Fallos del tipo CWE-89
11.649 resultadosCVE-2024-3538MEDIUMCampcodes Church Management System addTithes.php sql injectionEPSS 0.9%CVE-2024-3537MEDIUMCampcodes Church Management System admin_user.php sql injectionEPSS 0.9%CVE-2023-28437CRITICALSQL injection vulnerability due to the keyword blacklist for defending against SQL injection will be bypassedEPSS 0.9%CVE-2024-3536MEDIUMCampcodes Church Management System delete_log.php sql injectionEPSS 0.9%CVE-2024-24811CRITICALProducts.SQLAlchemyDA vulnerable to unauthenticated arbitrary SQL query executionEPSS 0.9%CVE-2024-1832HIGHSourceCodester Complete File Management System Admin Login Form sql injectionEPSS 0.9%CVE-2023-2658MEDIUMSourceCodester Online Computer and Laptop Store products.php sql injectionEPSS 0.9%CVE-2024-22983HIGHSQL injection vulnerability in Projectworlds Visitor Management System in PHP v.1.0 allows a remote attacker to escalate privileges via the EPSS 0.9%CVE-2024-57650HIGHAn issue in the qi_inst_state_free component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) viaEPSS 0.9%CVE-2024-57657HIGHAn issue in the sqlg_vec_upd component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via craftEPSS 0.9%CVE-2024-57648HIGHAn issue in the itc_set_param_row component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via EPSS 0.9%CVE-2023-0254HIGHSimple Membership WP user Import <= 1.7 - Authenticated (Admin+) SQL InjectionEPSS 0.9%CVE-2024-57651HIGHAn issue in the jp_add component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQLEPSS 0.9%CVE-2024-57643HIGHAn issue in the box_deserialize_string component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS)EPSS 0.9%CVE-2023-0663HIGHCalendar Event Management System Login Page sql injectionEPSS 0.9%CVE-2026-32950HIGHSQLBot: RCE via SQL Injection in Excel Upload EndpointEPSS 0.9%CVE-2023-27358HIGHNETGEAR RAX30 SOAP Request SQL Injection Remote Code Execution VulnerabilityEPSS 0.9%CVE-2023-24774CRITICALFunadmin v3.2.0 was discovered to contain a SQL injection vulnerability via the selectFields parameter at \controller\auth\Auth.php.EPSS 0.9%CVE-2023-29985CRITICALSourcecodester Student Study Center Desk Management System v1.0 admin\reports\index.php#date_from has a SQL Injection vulnerability.EPSS 0.9%CVE-2020-27235MEDIUMAn exploitable SQL injection vulnerability exists in ‘getAssets.jsp’ page of OpenClinic GA 5.173.3 in the description parameter. An attackerEPSS 0.9%