Fallos del tipo CWE-89
11.634 resultadosCVE-2025-0944MEDIUMitsourcecode Tailoring Management System customerview.php sql injectionEPSS 1.1%CVE-2022-1123—Leaflet Maps Marker < 3.12.5 - Admin+ SQLiEPSS 1.1%CVE-2023-5495MEDIUMQDocs Smart School HTTP POST Request sql injectionEPSS 1.1%CVE-2024-49681CRITICALWordPress WP Sessions Time Monitoring Full Automatic plugin <= 1.0.9 - SQL Injection vulnerabilityEPSS 1.1%CVE-2020-5427MEDIUMPossibility of SQL Injection in Spring Cloud Data Flow Task Execution Sorting QueryEPSS 1.1%CVE-2022-42497CRITICALWordPress Api2Cart Bridge Connector plugin <= 1.1.0 - Arbitrary Code Execution vulnerabilityEPSS 1.1%CVE-2024-13488HIGHLTL Freight Quotes – Estes Edition <= 3.3.7 - Unauthenticated SQL InjectionEPSS 1.1%CVE-2022-46763HIGHA SQL injection issue in a database stored function in TrueConf Server 5.2.0.10225 (fixed in 5.2.6.10025) allows a low-privileged database uEPSS 1.1%CVE-2023-25197—apache fineract: SQL injection vulnerability in certain procedure calls EPSS 1.1%CVE-2023-46807MEDIUMAn SQL Injection vulnerability in web component of EPMM before 12.1.0.0 allows an authenticated user with appropriate privilege to access orEPSS 1.1%CVE-2015-10100MEDIUMDynamic Widgets Plugin dynwid_class.php sql injectionEPSS 1.1%CVE-2022-40877CRITICALExam Reviewer Management System 1.0 is vulnerable to SQL Injection via the ‘id’ parameter.EPSS 1.1%CVE-2022-41403CRITICALOpenCart 3.x Newsletter Custom Popup was discovered to contain a SQL injection vulnerability via the email parameter at index.php?route=exteEPSS 1.1%CVE-2021-41262HIGHSQL Injection in GaletteEPSS 1.1%CVE-2023-4309CRITICALElection Services Co. (ESC) Internet Election Service is vulnerable to SQL injection in multiple pages and parameters. These vulnerabilitiesEPSS 1.1%CVE-2022-3246HIGHBlog2Social < 6.9.10 - Subscriber+ SQLiEPSS 1.0%CVE-2023-24654HIGHSimple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the name parameter under theEPSS 1.0%CVE-2023-24652HIGHSimple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the Description parameter unEPSS 1.0%CVE-2023-24656HIGHSimple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the subject parameter under EPSS 1.0%CVE-2023-24364HIGHSimple Customer Relationship Management System v1.0 was discovered to contain a SQL injection vulnerability via the username parameter underEPSS 1.0%