Fallos del tipo CWE-89

11.714 resultados
CVE-2023-2053MEDIUMCampcodes Advanced Online Voting System candidates_row.php sql injectionEPSS 0.7%CVE-2022-40446HIGHZZCMS 2022 was discovered to contain a SQL injection vulnerability via the component /admin/sendmailto.php?tomail=&groupid=.EPSS 0.7%CVE-2023-2047MEDIUMCampcodes Advanced Online Voting System login.php sql injectionEPSS 0.7%CVE-2023-49666CRITICALBilling Software v1.0 - Multiple Unauthenticated SQL Injections (SQLi)EPSS 0.7%CVE-2024-5046MEDIUMSourceCodester Online Examination System registeracc.php sql injectionEPSS 0.7%CVE-2023-0771HIGH SQL Injection in ampache/ampacheEPSS 0.7%CVE-2024-5064MEDIUMPHPGurukul Online Course Registration System news-details.php sql injectionEPSS 0.7%CVE-2024-5063MEDIUMPHPGurukul Online Course Registration System index.php sql injectionEPSS 0.7%CVE-2024-5118MEDIUMSourceCodester Event Registration System login.php sql injectionEPSS 0.7%CVE-2022-45529MEDIUMAeroCMS v0.0.1 was discovered to contain a SQL Injection vulnerability via the post_category_id parameter at \admin\includes\edit_post.php. EPSS 0.7%CVE-2024-22625HIGHComplete Supplier Management System v1.0 is vulnerable to SQL Injection via /Supply_Management_System/admin/edit_category.php?id=.EPSS 0.7%CVE-2015-10041MEDIUMDovgalyuk AIBattle procedures.php sendComments sql injectionEPSS 0.7%CVE-2024-37486HIGHWordPress Paid Memberships Pro plugin <= 3.0.5 - Authenticated SQL Injection vulnerabilityEPSS 0.7%CVE-2023-39853MEDIUMSQL Injection vulnerability in Dzzoffice version 2.01, allows remote attackers to obtain sensitive information via the doobj and doevent parEPSS 0.7%CVE-2015-10053MEDIUMprodigasistemas curupira passwords_controller.rb sql injectionEPSS 0.7%CVE-2024-13038MEDIUMCodeAstro Simple Loan Management System Login index.php sql injectionEPSS 0.7%CVE-2020-20636HIGHSQL injection vulnerability found in Joyplus-cms v.1.6.0 allows a remote attacker to access sensitive information via the id parameter of thEPSS 0.7%CVE-2024-9678MEDIUMAn SQL Injection vulnerability existed in DLP Extension 11.11.1.3. The vulnerability allowed an attacker to perform arbitrary SQL queries pEPSS 0.7%CVE-2023-1612MEDIUMRebuild list-file sql injectionEPSS 0.7%CVE-2023-4545MEDIUMIBOS OA export&checkids=x sql injectionEPSS 0.7%