Fallos del tipo CWE-89
11.621 resultadosCVE-2022-1182—Visual Slide Box Builder <= 3.2.9 - Subscriber+ SQLiEPSS 1.3%CVE-2024-12909CRITICALSQL Injection to RCE in run-llama/llama_indexEPSS 1.3%CVE-2025-22461HIGHSQL injection in Ivanti Endpoint Manager before version 2024 SU1 or before version 2022 SU7 allows a remote authenticated attacker with admiEPSS 1.3%CVE-2018-8914HIGHSQL injection vulnerability in UPnP DMA in Synology Media Server before 1.7.6-2842 and before 1.4-2654 allows remote attackers to execute arEPSS 1.3%CVE-2023-30245CRITICALSQL injection vulnerability found in Judging Management System v.1.0 allows a remote attacker to execute arbitrary code via the crit_id paraEPSS 1.3%CVE-2023-30246CRITICALSQL injection vulnerability found in Judging Management System v.1.0 allows a remote attacker to execute arbitrary code via the contestant_iEPSS 1.3%CVE-2024-11958CRITICALSQL Injection in run-llama/llama_indexEPSS 1.3%CVE-2024-10140MEDIUMcode-projects Pharmacy Management System manage_supplier.php sql injectionEPSS 1.3%CVE-2025-48281CRITICALWordPress MyStyle Custom Product Designer plugin <= 3.21.1 - SQL Injection VulnerabilityEPSS 1.3%CVE-2024-32136HIGHWordPress BWL Advanced FAQ Manager plugin <= 2.0.3 - Auth. SQL Injection vulnerabilityEPSS 1.3%CVE-2021-25064—Wow Countdowns <= 3.1.2 - Admin+ SQLiEPSS 1.3%CVE-2024-45174HIGHAn issue was discovered in za-internet C-MOR Video Surveillance 5.2401 and 6.00PL01. Due to improper validation of user-supplied data, diffeEPSS 1.3%CVE-2022-35864MEDIUMThis vulnerability allows remote attackers to disclose sensitive information on affected installations of BMC Track-It! 20.21.02.109. AuthenEPSS 1.3%CVE-2017-12364—A SQL Injection vulnerability in the web framework of Cisco Prime Service Catalog could allow an unauthenticated, remote attacker to executeEPSS 1.3%CVE-2021-24662—Game Server Status <= 1.0 - Admin+ SQL InjectionEPSS 1.3%CVE-2022-22735—Simple Quotation <= 1.3.2 - Subscriber+ SQL injectionEPSS 1.3%CVE-2021-24952—Conversios.io < 4.6.2 - Subscriber+ SQL InjectionEPSS 1.3%CVE-2023-27707HIGHSQL injection vulnerability found in DedeCMS v.5.7.106 allows a remote attacker to execute arbitrary code via the rank_* parameter in the /dEPSS 1.3%CVE-2023-27709HIGHSQL injection vulnerability found in DedeCMS v.5.7.106 allows a remote attacker to execute arbitrary code via the rank_* parameter in the /dEPSS 1.3%CVE-2023-25196—Apache Fineract: SQL injection vulnerability EPSS 1.3%