Falhas do tipo CWE-89
11.540 resultadosCVE-2022-0747—Infographic Maker - iList < 4.3.8 - Unauthenticated SQL InjectionEPSS 15.3%CVE-2025-12197HIGHThe Events Calendar 6.15.1.1 - 6.15.9 - Unauthenticated SQL Injection via sEPSS 15.2%CVE-2024-6671CRITICALWhatsUp Gold GetStatisticalMonitorList SQL Injection Authentication Bypass VulnerabilityEPSS 14.9%CVE-2022-0434—Page Views Count < 2.4.15 - Unauthenticated SQL InjectionEPSS 14.8%CVE-2021-24285—Car Seller - Auto Classifieds Script <= 2.1.0 - Unauthenticated SQL InjectionEPSS 14.7%CVE-2024-38814HIGHAn authenticated SQL injection vulnerability in VMware HCX was privately reported to VMware. A
malicious authenticated user with non-adminiEPSS 14.6%CVE-2024-8945MEDIUMCodeCanyon RISE Ultimate Project Manager save sql injectionEPSS 14.5%CVE-2021-3958CRITICALSQL Injection Vulnerability in Ipack SCADA SoftwareEPSS 14.5%CVE-2023-33584CRITICALSourcecodester Enrollment System Project V1.0 is vulnerable to SQL Injection (SQLI) attacks, which allow an attacker to manipulate the SQL qEPSS 14.2%CVE-2022-3792CRITICALSQL Injection in GullsEye Terminal Operating SystemEPSS 14.2%CVE-2022-38488CRITICALlogrocket-oauth2-example through 2020-05-27 allows SQL injection via the /auth/register username parameter.EPSS 14.1%CVE-2020-7356CRITICALCayin xPost SQL InjectionEPSS 14.0%CVE-2024-7009MEDIUMCalibre SQL InjectionEPSS 13.9%CVE-2024-8309MEDIUMSQL Injection in langchain-ai/langchainEPSS 13.8%CVE-2023-50071HIGHSourcecodester Customer Support System 1.0 has multiple SQL injection vulnerabilities in /customer_support/ajax.php?action=save_department vEPSS 13.8%CVE-2022-46502CRITICALOnline Student Enrollment System v1.0 was discovered to contain a SQL injection vulnerability via the username parameter at /student_enrollmEPSS 13.7%CVE-2023-22959HIGHWebChess through 0.9.0 and 1.0.0.rc2 allows SQL injection: mainmenu.php, chess.php, and opponentspassword.php (txtFirstName, txtLastName).EPSS 13.7%CVE-2024-3495CRITICALCountry State City Dropdown CF7 <= 2.7.2 - Unauthenticated SQL InjectionEPSS 13.6%CVE-2020-35326CRITICALSQL Injection vulnerability in file /inxedu/demo_inxedu_open/src/main/resources/mybatis/inxedu/website/WebsiteImagesMapper.xml in inxedu 2.0EPSS 13.6%CVE-2021-24827—Asgaros Forum < 1.15.13 - Unauthenticated SQL InjectionEPSS 13.3%