Falhas do tipo CWE-89

11.761 resultados
CVE-2023-52064CRITICALWuzhicms v4.1.0 was discovered to contain a SQL injection vulnerability via the $keywords parameter at /core/admin/copyfrom.php.EPSS 0.6%CVE-2018-25067MEDIUMJoomGallery Image Sort default.php sql injectionEPSS 0.6%CVE-2024-3432MEDIUMPuneethReddyHC Event Management register.php sql injectionEPSS 0.6%CVE-2024-25168MEDIUMSQL injection vulnerability in snow snow v.2.0.0 allows a remote attacker to execute arbitrary code via the dataScope parameter of the systeEPSS 0.6%CVE-2022-45090HIGHSQL Injection in Smartpower WebEPSS 0.6%CVE-2024-22406CRITICALBlind SQL-injection in DAL aggregations in ShopwareEPSS 0.6%CVE-2024-3148MEDIUMDedeCMS makehtml_archives_action.php sql injectionEPSS 0.6%CVE-2022-45089HIGHSQL Injection in Smartpower WebEPSS 0.6%CVE-2024-54261CRITICALWordPress TAX SERVICE Electronic HDM plugin <= 1.2.2 - SQL Injection vulnerabilityEPSS 0.6%CVE-2023-1723CRITICALSQLi in Veragroup Mobile AssistantEPSS 0.6%CVE-2022-43058CRITICALOnline Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /odlms//classesEPSS 0.6%CVE-2022-46808HIGHWordPress ARMember Plugin <= 3.4.11 is vulnerable to SQL InjectionEPSS 0.6%CVE-2023-52290HIGHApache StreamPark (incubating): Unchecked SQL query fields trigger SQL injection vulnerabilityEPSS 0.6%CVE-2024-2168MEDIUMSourceCodester Online Tours & Travels Management System HTTP POST Request expense_category.php sql injectionEPSS 0.6%CVE-2023-24204MEDIUMSQL injection vulnerability in SourceCodester Simple Customer Relationship Management System v1.0 allows attacker to execute arbitrary code EPSS 0.6%CVE-2023-33209HIGHWordPress SEO Change Monitor Plugin <= 1.2 is vulnerable to SQL InjectionEPSS 0.6%CVE-2024-27709CRITICALSQL Injection vulnerability in Eskooly Web Product v.3.0 allows a remote attacker to execute arbitrary code via the searchby parameter of thEPSS 0.6%CVE-2022-0495CRITICALSQL Injection in KOHAEPSS 0.6%CVE-2024-9560MEDIUMESAFENET CDG Catelogs;logindojojs delCatelogs sql injectionEPSS 0.6%CVE-2022-50592CRITICALAdvantech iView < v5.7.04 Build 6425 getInventoryReportData Parameter SQL Injection RCEEPSS 0.6%