Fallos del tipo CWE-89

11.767 resultados
CVE-2024-42562CRITICALPharmacy Management System commit a2efc8 was discovered to contain a SQL injection vulnerability via the invoice_number parameter at previewEPSS 0.6%CVE-2024-29232MEDIUMImproper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in Alert.Enum webapi component in SynologEPSS 0.6%CVE-2024-29236MEDIUMImproper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in AudioPattern.Delete webapi component iEPSS 0.6%CVE-2025-30365CRITICALSQL Injection in query_geracao_auto.phpEPSS 0.6%CVE-2024-9429MEDIUMcode-projects Restaurant Reservation System filter2.php sql injectionEPSS 0.6%CVE-2024-29227MEDIUMImproper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in Layout.LayoutSave webapi component in EPSS 0.6%CVE-2024-29239MEDIUMImproper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in Recording.CountByCategory webapi compoEPSS 0.6%CVE-2024-29233MEDIUMImproper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in Emap.Delete webapi component in SynoloEPSS 0.6%CVE-2024-2586HIGHSQL injection vulnerability in AMSS++EPSS 0.6%CVE-2024-29230MEDIUMImproper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in SnapShot.CountByCategory webapi componEPSS 0.6%CVE-2024-31025HIGHSQL Injection vulnerability in ECshop 4.x allows an attacker to obtain sensitive information via the file/article.php component.EPSS 0.6%CVE-2024-29237MEDIUMImproper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in ActionRule.Delete webapi component in EPSS 0.6%CVE-2024-2865CRITICALSQLi in Mergen Soft Quality Management SystemEPSS 0.6%CVE-2024-29238MEDIUMImproper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in Log.CountByCategory webapi component iEPSS 0.6%CVE-2024-29234MEDIUMImproper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in Group.Save webapi component in SynologEPSS 0.6%CVE-2024-24013CRITICALA SQL injection vulnerability exists in Novel-Plus v4.3.0-RC1 and prior versions. An attacker can pass crafted offset, limit, and sort paramEPSS 0.6%CVE-2023-3839MEDIUMDedeBIZ sys_sql_query.php sql injectionEPSS 0.6%CVE-2024-2584HIGHSQL injection vulnerability in AMSS++EPSS 0.6%CVE-2024-3685MEDIUMDedeCMS stepselect_main.php sql injectionEPSS 0.6%CVE-2024-29235MEDIUMImproper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in IOModule.EnumLog webapi component in SEPSS 0.6%