Falhas do tipo CWE-89

11.799 resultados
CVE-2024-10736MEDIUMCodezips Free Exam Hall Seating Management System student.php sql injectionEPSS 0.6%CVE-2024-42571CRITICALSchool Management System commit bae5aa was discovered to contain a SQL injection vulnerability via the medium parameter at insertattendance.EPSS 0.6%CVE-2025-50190HIGHChamilo: Error-based SQL Injection via GET openid.assoc_handle with the /index.php scriptEPSS 0.6%CVE-2024-11100MEDIUM1000 Projects Beauty Parlour Management System index.php sql injectionEPSS 0.6%CVE-2024-10791MEDIUMCodezips Hospital Appointment System doctorAction.php sql injectionEPSS 0.6%CVE-2026-54419CRITICALPIAF-HMS multiple unauthenticated SQL injection vulnerabilities via mysql_queryEPSS 0.6%CVE-2024-42562CRITICALPharmacy Management System commit a2efc8 was discovered to contain a SQL injection vulnerability via the invoice_number parameter at previewEPSS 0.6%CVE-2024-29232MEDIUMImproper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in Alert.Enum webapi component in SynologEPSS 0.6%CVE-2024-29237MEDIUMImproper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in ActionRule.Delete webapi component in EPSS 0.6%CVE-2024-9429MEDIUMcode-projects Restaurant Reservation System filter2.php sql injectionEPSS 0.6%CVE-2024-3685MEDIUMDedeCMS stepselect_main.php sql injectionEPSS 0.6%CVE-2024-29236MEDIUMImproper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in AudioPattern.Delete webapi component iEPSS 0.6%CVE-2025-30365CRITICALSQL Injection in query_geracao_auto.phpEPSS 0.6%CVE-2024-29239MEDIUMImproper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in Recording.CountByCategory webapi compoEPSS 0.6%CVE-2024-2586HIGHSQL injection vulnerability in AMSS++EPSS 0.6%CVE-2024-29230MEDIUMImproper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in SnapShot.CountByCategory webapi componEPSS 0.6%CVE-2024-31025HIGHSQL Injection vulnerability in ECshop 4.x allows an attacker to obtain sensitive information via the file/article.php component.EPSS 0.6%CVE-2024-2865CRITICALSQLi in Mergen Soft Quality Management SystemEPSS 0.6%CVE-2024-24013CRITICALA SQL injection vulnerability exists in Novel-Plus v4.3.0-RC1 and prior versions. An attacker can pass crafted offset, limit, and sort paramEPSS 0.6%CVE-2024-29227MEDIUMImproper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in Layout.LayoutSave webapi component in EPSS 0.6%