Falhas do tipo CWE-89
11.496 resultadosCVE-2021-24762—Perfect Survey < 1.5.2 - Unauthenticated SQL InjectionEPSS 86.9%CVE-2017-18362CRITICALConnectWise ManagedITSync integration through 2017 for Kaseya VSA is vulnerable to unauthenticated remote commands that allow full direct acEPSS 86.7%KEVCVE-2025-24799HIGHGLPI allows unauthenticated SQL injection through the inventory endpointEPSS 86.2%CVE-2022-41142HIGHThis vulnerability allows remote attackers to escalate privileges on affected installations of Centreon. Authentication is required to exploEPSS 86.1%CVE-2023-30625HIGHrudder-server vulnerable to SQL InjectionEPSS 85.8%CVE-2023-25157CRITICALUnfiltered SQL Injection Vulnerabilities in GeoserverEPSS 85.2%CVE-2026-9082CRITICALDrupal core - Highly critical - SQL injection - SA-CORE-2026-004EPSS 84.6%KEVCVE-2023-49085HIGHCacti SQL Injection vulnerabilityEPSS 84.6%CVE-2025-32429CRITICALXWiki Platform vulnerable to SQL injection through getdeleteddocuments.vm template sort parameterEPSS 84.6%CVE-2020-5722CRITICALThe HTTP interface of the Grandstream UCM6200 series is vulnerable to an unauthenticated remote SQL injection via crafted HTTP request. An aEPSS 84.0%KEVCVE-2024-10400HIGHTutor LMS <= 2.7.6 - Unauthenticated SQL Injection via rating_filterEPSS 82.6%CVE-2021-25114—Paid Memberships Pro < 2.6.7 - Unauthenticated Blind SQL InjectionEPSS 82.2%CVE-2023-5151MEDIUMD-Link DAR-8000 autheditpwd.php sql injectionEPSS 81.5%CVE-2022-25148CRITICALWP Statistics <= 13.1.5 Unauthenticated Blind SQL Injection via current_page_idEPSS 81.4%CVE-2024-2876CRITICALIcegram Express - Email Subscribers, Newsletters and Marketing Automation Plugin <= 5.7.14 - Unauthenticated SQL InjectionEPSS 80.6%CVE-2018-12464CRITICALUnauthenticated SQL injection in Micro Focus Secure Messaging GatewayEPSS 80.5%CVE-2025-32969CRITICALorg.xwiki.platform:xwiki-platform-rest-server allows SQL injection in query endpoint of REST APIEPSS 79.5%CVE-2024-8503CRITICALVICIdial Unauthenticated SQL InjectionEPSS 79.1%CVE-2024-42327CRITICALSQL injection in user.get APIEPSS 78.8%CVE-2021-24931—Secure Copy Content Protection and Content Locking < 2.8.2 - Unauthenticated SQL InjectionEPSS 78.8%