Fallos del tipo CWE-89

11.649 resultados
CVE-2023-31612HIGHAn issue in the dfe_qexp_list component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via craftEPSS 0.9%CVE-2023-31616HIGHAn issue in the bif_mod component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQLEPSS 0.9%CVE-2023-31609HIGHAn issue in the dfe_unit_col_loci component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via cEPSS 0.9%CVE-2023-31627HIGHAn issue in the strhash component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQLEPSS 0.9%CVE-2023-31608HIGHAn issue in the artm_div_int component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafteEPSS 0.9%CVE-2023-31626HIGHAn issue in the gpf_notice component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted EPSS 0.9%CVE-2023-31614HIGHAn issue in the mp_box_deserialize_string function in openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoSEPSS 0.9%CVE-2023-31625HIGHAn issue in the psiginfo component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQEPSS 0.9%CVE-2023-31629HIGHAn issue in the sqlo_union_scope component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crEPSS 0.9%CVE-2023-36189HIGHSQL injection vulnerability in langchain before v0.0.247 allows a remote attacker to obtain sensitive information via the SQLDatabaseChain cEPSS 0.9%CVE-2023-31621HIGHAn issue in the kc_var_col component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted EPSS 0.9%CVE-2025-13372MEDIUMPotential SQL injection in FilteredRelation column aliases on PostgreSQLEPSS 0.9%CVE-2022-3751HIGH SQL Injection in owncast/owncastEPSS 0.9%CVE-2023-27871HIGHIBM Aspera Faspex information disclosureEPSS 0.9%CVE-2022-22524CRITICALSQL-injection in Carlo Gavazzi UWP 3.0 allows for full database accessEPSS 0.9%CVE-2025-1648HIGHYawave <= 2.9.1 - Unauthenticated SQL InjectionEPSS 0.9%CVE-2023-20010HIGHA vulnerability in the web-based management interface of Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications EPSS 0.9%CVE-2023-27233HIGHPiwigo before 13.6.0 was discovered to contain a SQL injection vulnerability via the order[0][dir] parameter at user_list_backend.php.EPSS 0.9%CVE-2023-34168HIGHWordPress WP Report Post Plugin <= 2.1.2 is vulnerable to SQL InjectionEPSS 0.9%CVE-2023-5004CRITICALHospital-management-system-in-php 378c157 - Blind SQL InjectionEPSS 0.9%