Fallos del tipo CWE-89

11.820 resultados
CVE-2025-9767MEDIUMitsourcecode Sports Management System sporttype.php sql injectionEPSS 0.5%CVE-2025-10482MEDIUMSourceCodester Online Student File Management System index.php sql injectionEPSS 0.5%CVE-2025-63451CRITICALCar-Booking-System-PHP v.1.0 is vulnerable to SQL Injection in /carlux/sign-in.php.EPSS 0.5%CVE-2025-25513CRITICALSeacms <=13.3 is vulnerable to SQL Injection in admin_members.php.EPSS 0.5%CVE-2022-4739HIGHSourceCodester School Dormitory Management System Admin Login sql injectionEPSS 0.5%CVE-2025-10667MEDIUMitsourcecode Online Discussion Forum compose_msg.php sql injectionEPSS 0.5%CVE-2024-42404HIGHSQL injection vulnerability in Welcart e-Commerce prior to 2.11.2 allows an attacker who can login to the product to obtain or alter the infEPSS 0.5%CVE-2025-1379MEDIUMcode-projects Real Estate Property Management System CustomerReport.php sql injectionEPSS 0.5%CVE-2024-45755HIGHAn issue was discovered in Centreon centreon-dsm-server 24.10.x before 24.10.0, 24.04.x before 24.04.3, 23.10.x before 23.10.1, 23.04.x befoEPSS 0.5%CVE-2025-25521CRITICALSeacms <=13.3 is vulnerable to SQL Injection in admin_type_news.php.EPSS 0.5%CVE-2024-45756HIGHAn issue was discovered in Centreon centreon-open-tickets 24.10.x before 24.10.0, 24.04.x before 24.04.2, 23.10.x before 23.10.1, 23.04.x beEPSS 0.5%CVE-2024-8624CRITICALMDTF – Meta Data and Taxonomies Filter <= 1.3.3.3 - Authenticated (Contributor+) SQL InjectionEPSS 0.5%CVE-2025-61020HIGHAn issue in the sqlo_strip_in_join component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) viaEPSS 0.5%CVE-2025-25516CRITICALSeacms <=13.3 is vulnerable to SQL Injection in admin_paylog.php.EPSS 0.5%CVE-2025-25519CRITICALSeacms <=13.3 is vulnerable to SQL Injection in admin_zyk.php.EPSS 0.5%CVE-2025-61023HIGHAn issue in the st_compare component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via craftedEPSS 0.5%CVE-2024-53354MEDIUMMultiple SQL injection vulnerabilities in EasyVirt DCScope <= 8.6.0 and CO2Scope <= 1.3.0 allows remote authenticated attackers to execute aEPSS 0.5%CVE-2026-12045CRITICALpgAdmin 4: AI Assistant read-only transaction bypass allows unauthorised writes and remote code executionEPSS 0.5%CVE-2024-12832HIGHArista NG Firewall ReportEntry SQL Injection Arbitrary File Read and Write VulnerabilityEPSS 0.5%CVE-2025-25517CRITICALSeacms <=13.3 is vulnerable to SQL Injection in admin_reslib.php.EPSS 0.5%