Fallos del tipo CWE-89

11.768 resultados
CVE-2025-4489MEDIUMCampcodes Online Food Ordering System user-router.php sql injectionEPSS 0.6%CVE-2024-10597MEDIUMESAFENET CDG PolicyActionService.java delPolicyAction sql injectionEPSS 0.6%CVE-2024-33164CRITICALJ2EEFAST v2.7.0 was discovered to contain a SQL injection vulnerability via the sql_filter parameter in the authUserList() function.EPSS 0.6%CVE-2024-38347HIGHCodeProjects Health Care hospital Management System v1.0 was discovered to contain a SQL injection vulnerability in the Room Information modEPSS 0.6%CVE-2023-41014CRITICALcode-projects.org Online Job Portal 1.0 is vulnerable to SQL Injection via the Username parameter for "Employer."EPSS 0.6%CVE-2024-10278MEDIUMESAFENET CDG ReUserOrganiseService.java sql injectionEPSS 0.6%CVE-2024-54215CRITICALWordPress Revy plugin <= 1.18 - Unauthenticated SQL Injection vulnerabilityEPSS 0.6%CVE-2025-4490MEDIUMCampcodes Online Food Ordering System view-ticket-admin.php sql injectionEPSS 0.6%CVE-2023-0528MEDIUMSourceCodester Online Tours & Travels Management System abc.php sql injectionEPSS 0.6%CVE-2024-25250CRITICALSQL Injection vulnerability in code-projects Agro-School Management System 1.0 allows attackers to run arbitrary code via the Login page.EPSS 0.6%CVE-2024-10279MEDIUMESAFENET CDG PrintPolicyService.java sql injectionEPSS 0.6%CVE-2025-0299MEDIUMcode-projects Online Book Shop search_result.php sql injectionEPSS 0.6%CVE-2024-57769HIGHJFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the component borrowmoney/listData?applyUser.EPSS 0.6%CVE-2024-7150HIGHSlider by 10Web – Responsive Image Slider <= 1.2.57 - Authenticated (Contributor+) SQL Injection via id ParameterEPSS 0.6%CVE-2025-14536MEDIUMcode-projects Class and Exam Timetable Management Login index.php sql injectionEPSS 0.6%CVE-2024-57775HIGHJFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the component getWorkFlowHis?insid.EPSS 0.6%CVE-2023-7144MEDIUMgopeak MasterLab HTTP POST Request Feature.php sqlInject sql injectionEPSS 0.6%CVE-2024-0342MEDIUMInis Sqlite.php sql injectionEPSS 0.6%CVE-2024-31961CRITICALA SQL injection vulnerability in unit.php in Sonic Shopfloor.guide before 3.1.3 allows remote attackers to execute arbitrary SQL commands viEPSS 0.6%CVE-2024-57770HIGHJFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the component apply/save#oaContractApply.id.EPSS 0.6%