Fallos del tipo CWE-89

11.768 resultados
CVE-2023-0534MEDIUMSourceCodester Online Tours & Travels Management System expense_report.php sql injectionEPSS 0.6%CVE-2024-4919MEDIUMCampcodes Online Examination System addCourseExe.php sql injectionEPSS 0.6%CVE-2025-52390CRITICALSaurus CMS Community Edition since commit d886e5b0 (2010-04-23) is vulnerable to a SQL Injection vulnerability in the `prepareSearchQuery()`EPSS 0.6%CVE-2025-11902MEDIUMyanyutao0402 ChanCMS findField sql injectionEPSS 0.6%CVE-2024-10540MEDIUMAppointment Booking Calendar Plugin and Scheduling Plugin – BookingPress <= 1.1.16 - Authenticated (Subscriber+) SQL InjectionEPSS 0.6%CVE-2024-5066MEDIUMPHPGurukul Online Course Registration System pincode-verification.php sql injectionEPSS 0.6%CVE-2025-11903MEDIUMyanyutao0402 ChanCMS update sql injectionEPSS 0.6%CVE-2024-4916MEDIUMCampcodes Online Examination System selExamAttemptExe.php sql injectionEPSS 0.6%CVE-2024-0495MEDIUMKashipara Billing Software HTTP POST Request party_submit.php sql injectionEPSS 0.6%CVE-2024-9034MEDIUMcode-projects Patient Record Management System login.php sql injectionEPSS 0.6%CVE-2025-22507HIGHWordPress WPMU Prefill Post Plugin <= 1.02 - SQL Injection vulnerabilityEPSS 0.6%CVE-2024-30504HIGHWordPress WP Travel Engine plugin <= 5.7.9 - SQL Injection vulnerabilityEPSS 0.6%CVE-2025-2927MEDIUMESAFENET CDG getFileTypeList.jsp sql injectionEPSS 0.6%CVE-2024-30495HIGHWordPress Falang multilanguage for WordPress plugin <= 1.3.47 - SQL Injection vulnerabilityEPSS 0.6%CVE-2023-50838HIGHWordPress NEX-Forms – Ultimate Form Builder Plugin <= 8.5.5 is vulnerable to SQL InjectionEPSS 0.6%CVE-2024-32087HIGHWordPress Product Feed on WooCommerce for Google, Awin, Shareasale, Bing, and More plugin <= 3.5.7 - Auth. SQL Injection (SQLi) vulnerabilityEPSS 0.6%CVE-2024-25843CRITICALIn the module "Import/Update Bulk Product from any Csv/Excel File Pro" (ba_importer) up to version 1.1.28 from Buy Addons for PrestaShop, a EPSS 0.6%CVE-2025-22536HIGHWordPress WP Music Player Plugin <= 1.3 - SQL Injection vulnerabilityEPSS 0.6%CVE-2024-30478HIGHWordPress Announcement & Notification Banner – Bulletin plugin <= 3.8.5 - SQL Injection vulnerabilityEPSS 0.6%CVE-2024-6268MEDIUMlahirudanushka School Management System Login Page login.php sql injectionEPSS 0.6%