Fallos del tipo CWE-89
11.617 resultadosCVE-2023-25813CRITICALSQL Injection via replacements in sequelizeEPSS 1.4%CVE-2021-24131—Anti-Spam by CleanTalk < 5.149 - Multiple Authenticated SQL InjectionsEPSS 1.4%CVE-2022-0362MEDIUMSQL Injection in star7th/showdocEPSS 1.4%CVE-2024-30922CRITICALSQL Injection vulnerability in DerbyNet v9.0 allows a remote attacker to execute arbitrary code via the where Clause in Award Document RendeEPSS 1.4%CVE-2018-14623MEDIUMA SQL injection flaw was found in katello's errata-related API. An authenticated remote attacker can craft input data to force a malformed SEPSS 1.4%CVE-2025-54726CRITICALWordPress JS Archive List Plugin < 6.1.6 - SQL Injection VulnerabilityEPSS 1.4%CVE-2020-20913CRITICALSQL Injection vulnerability found in Ming-Soft MCMS v.4.7.2 allows a remote attacker to execute arbitrary code via basic_title parameter.EPSS 1.4%CVE-2018-0120—A vulnerability in the web framework of Cisco Unified Communications Manager could allow an authenticated, remote attacker to conduct an SQLEPSS 1.4%CVE-2025-13138HIGHWP Directory Kit <= 1.4.3 - Unauthenticated SQL Injection via select_2_ajax() FunctionEPSS 1.4%CVE-2021-22856CRITICALChanGate EnterPrise Co., Ltd property management system - SQL InjectionEPSS 1.4%CVE-2021-4134HIGHFancy Product Designer <= 4.7.4 Admin+ SQL InjectionEPSS 1.4%CVE-2021-24130—WP Google Map Plugin < 4.1.5 - Authenticated SQL InjectionEPSS 1.4%CVE-2021-24451—Export Users With Meta < 0.6.5 - Authenticated SQL InjectionEPSS 1.4%CVE-2022-1219HIGHSQL injection in RecyclebinController.php in pimcore/pimcoreEPSS 1.4%CVE-2020-10512HIGHHGiga C&Cmail - SQL InjectionEPSS 1.4%CVE-2024-12727CRITICALA pre-auth SQL injection vulnerability in the email protection feature of Sophos Firewall versions older than 21.0 MR1 (21.0.1) allows accesEPSS 1.4%CVE-2021-24483—Poll Maker < 3.2.1 - Authenticated Blind SQL InjectionsEPSS 1.4%CVE-2024-3293HIGHrtMedia for WordPress, BuddyPress and bbPress <= 4.6.18 - Authenticated (Contributor+) SQL Injection via rtmedia_gallery ShortcodeEPSS 1.4%CVE-2020-36071HIGHSQL injection vulnerability found in Tailor Management System v.1 allows a remote authenticated attacker to execute arbitrary code via the cEPSS 1.4%CVE-2020-5292HIGHTime-based blind injection in LeantimeEPSS 1.4%