Fallos del tipo CWE-89

11.731 resultados
CVE-2026-34612CRITICALKestra: Remote Code Execution via SQL InjectionEPSS 0.7%CVE-2023-1267CRITICALSQLi in Ulkem Company's PtteM KartEPSS 0.7%CVE-2021-35284CRITICALSQL Injection vulnerability in function get_user in login_manager.php in rizalafani cms-php v1.EPSS 0.7%CVE-2024-4071MEDIUMKashipara Online Furniture Shopping Ecommerce Website prodInfo.php sql injectionEPSS 0.7%CVE-2023-29598CRITICALlmxcms v1.4.1 was discovered to contain a SQL injection vulnerability via the setbook parameter at index.php.EPSS 0.7%CVE-2024-7498MEDIUMitsourcecode Airline Reservation System Admin Login Page login.php login2 sql injectionEPSS 0.7%CVE-2025-66335MEDIUMApache Doris MCP Server: MCP SQL injectEPSS 0.7%CVE-2024-13025MEDIUMCodezips College Management System faculty.php sql injectionEPSS 0.7%CVE-2023-2036MEDIUMCampcodes Video Sharing Website upload.php sql injectionEPSS 0.7%CVE-2025-4793MEDIUMPHPGurukul Online Course Registration edit-student-profile.php sql injectionEPSS 0.7%CVE-2025-0561MEDIUMitsourcecode Farm Management System add-pig.php sql injectionEPSS 0.7%CVE-2023-3694MEDIUMSourceCodester/projectworlds House Rental and Property Listing index.php sql injectionEPSS 0.7%CVE-2024-7682MEDIUMcode-projects Job Portal rw_i_nat.php sql injectionEPSS 0.7%CVE-2024-25894CRITICALChurchCRM 5.5.0 /EventEditor.php is vulnerable to Blind SQL Injection (Time-based) via the EventCount POST parameter.EPSS 0.7%CVE-2024-9035MEDIUMcode-projects Blood Bank Management System Admin Login login.php sql injectionEPSS 0.7%CVE-2022-3122MEDIUMSourceCodester Clinics Patient Management System medicine_details.php sql injectionEPSS 0.7%CVE-2024-25400CRITICALSubrion CMS 4.2.1 is vulnerable to SQL Injection via ia.core.mysqli.php. NOTE: this is disputed by multiple third parties because it refers EPSS 0.7%CVE-2023-3873HIGHCampcodes Beauty Salon Management System index.php sql injectionEPSS 0.7%CVE-2024-41512HIGHA SQL Injection vulnerability in "ccHandler.aspx" in all versions of CADClick v.1.11.0 and before allows remote attackers to execute arbitraEPSS 0.7%CVE-2024-23810HIGHA vulnerability has been identified in SINEC NMS (All versions < V2.0 SP1). The affected application is vulnerable to SQL injection. This coEPSS 0.7%