Fallos del tipo CWE-89
11.649 resultadosCVE-2023-0388HIGHRandom Text <= 0.3.0 - Subscriber+ SQLiEPSS 0.9%CVE-2022-23693HIGHVulnerabilities in the web-based management interface of ClearPass Policy Manager could allow an authenticated remote attacker to conduct SQEPSS 0.9%CVE-2021-24928—Rearrange Woocommerce Products < 3.0.8 - Subscriber+ SQL InjectionEPSS 0.9%CVE-2022-23696HIGHVulnerabilities in the web-based management interface of ClearPass Policy Manager could allow an authenticated remote attacker to conduct SQEPSS 0.9%CVE-2022-23695HIGHVulnerabilities in the web-based management interface of ClearPass Policy Manager could allow an authenticated remote attacker to conduct SQEPSS 0.9%CVE-2022-23694HIGHVulnerabilities in the web-based management interface of ClearPass Policy Manager could allow an authenticated remote attacker to conduct SQEPSS 0.9%CVE-2022-23692HIGHVulnerabilities in the web-based management interface of ClearPass Policy Manager could allow an authenticated remote attacker to conduct SQEPSS 0.9%CVE-2023-2370MEDIUMSourceCodester Online DJ Management System GET Parameter manage_event.php sql injectionEPSS 0.9%CVE-2024-51326HIGHSQL Injection vulnerability in projectworlds Travel management System v.1.0 allows a remote attacker to execute arbitrary code via the 't2' EPSS 0.9%CVE-2024-11592MEDIUM1000 Projects Beauty Parlour Management System about-us.php sql injectionEPSS 0.9%CVE-2022-2666MEDIUMSourceCodester Loan Management System login.php sql injectionEPSS 0.9%CVE-2025-10042MEDIUMQuiz Maker <= 6.7.0.56 - Unauthenticated SQL InjectionEPSS 0.9%CVE-2019-19286—A vulnerability has been identified in XHQ (All Versions < 6.1). The web interface could allow SQL injection attacks if an attacker is able EPSS 0.9%CVE-2020-21119CRITICALSQL Injection vulnerability in Kliqqi-CMS 2.0.2 in admin/admin_update_module_widgets.php in recordIDValue parameter, allows attackers to gaiEPSS 0.9%CVE-2025-7037HIGHSQL injection in Ivanti Endpoint ManagerEPSS 0.9%CVE-2026-8111HIGHSQL injection in the web console of Ivanti Endpoint Manager before version 2024 SU6 allows a remote authenticated attacker to achieve remoteEPSS 0.9%CVE-2023-5008CRITICALStudent Information System v1.0 - Unauthenticated SQL InjectionEPSS 0.9%CVE-2024-3538MEDIUMCampcodes Church Management System addTithes.php sql injectionEPSS 0.9%CVE-2023-28437CRITICALSQL injection vulnerability due to the keyword blacklist for defending against SQL injection will be bypassedEPSS 0.9%CVE-2024-3536MEDIUMCampcodes Church Management System delete_log.php sql injectionEPSS 0.9%