Weaknesses of type CWE-89
11,616 resultsCVE-2021-25007—MOLIE <= 0.5 - Authenticated SQL InjectionEPSS 1.6%CVE-2021-25070—WP Block and Stop Bad Bots < 6.88 - Unauthenticated SQLiEPSS 1.6%CVE-2025-62387MEDIUMSQL injection in Ivanti Endpoint Manager before version 2024 SU5 allows a remote authenticated attacker to read arbitrary data from the dataEPSS 1.6%CVE-2025-22953CRITICALA SQL injection vulnerability exists in Epicor HCM 2021 1.9, with patches available: 5.16.0.1033/HCM2022, 5.17.0.1146/HCM2023, and 5.18.0.57EPSS 1.6%CVE-2023-26034CRITICALZoneMinder SQL InjectionEPSS 1.6%CVE-2024-13322HIGHAds Pro Plugin - Multi-Purpose WordPress Advertising Manager <= 4.88 - Unauthenticated SQL InjectionEPSS 1.6%CVE-2021-24550—Broken Link Manager <= 0.6.5 - Authenticated (admin+) SQL InjectionEPSS 1.6%CVE-2023-50395HIGHSQL Injection Remote Code Execution VulnerabilityEPSS 1.6%CVE-2021-24552—Simple Events Calendar <= 1.4.0 - Authenticated (admin+) SQL InjectionEPSS 1.6%CVE-2021-24553—Timeline Calendar <= 1.2 - Authenticated (admin+) SQL InjectionEPSS 1.6%CVE-2024-30801MEDIUMSQL Injection vulnerability in Cloud based customer service management platform v.1.0.0 allows a local attacker to execute arbitrary code viEPSS 1.6%CVE-2020-13566HIGHSQL injection vulnerabilities exist in phpGACL 3.3.7. A specially crafted HTTP request can lead to a SQL injection. An attacker can send an EPSS 1.6%CVE-2021-24951—LearnPress < 4.1.4 - Admin+ SQL InjectionEPSS 1.6%CVE-2021-24866—WP Data Access < 5.0.0 - Admin+ SQL InjectionEPSS 1.6%CVE-2021-24863—StopBadBots < 6.67 - Unauthenticated SQL InjectionEPSS 1.6%CVE-2023-39417HIGHPostgresql: extension script @substitutions@ within quoting allow sql injectionEPSS 1.6%CVE-2019-10916—A vulnerability has been identified in SIMATIC PCS 7 V8.0 and earlier (All versions), SIMATIC PCS 7 V8.1 (All versions < V8.1 with WinCC V7.EPSS 1.6%CVE-2021-24520—Stock in & out <= 1.0.4 - Authenticated SQL InjectionEPSS 1.6%CVE-2022-1014—WP Contacts Manager <= 2.2.4 - Unauthenticated SQLiEPSS 1.6%CVE-2021-24337—Video Embed <= 1.0 - Authenticated (subscriber+) SQL InjectionEPSS 1.6%