Weaknesses of type CWE-89
11,848 resultsCVE-2025-1840MEDIUMESAFENET CDG updateorg.jsp sql injectionEPSS 0.5%CVE-2024-52436HIGHWordPress Post SMTP plugin <= 2.9.9 - SQL Injection vulnerabilityEPSS 0.5%CVE-2026-39948CRITICALCacti has SQL Injection via rfilter parameter in RLIKE clausesEPSS 0.5%CVE-2025-4483MEDIUMitsourcecode Gym Management System view_pdetails.php sql injectionEPSS 0.5%CVE-2025-11109MEDIUMCampcodes Computer Sales and Inventory System us_edit.php sql injectionEPSS 0.5%CVE-2025-4481MEDIUMSourceCodester Apartment Visitor Management System search-result.php sql injectionEPSS 0.5%CVE-2025-4486MEDIUMitsourcecode Gym Management System ajax.php sql injectionEPSS 0.5%CVE-2025-10857MEDIUMCampcodes Point of Sale System POS login.php sql injectionEPSS 0.5%CVE-2025-4484MEDIUMitsourcecode Gym Management System ajax.php sql injectionEPSS 0.5%CVE-2025-4487MEDIUMitsourcecode Gym Management System ajax.php sql injectionEPSS 0.5%CVE-2025-4482MEDIUMProject Worlds Student Project Allocation System forgot_password_sql.php sql injectionEPSS 0.5%CVE-2025-10444MEDIUMCampcodes Online Job Finder System advancesearch.php sql injectionEPSS 0.5%CVE-2024-40539MEDIUMmy-springsecurity-plus before v2024.07.03 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /api/user.EPSS 0.5%CVE-2025-4020MEDIUMPHPGurukul Old Age Home Management System contact.php sql injectionEPSS 0.5%CVE-2025-51510MEDIUMMoonShine was discovered to contain a SQL injection vulnerability under the Blog -> Categories page when using the moonshine-tree-resource (EPSS 0.5%CVE-2024-53792HIGHWordPress Watu Quiz plugin <= 3.4.1.2 - SQL Injection vulnerabilityEPSS 0.5%CVE-2024-38708HIGHWordPress Barcode Scanner and Inventory manager plugin <= 1.6.1 - SQL Injection vulnerabilityEPSS 0.5%CVE-2025-3799MEDIUMWCMS AnonymousController.php sql injectionEPSS 0.5%CVE-2024-34334CRITICALORDAT FOSS-Online before v2.24.01 was discovered to contain a SQL injection vulnerability via the forgot password function.EPSS 0.5%CVE-2026-44331HIGHIn ProFTPD through 1.3.9a before 7666224, a SQL injection vulnerability in sqltab_fetch_clients_cb() in contrib/mod_wrap2_sql.c allows a remEPSS 0.5%