Weaknesses of type CWE-89
11,797 resultsCVE-2025-41678MEDIUMSQL Injection via POST Requests Allowing Configuration Database ManipulationEPSS 0.6%CVE-2024-1007MEDIUMSourceCodester Employee Management System edit_profile.php sql injectionEPSS 0.6%CVE-2025-0847MEDIUM1000 Projects Employee Task Management System Login index.php sql injectionEPSS 0.6%CVE-2024-7117MEDIUMMD-MAFUJUL-HASAN Online-Payroll-Management-System shift_viewmore.php sql injectionEPSS 0.6%CVE-2025-40677HIGHSQL injection vulnerability in Summar Software´s Portal del EmpleadoEPSS 0.6%CVE-2023-49752CRITICALWordPress Adifier System Plugin < 3.1.4 is vulnerable to SQL InjectionEPSS 0.6%CVE-2023-40010CRITICALWordPress HUSKY – Products Filter for WooCommerce (formerly WOOF) Plugin <= 1.3.4.2 is vulnerable to SQL InjectionEPSS 0.6%CVE-2015-10091MEDIUMByWater Solutions bywater-koha-xslt systempreferences.pl StringSearch sql injectionEPSS 0.6%CVE-2023-5029MEDIUMmccms 1 sql injectionEPSS 0.6%CVE-2023-5030MEDIUMTongda OA delete.php sql injectionEPSS 0.6%CVE-2024-7114MEDIUMTianchoy Blog so.php sql injectionEPSS 0.6%CVE-2025-8220MEDIUMEngeman Web Password Recovery RecoveryPass sql injectionEPSS 0.6%CVE-2024-11099MEDIUMcode-projects Job Recruitment login.php sql injectionEPSS 0.6%CVE-2024-11100MEDIUM1000 Projects Beauty Parlour Management System index.php sql injectionEPSS 0.6%CVE-2025-63531CRITICALA SQL injection vulnerability exists in the Blood Bank Management System 1.0 within the receiverLogin.php component. The application fails tEPSS 0.6%CVE-2024-10791MEDIUMCodezips Hospital Appointment System doctorAction.php sql injectionEPSS 0.6%CVE-2024-42567CRITICALSchool Management System commit bae5aa was discovered to contain a SQL injection vulnerability via the sid parameter at /search.php?action=2EPSS 0.6%CVE-2024-12187MEDIUM1000 Projects Library Management System showbook.php sql injectionEPSS 0.6%CVE-2026-57517CRITICALControl Web Panel < 0.9.8.1225 Blind SQL Injection via userRes ParameterEPSS 0.6%CVE-2024-42571CRITICALSchool Management System commit bae5aa was discovered to contain a SQL injection vulnerability via the medium parameter at insertattendance.EPSS 0.6%