Weaknesses of type CWE-89
11,767 resultsCVE-2024-35354CRITICALA vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the EPSS 0.7%CVE-2024-23751CRITICALLlamaIndex (aka llama_index) through 0.9.34 allows SQL injection via the Text-to-SQL feature in NLSQLTableQueryEngine, SQLTableRetrieverQuerEPSS 0.7%CVE-2024-7273MEDIUMitsourcecode Alton Management System search.php sql injectionEPSS 0.7%CVE-2024-23810HIGHA vulnerability has been identified in SINEC NMS (All versions < V2.0 SP1). The affected application is vulnerable to SQL injection. This coEPSS 0.7%CVE-2014-125077MEDIUMpointhi searx_stats cron.php sql injectionEPSS 0.7%CVE-2014-125067MEDIUMcorincerami curiosity image_controller.rb sql injectionEPSS 0.7%CVE-2014-125076MEDIUMNoxxieNl Criminals roulette.php sql injectionEPSS 0.7%CVE-2023-1099MEDIUMSourceCodester Online Student Management System edit-class-detail.php sql injectionEPSS 0.7%CVE-2014-125083MEDIUMAnant Labs google-enterprise-connector-dctm sql injectionEPSS 0.7%CVE-2018-25072MEDIUMlojban jbovlaste listing.html sql injectionEPSS 0.7%CVE-2024-31506MEDIUMSourcecodester Online Graduate Tracer System v1.0 is vulnerable to SQL Injection via the "id" parameter in admin/admin_cs.php.EPSS 0.7%CVE-2023-33967HIGHEaseProbe vulnerable to SQL injection when using MySQL/PostgreSQL data checkingEPSS 0.7%CVE-2024-8565MEDIUMSourceCodesters Clinics Patient Management System print_diseases.php sql injectionEPSS 0.7%CVE-2024-8343MEDIUMSourceCodester Sentiment Based Movie Rating System User Registration Users.php sql injectionEPSS 0.7%CVE-2022-46818HIGHWordPress Email posts to subscribers Plugin <= 6.2 is vulnerable to SQL InjectionEPSS 0.7%CVE-2022-47586HIGHWordPress Ultimate Addons for Contact Form 7 Plugin <= 3.1.23 is vulnerable to SQL InjectionEPSS 0.7%CVE-2023-3502MEDIUMSourceCodester Shopping Website search-result.php sql injectionEPSS 0.7%CVE-2024-0357MEDIUMcoderd-repos Eva HTTP POST Request page sql injectionEPSS 0.7%CVE-2024-5773MEDIUMNetentsec NS-ASG Application Security Gateway deletemacbind.php sql injectionEPSS 0.7%CVE-2024-34472MEDIUMAn issue was discovered in HSC Mailinspector 5.2.17-3 through v.5.2.18. An authenticated blind SQL injection vulnerability exists in the mliEPSS 0.7%