Fallos del tipo CWE-89
11.633 resultadosCVE-2022-1376CRITICALDelta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection vulnerability exists in DIAE_privgrpHandler.ashx. EPSS 1.1%CVE-2022-1371CRITICALDelta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection vulnerability exists in ReadRegf. This allows an aEPSS 1.1%CVE-2022-1372CRITICALDelta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection vulnerability exists in dlSlog.aspx. This allows aEPSS 1.1%CVE-2022-1375CRITICALDelta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection vulnerability exists in DIAE_slogHandler.ashx. ThiEPSS 1.1%CVE-2022-1377CRITICALDelta Electronics DIAEnergie (All versions prior to 1.8.02.004) has a blind SQL injection vulnerability exists in DIAE_rltHandler.ashx. ThisEPSS 1.1%CVE-2023-46954CRITICALSQL Injection vulnerability in Relativity ODA LLC RelativityOne v.12.1.537.3 Patch 2 and earlier allows a remote attacker to execute arbitraEPSS 1.1%CVE-2020-7493—A CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability exists in EcoStruxure Operator EPSS 1.1%CVE-2024-44542CRITICALSQL Injection vulnerability in todesk v.1.1 allows a remote attacker to execute arbitrary code via the /todesk.com/news.html parameter.EPSS 1.1%CVE-2022-1064CRITICALSQL injection through marking blog comments on bulk as spam in forkcms/forkcmsEPSS 1.1%CVE-2021-21921HIGHA specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulnerability aEPSS 1.1%CVE-2022-21720MEDIUMSQL injection using custom CSS administration form in GLPIEPSS 1.1%CVE-2021-21920HIGHA specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulnerability aEPSS 1.1%CVE-2021-21919HIGHA specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulnerability aEPSS 1.1%CVE-2021-21923HIGHA specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulnerability aEPSS 1.1%CVE-2024-1863CRITICALSante PACS Server Token Endpoint SQL Injection Remote Code Execution VulnerabilityEPSS 1.1%CVE-2021-21918HIGHA specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulnerability aEPSS 1.1%CVE-2022-42064CRITICALOnline Diagnostic Lab Management System version 1.0 remote exploit that bypasses login with SQL injection and then uploads a shell.EPSS 1.1%CVE-2024-39841HIGHA SQL Injection vulnerability exists in the service configuration functionality in Centreon Web 24.04.x before 24.04.3, 23.10.x before 23.10EPSS 1.1%CVE-2021-36348MEDIUMiDRAC9 versions prior to 5.00.20.00 contain an input injection vulnerability. A remote authenticated malicious user with low privileges may EPSS 1.1%CVE-2021-24465—Meow Gallery < 4.1.9 - Contributor+ SQL InjectionEPSS 1.1%