Fallos del tipo CWE-89
11.650 resultadosCVE-2022-46051HIGHThe approve parameter from the AeroCMS-v0.0.1 CMS system is vulnerable to SQL injection attacks.EPSS 0.9%CVE-2022-44151CRITICALSimple Inventory Management System v1.0 is vulnerable to SQL Injection via /ims/login.php.EPSS 0.9%CVE-2023-30867—Apache StreamPark (incubating): Authenticated system users could trigger SQL injection vulnerabilityEPSS 0.9%CVE-2024-3349HIGHSourceCodester Aplaya Beach Resort Online Reservation System login.php sql injectionEPSS 0.9%CVE-2006-5738HIGHMultiple SQL injection vulnerabilities in PunBB before 1.2.14 allow remote authenticated administrators to execute arbitrary SQL commands viEPSS 0.9%CVE-2024-3439HIGHSourceCodester Prison Management System login.php sql injectionEPSS 0.9%CVE-2024-3438HIGHSourceCodester Prison Management System login.php sql injectionEPSS 0.9%CVE-2024-3348HIGHSourceCodester Aplaya Beach Resort Online Reservation System index.php sql injectionEPSS 0.9%CVE-2024-3363HIGHSourceCodester Online Library System index.php sql injectionEPSS 0.9%CVE-2024-5517MEDIUMitsourcecode Online Blood Bank Management System changepwd.php sql injectionEPSS 0.9%CVE-2024-5519MEDIUMItsourceCode Learning Management System Project In PHP login.php sql injectionEPSS 0.9%CVE-2020-24600CRITICALShilpi CAPExWeb 1.1 allows SQL injection via a servlet/capexweb.cap_sendMail GET request.EPSS 0.9%CVE-2020-22818CRITICALMKCMS V6.2 has SQL injection via /ucenter/reg.php name parameter.EPSS 0.9%CVE-2023-41542CRITICALSQL injection vulnerability in jeecg-boot version 3.5.3, allows remote attackers to escalate privileges and obtain sensitive information viaEPSS 0.9%CVE-2023-31519CRITICALPharmacy Management System v1.0 was discovered to contain a SQL injection vulnerability via the email parameter at login_core.php.EPSS 0.9%CVE-2023-24084CRITICALChiKoi v1.0 was discovered to contain a SQL injection vulnerability via the load_file function.EPSS 0.9%CVE-2022-42237CRITICALA SQL Injection issue in Merchandise Online Store v.1.0 allows an attacker to log in to the admin account.EPSS 0.9%CVE-2021-36484CRITICALSQL injection vulnerability in JIZHICMS 1.9.5 allows attackers to run arbitrary SQL commands via add or edit article page.EPSS 0.9%CVE-2022-43256CRITICALSeaCms before v12.6 was discovered to contain a SQL injection vulnerability via the component /js/player/dmplayer/dmku/index.php.EPSS 0.9%CVE-2023-33762CRITICALeMedia Consulting simpleRedak up to v2.47.23.05 was discovered to contain a SQL injection vulnerability via the Activity parameter.EPSS 0.9%