Fallos del tipo CWE-89
11.650 resultadosCVE-2020-27235MEDIUMAn exploitable SQL injection vulnerability exists in ‘getAssets.jsp’ page of OpenClinic GA 5.173.3 in the description parameter. An attackerEPSS 0.9%CVE-2020-27233MEDIUMAn exploitable SQL injection vulnerability exists in ‘getAssets.jsp’ page of OpenClinic GA 5.173.3 in the supplierUID parameter. An attackerEPSS 0.9%CVE-2020-27236MEDIUMAn exploitable SQL injection vulnerability exists in ‘getAssets.jsp’ page of OpenClinic GA 5.173.3 in the compnomenclature parameter. An attEPSS 0.9%CVE-2020-27234MEDIUMAn exploitable SQL injection vulnerability exists in ‘getAssets.jsp’ page of OpenClinic GA 5.173.3 in the serviceUID parameter. An attacker EPSS 0.9%CVE-2023-6657MEDIUMSourceCodester Simple Student Attendance System student_form.php sql injectionEPSS 0.9%CVE-2021-43927MEDIUMImproper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in Security Management functionality in SEPSS 0.9%CVE-2021-43925MEDIUMImproper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in Log Management functionality in SynoloEPSS 0.9%CVE-2021-43926MEDIUMImproper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in Log Management functionality in SynoloEPSS 0.9%CVE-2023-3449MEDIUMIBOS OA Interview Management Export export&interviews=x actionExport sql injectionEPSS 0.9%CVE-2013-10003MEDIUMTelecommunication Software SAMwin Contact Center Suite Database SAMwinLIBVB.dll getCurrentDBVersion sql injectionEPSS 0.9%CVE-2024-29874CRITICALSQL injection vulnerability in SentrifugoEPSS 0.9%CVE-2024-29875CRITICALSQL injection vulnerability in SentrifugoEPSS 0.9%CVE-2023-6084MEDIUMTongda OA 2017 delete.php sql injectionEPSS 0.9%CVE-2025-0298MEDIUMcode-projects Online Book Shop process_login.php sql injectionEPSS 0.9%CVE-2023-0765HIGHGallery by BestWebSoft < 4.7.0 - Author+ SQL InjectionEPSS 0.9%CVE-2023-27569CRITICALThe eo_tags package before 1.3.0 for PrestaShop allows SQL injection via an HTTP User-Agent or Referer header.EPSS 0.9%CVE-2023-24198CRITICALRaffle Draw System v1.0 was discovered to contain multiple SQL injection vulnerabilities at save_winner.php via the ticket_id and draw paramEPSS 0.9%CVE-2023-28659HIGHThe Waiting: One-click Countdowns WordPress Plugin, version <= 0.6.2, is affected by an authenticated SQL injection vulnerability in the pbcEPSS 0.9%CVE-2024-48427HIGHA SQL injection vulnerability in Sourcecodester Packers and Movers Management System v1.0 allows remote authenticated users to execute arbitEPSS 0.9%CVE-2023-1595MEDIUMnovel-plus list sql injectionEPSS 0.9%