCGroupNoCache.php sql injectionEPSS 0.7%CVE-2023-25990HIGHWordPress Tutor LMS Plugin <= 2.1.10 is vulnerable to SQL InjectionEPSS 0.7%CVE-2022-47984MEDIUMIBM InfoSphere Information Server SQL injectionEPSS 0.7%CVE-2020-36631MEDIUMbarronwaffles dwc_network_server_emulator gs_database.py update_profile sql injectionEPSS 0.7%CVE-2023-36529CRITICALWordPress Houzez CRM Plugin <= 1.3.4 is vulnerable to SQL InjectionEPSS 0.7%CVE-2020-36630MEDIUMFreePBX cdr Cdr.class.php ajaxHandler sql injectionEPSS 0.7%CVE-2024-6743CRITICALAguardNet Space Management System - SQL injectionEPSS 0.7%CVE-2024-8762MEDIUMcode-projects Crud Operation System updatedata.php sql injectionEPSS 0.7%CVE-2024-52335CRITICALA vulnerability has been identified in syngo.plaza VB30E (All versions < VB30E_HF05). The affected application do not properly sanitize inpuEPSS 0.7%CVE-2022-2017MEDIUMSourceCodester Prison Management System Visit view_visit.php sql injectionEPSS 0.7%CVE-2024-40614MEDIUMEGroupware before 23.1.20240624 mishandles an ORDER BY clause. This leads to json.php?menuaction=EGroupware\Api\Etemplate\Widget\Nextmatch::EPSS 0.7%CVE-2026-37749CRITICALA SQL injection vulnerability in CodeAstro Simple Attendance Management System v1.0 allows remote unauthenticated attackers to bypass authenEPSS 0.7%CVE-2024-0941MEDIUMNovel-Plus list sql injectionEPSS 0.7%CVE-2022-22338MEDIUMIBM Sterling B2B Integrator Standard Edition SQL injectionEPSS 0.7%CVE-2023-1610MEDIUMRebuild list sql injectionEPSS 0.7%CVE-2025-32870HIGHA vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.2). The affected application is vulnerable to SQL injEPSS 0.7%CVE-2024-24308CRITICALSQL Injection vulnerability in Boostmyshop (boostmyshopagent) module for Prestashop versions 1.1.9 and before, allows remote attackers to esEPSS 0.7%CVE-2024-24303CRITICALSQL Injection vulnerability in HiPresta "Gift Wrapping Pro" (hiadvancedgiftwrapping) module for PrestaShop before version 1.4.1, allows remoEPSS 0.7%CVE-2024-24001CRITICALjshERP v3.3 is vulnerable to SQL Injection. via the com.jsh.erp.controller.DepotHeadController: com.jsh.erp.utils.BaseResponseInfo findallocEPSS 0.7%