Fallos del tipo CWE-89

11.820 resultados
CVE-2025-2734MEDIUMPHPGurukul Old Age Home Management System aboutus.php sql injectionEPSS 0.5%CVE-2025-2362MEDIUMPHPGurukul Pre-School Enrollment System contact-us.php sql injectionEPSS 0.5%CVE-2023-28849CRITICALGLPI vulnerable to SQL injection and Stored XSS via inventory agent requestEPSS 0.5%CVE-2025-1572MEDIUMKiviCare – Clinic & Patient Management System (EHR) <= 3.6.7 - Authenticated (Doctor+) SQL Injection via 'u_id' ParameterEPSS 0.5%CVE-2024-37112CRITICALWordPress WishList Member X plugin < 3.26.7 - Unauthenticated Arbitrary SQL Query Execution vulnerabilityEPSS 0.5%CVE-2024-32551HIGHWordPress SP Project & Document Manage plugin <= 4.71 - Auth. SQL Injection vulnerabilityEPSS 0.5%CVE-2024-2871MEDIUMMedia Library Assistant <= 3.13 - Authenticated (Contributor+) SQL Injection via ShortcodeEPSS 0.5%CVE-2024-13152CRITICALSQLi in BSS Software's Mobuy Online Machinery Monitoring PanelEPSS 0.5%CVE-2024-6479MEDIUMSIP Reviews Shortcode for WooCommerce <= 1.2.3 - Authenticated (Contributor+) SQL InjectionEPSS 0.5%CVE-2024-5543HIGHSlideshow Gallery LITE <= 1.8.1 - Authenticated (Contributor+) SQL InjectionEPSS 0.5%CVE-2024-31241HIGHWordPress LearnPress Export Import plugin <= 4.0.3 - Auth. SQL Injection vulnerabilityEPSS 0.5%CVE-2025-10655HIGHFrappe Helpdesk 1.14.0 — SQL Injection in dashboard get_dashboard_dataEPSS 0.5%CVE-2024-48231HIGHFunadmin 5.0.2 is vulnerable to SQL Injection via the selectFields parameter in the index method of \backend\controller\auth\Auth.php.EPSS 0.5%CVE-2025-3559MEDIUMghostxbh uzy-ssm-mall 20 ForeProductListController sql injectionEPSS 0.5%CVE-2026-26695CRITICALcode-projects Simple Student Alumni System v1.0 is vulnerable to SQL Injection in /TracerStudy/recordstudent_edit.php.EPSS 0.5%CVE-2025-4781MEDIUMPHPGurukul Park Ticketing Management System forgot-password.php sql injectionEPSS 0.5%CVE-2026-26696CRITICALcode-projects Simple Student Alumni System v1.0 is vulnerable to SQL Injection in /TracerStudy/recordteacher_edit.php.EPSS 0.5%CVE-2025-22691HIGHWordPress WP Travel plugin <= 10.1.3 - SQL Injection vulnerabilityEPSS 0.5%CVE-2025-3856MEDIUMxxyopen Novel-Plus searchByPage sql injectionEPSS 0.5%CVE-2025-2665MEDIUMPHPGurukul Online Security Guards Hiring System bwdates-reports-details.php sql injectionEPSS 0.5%