Fallos del tipo CWE-89

11.706 resultados
CVE-2023-1969MEDIUMSourceCodester Online Eyewear Shop GET Parameter manage_stock.php sql injectionEPSS 0.8%CVE-2023-49989CRITICALHotel Booking Management v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at update.php.EPSS 0.8%CVE-2024-11632MEDIUMcode-projects Simple Car Rental System book_car.php sql injectionEPSS 0.8%CVE-2024-10509MEDIUMCodezips Online Institute Management System login.php sql injectionEPSS 0.8%CVE-2023-1563MEDIUMSourceCodester Student Study Center Desk Management System assign.php sql injectionEPSS 0.8%CVE-2023-3068MEDIUMCampcodes Retro Cellphone Online Store modal_add_product.php sql injectionEPSS 0.8%CVE-2024-34226CRITICALSQL injection vulnerability in /php-sqlite-vms/?page=manage_visitor&id=1 in SourceCodester Visitor Management System 1.0 allow attackers to EPSS 0.8%CVE-2023-3062MEDIUMcode-projects Agro-School Management System index.php sql injectionEPSS 0.8%CVE-2023-1675MEDIUMSourceCodester School Registration and Fee System GET Parameter edit_stud.php sql injectionEPSS 0.8%CVE-2023-4741MEDIUMIBOS OA Delete Logs del sql injectionEPSS 0.8%CVE-2023-24219CRITICALLuckyframeWEB v3.5 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /system/UserMapper.xml.EPSS 0.8%CVE-2026-0603HIGHOrg.hibernate/hibernate-core: hibernate: information disclosure and data deletion via second-order sql injectionEPSS 0.8%CVE-2024-9080MEDIUMcode-projects Student Record System pincode-verification.php sql injectionEPSS 0.8%CVE-2023-24220CRITICALLuckyframeWEB v3.5 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /system/RoleMapper.xml.EPSS 0.8%CVE-2023-1440MEDIUMSourceCodester Automatic Question Paper Generator System GET Parameter manage_user.php sql injectionEPSS 0.8%CVE-2023-24221CRITICALLuckyframeWEB v3.5 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /system/DeptMapper.xml.EPSS 0.8%CVE-2024-1173HIGHWP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting <= 1.13.1 - Authenticated (AccountingManager+) SQL InjectionEPSS 0.8%CVE-2024-27941HIGHA vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected client systems do not properly sanitize input EPSS 0.8%CVE-2023-3145MEDIUMSourceCodester Online Discussion Forum Site sql injectionEPSS 0.8%CVE-2023-3147MEDIUMSourceCodester Online Discussion Forum Site view_category.php sql injectionEPSS 0.8%