Fallos del tipo CWE-89
11.633 resultadosCVE-2024-44812CRITICALSQL Injection vulnerability in Online Complaint Site v.1.0 allows a remote attacker to escalate privileges via the username and password parEPSS 1.2%CVE-2023-26865CRITICALSQL injection vulnerability found in PrestaShop bdroppy v.2.2.12 and before allowing a remote attacker to gain privileges via the BdroppyCroEPSS 1.2%CVE-2020-36541HIGHDemokratian genera_select.php sql injectionEPSS 1.2%CVE-2022-30528CRITICALSQL Injection vulnerability in asith-eranga ISIC tour booking through version published on Feb 13th 2018, allows attackers to execute arbitrEPSS 1.2%CVE-2024-24140HIGHSourcecodester Daily Habit Tracker App 1.0 allows SQL Injection via the parameter 'tracker.'EPSS 1.2%CVE-2021-22851CRITICALHGiga OAKloud Portal - SQL injection -1EPSS 1.2%CVE-2024-24139HIGHSourcecodester Login System with Email Verification 1.0 allows SQL Injection via the 'user' parameter.EPSS 1.2%CVE-2021-21937HIGHA specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulnerability aEPSS 1.2%CVE-2023-20110MEDIUMCisco Smart Software Manager On-Prem SQL Injection VulnerabilityEPSS 1.2%CVE-2024-27299HIGHphpMyFAQ SQL Injection at "Save News"EPSS 1.2%CVE-2019-15995MEDIUMCisco DNA Spaces: Connector SQL Injection VulnerabilityEPSS 1.1%CVE-2023-49547CRITICALCustomer Support System v1 was discovered to contain a SQL injection vulnerability via the username parameter at /customer_support/ajax.php?EPSS 1.1%CVE-2022-46966CRITICALRevenue Collection System v1.0 was discovered to contain a SQL injection vulnerability at step1.php.EPSS 1.1%CVE-2023-28424CRITICALSoko SQL Injection vulnerabilityEPSS 1.1%CVE-2024-54820CRITICALXOne Web Monitor v02.10.2024.530 framework 1.0.4.9 was discovered to contain a SQL injection vulnerability in the login page. This vulnerabiEPSS 1.1%CVE-2022-32964CRITICALITPison OMICARD EDM - SQL InjectionEPSS 1.1%CVE-2021-21926HIGHA specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger these vulnerabilitieEPSS 1.1%CVE-2021-21934HIGHA specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this at ‘imei_filterEPSS 1.1%CVE-2021-33736—A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitEPSS 1.1%CVE-2021-21929HIGHA specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests at ‘prod_filter’ parameter to tEPSS 1.1%