Fallos del tipo CWE-89

11.648 resultados
CVE-2021-34117HIGHSQL Injection vulnerability in SEO Panel 4.9.0 in api/user.api.php in function getUserName in the username parameter, allows attackers to gaEPSS 0.9%CVE-2024-3416MEDIUMSourceCodester Online Courseware editt.php sql injectionEPSS 0.9%CVE-2024-7641MEDIUMSourceCodester Kortex Lite Advocate Office Management System deactivate_act.php sql injectionEPSS 0.9%CVE-2023-1471HIGHWP Popup Banners <= 1.2.5 - Authenticated (Subscriber+) SQL InjectionEPSS 0.9%CVE-2021-41433CRITICALSQL Injection vulnerability exists in version 1.0 of the Resumes Management and Job Application Website application login form by EGavilan MEPSS 0.9%CVE-2022-38619CRITICALSmartVista SVFE2 v2.2.22 was discovered to contain a SQL injection vulnerability via the UserForm:j_id90 parameter at /SVFE2/pages/feegroupsEPSS 0.9%CVE-2023-2656MEDIUMSourceCodester AC Repair and Services System sql injectionEPSS 0.9%CVE-2021-40850CRITICALTCMAN GIM SQL injection vulnerabilityEPSS 0.9%CVE-2024-8868MEDIUMcode-projects Crud Operation System savedata.php sql injectionEPSS 0.9%CVE-2022-1258HIGHSQL injection vulnerability in McAfee Agent's ePO extensionEPSS 0.9%CVE-2024-11591MEDIUM1000 Projects Beauty Parlour Management System add-services.php sql injectionEPSS 0.9%CVE-2019-19094HIGHABB eSOMS: SQL injection vulnerabilityEPSS 0.9%CVE-2022-45207CRITICALJeecg-boot v3.4.3 was discovered to contain a SQL injection vulnerability via the component updateNullByEmptyString.EPSS 0.9%CVE-2024-0268HIGHKashipara Hospital Management System registration.php sql injectionEPSS 0.9%CVE-2023-2756MEDIUM SQL Injection in pimcore/customer-data-frameworkEPSS 0.9%CVE-2023-23279CRITICALCanteen Management System 1.0 is vulnerable to SQL Injection via /php_action/getOrderReport.php.EPSS 0.9%CVE-2023-49030HIGHSQL Injection vulnerability in32ns KLive v.2019-1-19 and before allows a remote attacker to obtain sensitive information via a crafted scripEPSS 0.9%CVE-2023-27742CRITICALIDURAR ERP/CRM v1 was discovered to contain a SQL injection vulnerability via the component /api/login.EPSS 0.9%CVE-2022-47780CRITICALSQL Injection vulnerability in Bangresto 1.0 via the itemID parameter.EPSS 0.9%CVE-2022-43437HIGHHWA JIUH DIGITAL TECHNOLOGY LTD. EasyTest - SQL InjectionEPSS 0.9%