Weaknesses of type CWE-89

11,697 results
CVE-2024-2018HIGHWP Activity Log Premium <= 4.6.4 - Authenticated (Subscriber+) SQL InjectionEPSS 0.9%CVE-2020-27233MEDIUMAn exploitable SQL injection vulnerability exists in ‘getAssets.jsp’ page of OpenClinic GA 5.173.3 in the supplierUID parameter. An attackerEPSS 0.9%CVE-2020-27234MEDIUMAn exploitable SQL injection vulnerability exists in ‘getAssets.jsp’ page of OpenClinic GA 5.173.3 in the serviceUID parameter. An attacker EPSS 0.9%CVE-2020-27236MEDIUMAn exploitable SQL injection vulnerability exists in ‘getAssets.jsp’ page of OpenClinic GA 5.173.3 in the compnomenclature parameter. An attEPSS 0.9%CVE-2021-43927MEDIUMImproper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in Security Management functionality in SEPSS 0.9%CVE-2021-43926MEDIUMImproper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in Log Management functionality in SynoloEPSS 0.9%CVE-2023-6657MEDIUMSourceCodester Simple Student Attendance System student_form.php sql injectionEPSS 0.9%CVE-2021-43925MEDIUMImproper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in Log Management functionality in SynoloEPSS 0.9%CVE-2013-10003MEDIUMTelecommunication Software SAMwin Contact Center Suite Database SAMwinLIBVB.dll getCurrentDBVersion sql injectionEPSS 0.9%CVE-2023-3449MEDIUMIBOS OA Interview Management Export export&interviews=x actionExport sql injectionEPSS 0.9%CVE-2024-29875CRITICALSQL injection vulnerability in SentrifugoEPSS 0.9%CVE-2024-29874CRITICALSQL injection vulnerability in SentrifugoEPSS 0.9%CVE-2023-0765HIGHGallery by BestWebSoft < 4.7.0 - Author+ SQL InjectionEPSS 0.9%CVE-2023-6084MEDIUMTongda OA 2017 delete.php sql injectionEPSS 0.9%CVE-2025-0298MEDIUMcode-projects Online Book Shop process_login.php sql injectionEPSS 0.9%CVE-2023-27569CRITICALThe eo_tags package before 1.3.0 for PrestaShop allows SQL injection via an HTTP User-Agent or Referer header.EPSS 0.9%CVE-2023-28659HIGHThe Waiting: One-click Countdowns WordPress Plugin, version <= 0.6.2, is affected by an authenticated SQL injection vulnerability in the pbcEPSS 0.9%CVE-2023-24198CRITICALRaffle Draw System v1.0 was discovered to contain multiple SQL injection vulnerabilities at save_winner.php via the ticket_id and draw paramEPSS 0.9%CVE-2022-40872CRITICALAn SQL injection vulnerability issue was discovered in Sourcecodester Simple E-Learning System 1.0., in /vcs/classRoom.php?classCode=, classEPSS 0.9%CVE-2023-1595MEDIUMnovel-plus list sql injectionEPSS 0.9%