Fallos del tipo CWE-89

11.838 resultados
CVE-2024-48465CRITICALThe MRBS version 1.5.0 has an SQL injection vulnerability in the edit_entry_handler.php file, specifically in the rooms%5B%5D parameterEPSS 0.5%CVE-2025-14620MEDIUMcode-projects Student File Management System login_query.php sql injectionEPSS 0.5%CVE-2024-6967MEDIUMSourceCodester Employee and Visitor Gate Pass Logging System sql injectionEPSS 0.5%CVE-2026-26794HIGHGL-iNet GL-AR300M16 v4.3.11 was discovered to contain a SQL injection vulnerability via the add_group() function. This vulnerability allows EPSS 0.5%CVE-2019-25506HIGHFreeSMS 2.1.2 Authentication Bypass via SQL InjectionEPSS 0.5%CVE-2024-11939HIGHCost Calculator Builder PRO <= 3.2.15 - Unauthenticated SQL Injection via dataEPSS 0.5%CVE-2024-29725CRITICALMultiple vulnerabilities in SportsNETEPSS 0.5%CVE-2025-54946CRITICALSUNNET Corporate Training Management System - SQL InjectionEPSS 0.5%CVE-2024-29729CRITICALMultiple vulnerabilities in SportsNETEPSS 0.5%CVE-2024-29730CRITICALMultiple vulnerabilities in SportsNETEPSS 0.5%CVE-2026-33539HIGHParse Server: SQL injection via aggregate and distinct field names in PostgreSQL adapterEPSS 0.5%CVE-2024-52435HIGHWordPress Premium Packages – Sell Digital Products Securely plugin <= 6.0.5 - SQL Injection vulnerabilityEPSS 0.5%CVE-2024-7841MEDIUMSourceCodester Clinics Patient Management System check_user_name.php sql injectionEPSS 0.5%CVE-2024-44756CRITICALNUS-M9 ERP Management Software v3.0.0 was discovered to contain a SQL injection vulnerability via the usercode parameter at /UserWH/checkLogEPSS 0.5%CVE-2024-7702HIGHContact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form & Custom Contact Form builder 2.0 - 2.13.9 - Authenticated (Administrator+) SQL Injection via getLogHistory FunctionEPSS 0.5%CVE-2023-44091HIGHUnauth Time-Based SQL InjectionEPSS 0.5%CVE-2025-1751CRITICALSQL Injection CIGESEPSS 0.5%CVE-2019-25517HIGHJettweb PHP Hazir Haber Sitesi Scripti V1 SQL Injection via haberarsiv.phpEPSS 0.5%CVE-2024-7857MEDIUMMedia Library Folders <= 8.2.2 - Authenticated (Subscriber+) Second-Order SQL InjectionEPSS 0.5%CVE-2025-1356MEDIUMneedyamin Library Card System card.php sql injectionEPSS 0.5%