Weaknesses of type CWE-89
11,615 resultsCVE-2022-33147HIGHA sql injection vulnerability exists in the ObjectYPT functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially-crafted EPSS 1.6%CVE-2022-33149HIGHA sql injection vulnerability exists in the ObjectYPT functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially-crafted EPSS 1.6%CVE-2023-0912MEDIUMSourceCodester Auto Dealer Management System sql injectionEPSS 1.6%CVE-2023-0913MEDIUMSourceCodester Auto Dealer Management System sql injectionEPSS 1.6%CVE-2022-0258HIGHSQL Injection in pimcore/pimcoreEPSS 1.6%CVE-2017-6757—A vulnerability in Cisco Unified Communications Manager 10.5(2.10000.5), 11.0(1.10000.10), and 11.5(1.10000.6) could allow an authenticated,EPSS 1.6%CVE-2019-15972MEDIUMCisco Unified Communications Manager SQL Injection VulnerabilityEPSS 1.6%CVE-2019-5112HIGHExploitable SQL injection vulnerability exists in the authenticated portion of Forma LMS 2.2.1. The /appLms/ajax.server.php URL and parameteEPSS 1.6%CVE-2022-0771—SiteSuperCharger < 5.2.0 - Unauthenticated SQLiEPSS 1.6%CVE-2021-24492—Handsome Testimonials & Reviews < 2.1.1 - Authenticated (Subscriber+) SQL InjectionEPSS 1.6%CVE-2023-31038HIGHApache Log4cxx: SQL injection when using ODBC appenderEPSS 1.6%CVE-2024-35181MEDIUMGHSL-2024-013 Meshery SQL Injection vulnerabilityEPSS 1.6%CVE-2018-7528—An SQL injection vulnerability has been identified in Geutebruck G-Cam/EFD-2250 Version 1.12.0.4 and Topline TopFD-2125 Version 3.15.1 IP caEPSS 1.6%CVE-2021-24651—Poll Maker < 3.4.2 - Unauthenticated Time Based SQL InjectionEPSS 1.6%CVE-2021-24521—Side Menu Lite < 2.2.1 - Authenticated SQL InjectionEPSS 1.6%CVE-2014-5399—Schneider Electric Wonderware SQL InjectionEPSS 1.6%CVE-2021-24341—Xllentech English Islamic Calendar < 2.6.8 - Authenticated SQL InjectionEPSS 1.6%CVE-2026-8054CRITICALUnauthenticated SQL Injection in dotCMS Publish Audit APIEPSS 1.6%CVE-2021-25007—MOLIE <= 0.5 - Authenticated SQL InjectionEPSS 1.6%CVE-2025-62389MEDIUMSQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated attacker to read arbitrary data from the dataEPSS 1.6%