Fallos del tipo CWE-89

11.694 resultados
CVE-2020-27243MEDIUMAn exploitable SQL injection vulnerability exists in ‘listImmoLabels.jsp’ page of OpenClinic GA 5.173.3 application. The immoService parametEPSS 0.8%CVE-2020-27230MEDIUMA number of exploitable SQL injection vulnerabilities exists in ‘patientslist.do’ page of OpenClinic GA 5.173.3 application. The findSector EPSS 0.8%CVE-2020-27231MEDIUMA number of exploitable SQL injection vulnerabilities exists in ‘patientslist.do’ page of OpenClinic GA 5.173.3 application. The findDistricEPSS 0.8%CVE-2020-27229MEDIUMA number of exploitable SQL injection vulnerabilities exists in ‘patientslist.do’ page of OpenClinic GA 5.173.3 application. The findPersonIEPSS 0.8%CVE-2024-4808MEDIUMKashipara College Management System delete_faculty.php sql injectionEPSS 0.8%CVE-2020-27245MEDIUMAn exploitable SQL injection vulnerability exists in ‘listImmoLabels.jsp’ page of OpenClinic GA 5.173.3 application. The immoBuyer parameterEPSS 0.8%CVE-2022-23767HIGHSecureGate authentication bypass vulnerabilityEPSS 0.8%CVE-2023-44163CRITICALOnline Movie Ticket Booking System v1.0 - Multiple Unauthenticated SQL Injections (SQLi)EPSS 0.8%CVE-2023-6305MEDIUMSourceCodester Free and Open Source Inventory Management System suppliar_data.php sql injectionEPSS 0.8%CVE-2023-43739CRITICALOnline Book Store Project v1.0 - Unauthenticated SQL Injection (SQLi)EPSS 0.8%CVE-2023-27463HIGHA vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.3). The audit log form of affected applications is vulnerable tEPSS 0.8%CVE-2023-25350HIGHFaveo Helpdesk 1.0-1.11.1 is vulnerable to SQL Injection. When the user logs in through the login box, he has no judgment on the validity ofEPSS 0.8%CVE-2023-44166CRITICALOnline Movie Ticket Booking System v1.0 - Multiple Unauthenticated SQL Injections (SQLi)EPSS 0.8%CVE-2023-44164CRITICALOnline Movie Ticket Booking System v1.0 - Multiple Unauthenticated SQL Injections (SQLi)EPSS 0.8%CVE-2022-43531HIGH Vulnerabilities in the web-based management interface of ClearPass Policy Manager could allow an authenticated remote attacker to conduct SEPSS 0.8%CVE-2023-5373HIGHSourceCodester Online Computer and Laptop Store Master.php register sql injectionEPSS 0.8%CVE-2022-46956HIGHDynamic Transaction Queuing System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/manage_user.pEPSS 0.8%CVE-2022-46127HIGHHelmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/classes/Master.php?f=delete_product.EPSS 0.8%CVE-2022-40099HIGHOnline Tours & Travels Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/update_EPSS 0.8%CVE-2022-43354HIGHSanitization Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/?page=orders/manaEPSS 0.8%