Weaknesses of type CWE-89
11,811 resultsCVE-2024-33153CRITICALJ2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sql_filter parameter in the commentList() function.EPSS 0.6%CVE-2023-32741HIGHWordPress Contact Form to Any API Plugin <= 1.1.2 is vulnerable to SQL InjectionEPSS 0.6%CVE-2024-10349MEDIUMSourceCodester Best House Rental Management System ajax.php delete_tenant sql injectionEPSS 0.6%CVE-2023-27260CRITICALUnauthenticated SQL Injection In IDAttend’s IDWeb ApplicationEPSS 0.6%CVE-2023-26584CRITICALUnauthenticated SQL Injection In IDAttend’s IDWeb ApplicationEPSS 0.6%CVE-2023-26581CRITICALUnauthenticated SQL Injection In IDAttend’s IDWeb ApplicationEPSS 0.6%CVE-2025-30524CRITICALWordPress Product Catalog plugin <= 1.0.4 - SQL Injection vulnerabilityEPSS 0.6%CVE-2022-46021HIGHX-Man 1.0 has a SQL injection vulnerability, which can cause data leakage.EPSS 0.6%CVE-2023-26582CRITICALUnauthenticated SQL Injection In IDAttend’s IDWeb ApplicationEPSS 0.6%CVE-2023-26583CRITICALUnauthenticated SQL Injection In IDAttend’s IDWeb ApplicationEPSS 0.6%CVE-2023-4747MEDIUMDedeCMS tags.php sql injectionEPSS 0.6%CVE-2024-24100HIGHCode-projects Computer Book Store 1.0 is vulnerable to SQL Injection via PublisherID.EPSS 0.6%CVE-2024-2156MEDIUMSourceCodester Best POS Management System admin_class.php sql injectionEPSS 0.6%CVE-2025-28898CRITICALWordPress WP Multistore Locator plugin <= 2.5.2 - SQL Injection vulnerabilityEPSS 0.6%CVE-2023-35071CRITICALSQLi in MRV Tech's Logging Administration PanelEPSS 0.6%CVE-2024-13477HIGHLTL Freight Quotes – Unishippers Edition <= 2.5.8 - Unauthenticated SQL InjectionEPSS 0.6%CVE-2025-28100CRITICALA SQL Injection vulnerability in dingfanzuCMS v.1.0 allows a attacker to execute arbitrary code via not filtering the content correctly at tEPSS 0.6%CVE-2025-39566HIGHWordPress Hostel plugin <= 1.1.5.6 - SQL Injection VulnerabilityEPSS 0.6%CVE-2025-0490MEDIUMFanli2012 native-php-cms article_dodel.php sql injectionEPSS 0.6%CVE-2025-57529CRITICALYouDataSum CPAS Audit Management System <=v4.9 is vulnerable to SQL Injection in /cpasList/findArchiveReportByDah due to insufficient input EPSS 0.6%