Fallos del tipo CWE-89

11.648 resultados
CVE-2023-3820HIGHSQL Injection in pimcore/pimcoreEPSS 1.0%CVE-2024-55981CRITICALWordPress Nabz Image Gallery plugin <= v1.00 - SQL Injection vulnerabilityEPSS 1.0%CVE-2024-13485HIGHLTL Freight Quotes – ABF Freight Edition <= 3.3.7 - Unauthenticated SQL InjectionEPSS 1.0%CVE-2024-1799HIGHGamiPress – The #1 gamification plugin to reward points, achievements, badges & ranks in WordPress <= 6.8.6 - Authenticated (Contributor+) SQL Injection via ShortcodeEPSS 1.0%CVE-2024-7642MEDIUMSourceCodester Kortex Lite Advocate Office Management System activate_act.php sql injectionEPSS 1.0%CVE-2025-1735MEDIUMpgsql extension does not check for errors during escapingEPSS 1.0%CVE-2024-7639MEDIUMSourceCodester Kortex Lite Advocate Office Management System delete_act.php sql injectionEPSS 1.0%CVE-2024-7638MEDIUMSourceCodester Kortex Lite Advocate Office Management System delete_client.php sql injectionEPSS 1.0%CVE-2024-2647HIGHNetentsec NS-ASG Application Security Gateway singlelogin.php sql injectionEPSS 1.0%CVE-2022-45526CRITICALSQL Injection vulnerability in Future-Depth Institutional Management Website (IMS) 1.0, allows attackers to execute arbitrary commands via tEPSS 1.0%CVE-2024-7640MEDIUMSourceCodester Kortex Lite Advocate Office Management System delete_register.php sql injectionEPSS 1.0%CVE-2023-30211CRITICALOURPHP <= 7.2.0 is vulnerable to SQL Injection.EPSS 1.0%CVE-2022-43530HIGHVulnerabilities in the web-based management interface of ClearPass Policy Manager could allow an authenticated remote attacker to conduct SQEPSS 1.0%CVE-2022-43520HIGHMultiple vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise Orchestrator could allow an authenticated remEPSS 1.0%CVE-2022-43519HIGHMultiple vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise Orchestrator could allow an authenticated remEPSS 1.0%CVE-2022-43521HIGHMultiple vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise Orchestrator could allow an authenticated remEPSS 1.0%CVE-2023-38825CRITICALSQL injection vulnerability in Vanderbilt REDCap before v.13.8.0 allows a remote attacker to obtain sensitive information via the password rEPSS 1.0%CVE-2022-43522HIGHMultiple vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise Orchestrator could allow an authenticated remEPSS 1.0%CVE-2022-43523HIGHMultiple vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise Orchestrator could allow an authenticated remEPSS 1.0%CVE-2022-1691Realty Workstation < 1.0.15 - Agent SQLiEPSS 1.0%