Fallos del tipo CWE-89
11.622 resultadosCVE-2023-27707HIGHSQL injection vulnerability found in DedeCMS v.5.7.106 allows a remote attacker to execute arbitrary code via the rank_* parameter in the /dEPSS 1.3%CVE-2017-6754—A vulnerability in the web-based management interface of the Cisco Smart Net Total Care (SNTC) Software Collector Appliance 3.11 could allowEPSS 1.3%CVE-2023-38100HIGHNETGEAR ProSAFE Network Management System clearAlertByIds SQL Injection Privilege Escalation VulnerabilityEPSS 1.3%CVE-2021-24606—Availability Calendar < 1.2.1 - Authenticated SQL InjectionEPSS 1.3%CVE-2021-24456—Quiz Maker < 6.2.0.9 - Multiple Authenticated Blind SQL InjectionsEPSS 1.3%CVE-2021-35048CRITICALUnauthenticated SQL Injection Vulnerability in Fidelis Network and DeceptionEPSS 1.3%CVE-2021-24669—MAZ Loader < 1.3.3 - Contributor+ SQL InjectionEPSS 1.3%CVE-2021-24835—WCFM - Frontend Manager for WooCommerce < 6.5.12 - Customer/Subscriber+ SQL InjectionEPSS 1.3%CVE-2021-24758—Email Log < 2.4.7 - Admin+ SQL InjectionEPSS 1.3%CVE-2024-23538CRITICALApache Fineract: Under certain system configurations, the sqlSearch parameter was vulnerable to SQL injection attacks, potentially allowing attackers to manipulate database queries.EPSS 1.3%CVE-2024-40502CRITICALSQL injection vulnerability in Hospital Management System Project in ASP.Net MVC 1 allows aremote attacker to execute arbitrary code via theEPSS 1.3%CVE-2021-25037—All In One SEO < 4.1.5.3 - Authenticated SQL InjectionEPSS 1.3%CVE-2011-0467HIGHSQL injection in SUSE studio via select parameterEPSS 1.3%CVE-2022-30599—A flaw was found in moodle where an SQL injection risk was identified in Badges code relating to configuring criteria.EPSS 1.3%CVE-2022-31367HIGHStrapi before 3.6.10 and 4.x before 4.1.10 mishandles hidden attributes within admin API responses.EPSS 1.3%CVE-2016-10553—sequelize is an Object-relational mapping, or a middleman to convert things from Postgres, MySQL, MariaDB, SQLite and Microsoft SQL Server iEPSS 1.3%CVE-2025-3834HIGHSQL InjectionEPSS 1.3%CVE-2024-3690MEDIUMPHPGurukul Small CRM Change Password sql injectionEPSS 1.3%CVE-2023-45657HIGHWordPress Nexter Theme <= 2.0.3 is vulnerable to SQL InjectionEPSS 1.3%CVE-2013-10044HIGHOpenEMR ≤ 4.1.1 SQL Injection Privilege Escalation and RCEEPSS 1.3%