Weaknesses of type CWE-89

11,777 results
CVE-2025-3401MEDIUMESAFENET CDG getLimitIPList.jsp sql injectionEPSS 0.6%CVE-2023-0883MEDIUMSourceCodester Online Pizza Ordering System index.php sql injectionEPSS 0.6%CVE-2025-66169MEDIUMApache Camel Neo4j: Cypher injection vulnerability in Camel-Neo4j componentEPSS 0.6%CVE-2023-2108MEDIUMSourceCodester Judging Management System edit_contestant.php sql injectionEPSS 0.6%CVE-2022-28132HIGHThe T-Soft E-Commerce 4 web application is susceptible to SQL injection (SQLi) attacks when authenticated as an admin or privileged user. ThEPSS 0.6%CVE-2023-22491HIGHgatsby-transformer-remark vulnerable to unsanitized JavaScript code injection EPSS 0.6%CVE-2022-2698MEDIUMSourceCodester Simple E-Learning System search.php sql injectionEPSS 0.6%CVE-2026-4112HIGHImproper neutralization of special elements used in an SQL command (“SQL Injection”) in SonicWall SMA1000 series appliances allows a remote EPSS 0.6%CVE-2024-2661HIGHBarcode Scanner with Inventory & Order Manager <= 1.5.4 - Authenticated (Subscriber+) SQL InjectionEPSS 0.6%CVE-2022-2728MEDIUMSourceCodester Gym Management System index.php sql injectionEPSS 0.6%CVE-2024-8332MEDIUMmaster-nan Sweet-CMS index sql injectionEPSS 0.6%CVE-2022-2693MEDIUMSourceCodester Electronic Medical Records System UPDATE Statement register.php sql injectionEPSS 0.6%CVE-2024-24110MEDIUMSQL Injection vulnerability in crmeb_java before v1.3.4 allows attackers to run arbitrary SQL commands via crafted GET request to the componEPSS 0.6%CVE-2022-2706MEDIUMSourceCodester Online Class and Exam Scheduling System class_sched.php sql injectionEPSS 0.6%CVE-2024-7026HIGHSQLi in Teknogis Informatics' Closed Circuit Vehicle Tracking SoftwareEPSS 0.6%CVE-2025-0210MEDIUMCampcodes School Faculty Scheduling System ajax.php sql injectionEPSS 0.6%CVE-2022-2707MEDIUMSourceCodester Online Class and Exam Scheduling System faculty_sched.php sql injectionEPSS 0.6%CVE-2025-3399MEDIUMESAFENET CDG updateNotice.jsp sql injectionEPSS 0.6%CVE-2024-2831HIGHCalendar <= 1.3.14 - Authenticated (Contributor+) SQL Injection via ShortcodeEPSS 0.6%CVE-2012-10006MEDIUMale7714 sigeprosi sql injectionEPSS 0.6%