Fallos del tipo CWE-89

11.714 resultados
CVE-2023-30848HIGHPimcore SQL Injection Vulnerability in Admin Search Find APIEPSS 0.7%CVE-2024-42558CRITICALHotel Management System commit 91caab8 was discovered to contain a SQL injection vulnerability via the book_id parameter at admin_modify_rooEPSS 0.7%CVE-2022-38148HIGHSilverstripe silverstripe/framework through 4.11 allows SQL Injection.EPSS 0.7%CVE-2024-30928HIGHSQL Injection vulnerability in DerbyNet v9.0 and below allows attackers to execute arbitrary SQL commands via 'classids' Parameter in ajax/qEPSS 0.7%CVE-2024-1514CRITICALWP eCommerce <= 3.15.1 - Unauthenticated SQL InjectionEPSS 0.7%CVE-2013-10023MEDIUMEditorial Calendar Plugin edcal.php edcal_filter_where sql injectionEPSS 0.7%CVE-2015-10068MEDIUMdanynab movify-j ReviewServiceImpl.java getByMovieId sql injectionEPSS 0.7%CVE-2014-125099MEDIUMI Recommend This Plugin dot-irecommendthis.php sql injectionEPSS 0.7%CVE-2023-5780HIGHTongda OA 2017 delete.php sql injectionEPSS 0.7%CVE-2022-4935HIGHWCFM Marketplace <= 3.4.11 - Missing AuthorizationEPSS 0.7%CVE-2024-12490MEDIUMcode-projects Online Class and Exam Scheduling System teacher_save.php sql injectionEPSS 0.7%CVE-2023-32128MEDIUMWordPress Cryptocurrency Donation Box – Bitcoin & Crypto Donations Plugin <= 2.2.7 is vulnerable to SQL InjectionEPSS 0.7%CVE-2022-43462CRITICALWordPress IP Blacklist Cloud Plugin <= 5.00 is vulnerable to SQL Injection (SQLi) vulnerabilityEPSS 0.7%CVE-2023-2367MEDIUMSourceCodester Faculty Evaluation System manage_academic.php sql injectionEPSS 0.7%CVE-2023-5374MEDIUMSourceCodester Online Computer and Laptop Store products.php sql injectionEPSS 0.7%CVE-2024-57658HIGHAn issue in the sql_tree_hash_1 component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crEPSS 0.7%CVE-2024-57656HIGHAn issue in the sqlc_add_distinct_node component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS)EPSS 0.7%CVE-2024-57653HIGHAn issue in the qst_vec_set_copy component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via cEPSS 0.7%CVE-2024-57642HIGHAn issue in the dfe_inx_op_col_def_table component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoEPSS 0.7%CVE-2024-57652HIGHAn issue in the numeric_to_dv component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafEPSS 0.7%