Weaknesses of type CWE-89

11,706 results
CVE-2024-48259HIGHCloudlog 2.6.15 allows Oqrs.php request_form SQL injection via station_id or callsign.EPSS 0.9%CVE-2022-38878HIGHSchool Activity Updates with SMS Notification v1.0 is vulnerable to SQL Injection via /activity/admin/modules/event/index.php?view=edit&id=.EPSS 0.9%CVE-2023-31619HIGHAn issue in the sch_name_to_object component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via EPSS 0.9%CVE-2024-3347HIGHSourceCodester Airline Ticket Reservation System activate_jet_details_form_handler.php sql injectionEPSS 0.9%CVE-2023-1352MEDIUMSourceCodester Design and Implementation of Covid-19 Directory on Vaccination System login.php sql injectionEPSS 0.9%CVE-2024-11962MEDIUMcode-projects Simple Car Rental System login.php sql injectionEPSS 0.9%CVE-2023-41652HIGHWordPress RSVPMarker Plugin <= 10.6.6 is vulnerable to SQL InjectionEPSS 0.9%CVE-2022-29410HIGHWordPress Hermit 音乐播放器 plugin <= 3.1.6 - Authenticated SQL Injection (SQLi) vulnerabilityEPSS 0.9%CVE-2023-26093CRITICALLiima before 1.17.28 allows Hibernate query language (HQL) injection, related to colToSort in the deployment filter.EPSS 0.9%CVE-2024-50717CRITICALSQL injection vulnerability in Smart Agent v.1.1.0 allows a remote attacker to execute arbitrary code via the client parameter in the /recupEPSS 0.9%CVE-2024-50716CRITICALSQL injection vulnerability in Smart Agent v.1.1.0 allows a remote attacker to execute arbitrary code via the id parameter in the /sendPushMEPSS 0.9%CVE-2024-48657HIGHSQL Injection vulnerability in hospital management system in php with source code v.1.0.0 allows a remote attacker to execute arbitrary codeEPSS 0.9%CVE-2023-6651HIGHcode-projects Matrimonial Site sql injectionEPSS 0.9%CVE-2023-22727CRITICALDatabase Query::offset() and limit() vulnerable to SQL injection in cakephpEPSS 0.9%CVE-2022-41731HIGHIBM Watson Knowledge Catalog on Cloud Pak SQL injectionEPSS 0.9%CVE-2023-6652HIGHcode-projects Matrimonial Site register.php register sql injectionEPSS 0.9%CVE-2015-10034MEDIUMj-nowak workout-organizer sql injectionEPSS 0.9%CVE-2023-48863HIGHSEMCMS 3.9 is vulnerable to SQL Injection. Due to the lack of security checks on the input of the application, the attacker uses the existinEPSS 0.9%CVE-2024-30241HIGHWordPress ProfileGrid – User Profiles, Memberships, Groups and Communities plugin <= 5.7.1 - Contributor+ SQL Injection vulnerabilityEPSS 0.9%CVE-2022-40447HIGHZZCMS 2022 was discovered to contain a SQL injection vulnerability via the keyword parameter at /admin/baojia_list.php.EPSS 0.9%