Fallos del tipo CWE-89

11.804 resultados
CVE-2023-40921CRITICALSQL Injection vulnerability in functions/point_list.php in Common Services soliberte before v4.3.03 allows attackers to obtain sensitive infEPSS 0.5%CVE-2019-25514HIGHJettweb PHP Hazir Haber Sitesi Scripti V3 SQL InjectionEPSS 0.5%CVE-2024-3060MEDIUMENL Newsletter <= 1.0.1 - Admin+ SQL InjectionEPSS 0.5%CVE-2024-2943MEDIUMCampcodes Online Examination System deleteExamExe.php sql injectionEPSS 0.5%CVE-2021-47918HIGHSimple CMS 2.1 SQL Injection Vulnerability via Users ModuleEPSS 0.5%CVE-2025-61848MEDIUMAn improper neutralization of special elements used in an sql command ('sql injection') vulnerability in Fortinet FortiAnalyzer 7.6.0 througEPSS 0.5%CVE-2026-4798HIGHAvada Builder <= 3.15.1 - Unauthenticated SQL Injection via 'product_order' ParameterEPSS 0.5%CVE-2024-7845MEDIUMSourceCodester Online Graduate Tracer System fetch_it.php sql injectionEPSS 0.5%CVE-2024-7224MEDIUMSourceCodester Lot Reservation Management System lot_details.php sql injectionEPSS 0.5%CVE-2024-50970MEDIUMA SQL injection vulnerability in orderview1.php of Itsourcecode Online Furniture Shopping Project 1.0 allows remote attackers to execute arbEPSS 0.5%CVE-2024-4318HIGHTutor LMS <= 2.7.0 - Authenticated (Instructor+) SQL InjectionEPSS 0.5%CVE-2023-2080HIGHImproper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Forcepoint Cloud Security Gateway (CSGEPSS 0.5%CVE-2024-6953MEDIUMitsourcecode Tailoring Management System sms.php sql injectionEPSS 0.5%CVE-2023-7180MEDIUMTongda OA 2017 delete.php sql injectionEPSS 0.5%CVE-2026-1443MEDIUMcode-projects Online Music Site AdminDeleteUser.php sql injectionEPSS 0.5%CVE-2024-33805CRITICALA SQL injection vulnerability in /model/get_student.php in campcodes Complete Web-Based School Management System 1.0 allows an attacker to eEPSS 0.5%CVE-2024-11711HIGHWP Job Portal <= 2.2.1 - Unauthenticated SQL InjectionEPSS 0.5%CVE-2024-33808CRITICALA SQL injection vulnerability in /model/get_timetable.php in campcodes Complete Web-Based School Management System 1.0 allows an attacker toEPSS 0.5%CVE-2024-25532CRITICALRuvarOA v6.01 and v12.01 were discovered to contain a SQL injection vulnerability via the bt_id parameter at /include/get_dict.aspx.EPSS 0.5%CVE-2024-34929CRITICALA SQL injection vulnerability in /view/find_friends.php in Campcodes Complete Web-Based School Management System 1.0 allows an attacker to eEPSS 0.5%