Fallos del tipo CWE-89
11.649 resultadosCVE-2023-0997HIGHSourceCodester Moosikay E-Commerce System POST Parameter order.php sql injectionEPSS 0.9%CVE-2022-34652HIGHA sql injection vulnerability exists in the ObjectYPT functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially-crafted EPSS 0.9%CVE-2022-1083HIGHMicrofinance Management System sql injectionEPSS 0.9%CVE-2023-43371CRITICALHoteldruid v3.0.5 was discovered to contain a SQL injection vulnerability via the numcaselle parameter at /hoteldruid/creaprezzi.php.EPSS 0.9%CVE-2023-2338HIGH SQL Injection in pimcore/pimcoreEPSS 0.9%CVE-2022-1838MEDIUMHome Clean Services Management System login.php sql injectionEPSS 0.9%CVE-2023-31613HIGHAn issue in the __nss_database_lookup component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) vEPSS 0.9%CVE-2024-1833MEDIUMSourceCodester Employee Management System login.php sql injectionEPSS 0.9%CVE-2022-47862CRITICALLead Management System v1.0 is vulnerable to SQL Injection via the customer_id parameter in ajax_represent.php.EPSS 0.9%CVE-2022-47864CRITICALLead Management System v1.0 is vulnerable to SQL Injection via the id parameter in removeCategories.php.EPSS 0.9%CVE-2021-38819HIGHA SQL injection vulnerability exits on the Simple Image Gallery System 1.0 application through "id" parameter on the album page.EPSS 0.9%CVE-2024-4423HIGHAuthentication bypass in CemiParkEPSS 0.9%CVE-2025-22964HIGHDDSN Interactive cm3 Acora CMS version 10.1.1 has an unauthenticated time-based blind SQL Injection vulnerability caused by insufficient inpEPSS 0.9%CVE-2024-0952HIGHWP ERP <= 1.12.9 - Authenticated (Accounting Manager+) SQL Injection via idEPSS 0.9%CVE-2023-31609HIGHAn issue in the dfe_unit_col_loci component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via cEPSS 0.9%CVE-2023-31612HIGHAn issue in the dfe_qexp_list component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via craftEPSS 0.9%CVE-2023-31617HIGHAn issue in the dk_set_delete component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via craftEPSS 0.9%CVE-2023-31620HIGHAn issue in the dv_compare component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted EPSS 0.9%CVE-2023-31623HIGHAn issue in the mp_box_copy component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via craftedEPSS 0.9%CVE-2023-31628HIGHAn issue in the stricmp component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQLEPSS 0.9%