Fallos del tipo CWE-89

11.715 resultados
CVE-2024-7505MEDIUMitsourcecode Bike Delivery System contact_us_action.php sql injectionEPSS 0.7%CVE-2024-22627HIGHComplete Supplier Management System v1.0 is vulnerable to SQL Injection via /Supply_Management_System/admin/edit_distributor.php?id=.EPSS 0.7%CVE-2020-26630MEDIUMA Time-Based SQL Injection vulnerability was discovered in Hospital Management System V4.0 which can allow an attacker to dump database infoEPSS 0.7%CVE-2022-2812HIGHSourceCodester Guest Management System index.php sql injectionEPSS 0.7%CVE-2024-7764HIGHSQL Injection in vanna-ai/vannaEPSS 0.7%CVE-2022-38492HIGHAn issue was discovered in EasyVista 2020.2.125.3 and 2022.1.109.0.03. One parameter allows SQL injection. Version 2022.1.110.1.02 fixes theEPSS 0.7%CVE-2024-25312HIGHCode-projects Simple School Managment System 1.0 allows SQL Injection via the 'id' parameter at "School/sub_delete.php?id=5."EPSS 0.7%CVE-2025-45346HIGHSQL Injection vulnerability in Bacula-web before v.9.7.1 allows a remote attacker to execute arbitrary code via a crafted HTTP GET request.EPSS 0.7%CVE-2024-0301MEDIUMfhs-opensource iparking PayTempOrderAction.java getData sql injectionEPSS 0.7%CVE-2024-3253MEDIUMSourceCodester Internship Portal Management System add_admin.php sql injectionEPSS 0.7%CVE-2023-1153CRITICALSQLi in PacsraporEPSS 0.7%CVE-2022-38490CRITICALAn issue was discovered in EasyVista 2020.2.125.3 and 2022.1.109.0.03. Some parameters allow SQL injection. Version 2022.1.110.1.02 correctsEPSS 0.7%CVE-2024-30871HIGHnetentsec NS-ASG 6.3 is vulnerable to SQL Injection via /WebPages/applyhardware.php.EPSS 0.7%CVE-2024-56801MEDIUMTasklists has Blind SQL Injection in /ajax/reorder.phpEPSS 0.7%CVE-2023-1091CRITICALSQL Injection found in ALPATA's Licensed Warehousing Automation SystemEPSS 0.7%CVE-2024-3258MEDIUMSourceCodester Internship Portal Management System add_activity.php sql injectionEPSS 0.7%CVE-2023-29096HIGHWordPress Contact Form to DB by BestWebSoft Plugin <= 1.7.0 is vulnerable to SQL InjectionEPSS 0.7%CVE-2024-3254MEDIUMSourceCodester Internship Portal Management System edit_admin.php sql injectionEPSS 0.7%CVE-2023-2851CRITICALSQLi in CeppatronEPSS 0.7%CVE-2024-25309HIGHCode-projects Simple School Managment System 1.0 allows SQL Injection via the 'pass' parameter at School/teacher_login.php.EPSS 0.7%