Fallos del tipo CWE-89

11.706 resultados
CVE-2024-32888CRITICALAmazon JDBC Driver for Redshift SQL Injection via line comment generationEPSS 0.8%CVE-2024-0685MEDIUMNinja Forms Contact Form <= 3.7.1 - Unauthenticated Second Order SQL InjectionEPSS 0.8%CVE-2022-43022MEDIUMOpenCATS v0.9.6 was discovered to contain a SQL injection vulnerability via the tag_id variable in the Tag deletion function.EPSS 0.8%CVE-2023-4188CRITICALSQL Injection in instantsoft/icms2EPSS 0.8%CVE-2022-43020MEDIUMOpenCATS v0.9.6 was discovered to contain a SQL injection vulnerability via the tag_id variable in the Tag update function.EPSS 0.8%CVE-2022-43023MEDIUMOpenCATS v0.9.6 was discovered to contain a SQL injection vulnerability via the importID parameter in the Import viewerrors function.EPSS 0.8%CVE-2022-43021MEDIUMOpenCATS v0.9.6 was discovered to contain a SQL injection vulnerability via the entriesPerPage variable.EPSS 0.8%CVE-2023-7106MEDIUMcode-projects E-Commerce Website sql injectionEPSS 0.8%CVE-2023-1984MEDIUMSourceCodester Complaint Management System POST Parameter check_availability.php sql injectionEPSS 0.8%CVE-2025-30473HIGHApache Airflow Common SQL Provider: Remote Code Execution via Sql InjectionEPSS 0.8%CVE-2023-47128CRITICALpiccolo SQL Injection via named transaction savepointsEPSS 0.8%CVE-2016-15018MEDIUMkrail-jpa sql injectionEPSS 0.8%CVE-2023-48078CRITICALSQL Injection vulnerability in add.php in Simple CRUD Functionality v1.0 allows attackers to run arbitrary SQL commands via the 'title' paraEPSS 0.8%CVE-2023-27041CRITICALSchool Registration and Fee System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at/bilal final/edit_useEPSS 0.8%CVE-2023-4848MEDIUMSourceCodester Simple Book Catalog App delete_book.php sql injectionEPSS 0.8%CVE-2022-45535MEDIUMAeroCMS v0.0.1 was discovered to contain a SQL Injection vulnerability via the edit parameter at \admin\categories.php. This vulnerability aEPSS 0.8%CVE-2025-22652HIGHWordPress Payment Forms for Paystack plugin <= 4.0.1 - SQL Injection vulnerabilityEPSS 0.8%CVE-2024-11970MEDIUMcode-projects Concert Ticket Ordering System tour(cor).php sql injectionEPSS 0.8%CVE-2024-54292CRITICALWordPress Appsplate plugin <= 2.1.3 - SQL Injection vulnerabilityEPSS 0.8%CVE-2024-51327CRITICALSQL Injection in loginform.php in ProjectWorld's Travel Management System v1.0 allows remote attackers to bypass authentication via SQL InjeEPSS 0.8%