Falhas do tipo CWE-89

11.813 resultados
CVE-2025-10801MEDIUMSourceCodester Pet Grooming Management Software edit_tax.php sql injectionEPSS 0.5%CVE-2023-4766CRITICALSQLi in Movus Admin PanelEPSS 0.5%CVE-2024-12784MEDIUMitsourcecode Vehicle Management System editbill.php sql injectionEPSS 0.5%CVE-2024-10021MEDIUMcode-projects Pharmacy Management System manage_purchase.php sql injectionEPSS 0.5%CVE-2024-30242HIGHWordPress Contact Form to Any API plugin <= 1.1.8 - Auth. SQL Injection vulnerabilityEPSS 0.5%CVE-2024-2622MEDIUMFujian Kelixin Communication Command and Dispatch Platform editemedia.php sql injectionEPSS 0.5%CVE-2024-30240HIGHWordPress Calendarista plugin <= 15.5.7 - SQL Injection vulnerabilityEPSS 0.5%CVE-2024-48357CRITICALLyLme Spage 1.2.0 through 1.6.0 is vulnerable to SQL Injection via /admin/apply.php.EPSS 0.5%CVE-2024-13204MEDIUMkurniaramadhan E-Commerce-PHP blog-details.php sql injectionEPSS 0.5%CVE-2023-39524MEDIUMPrestaShop vulnerable to boolean SQL injection in search product in BOEPSS 0.5%CVE-2022-4961MEDIUMWeitong Mall OrderDao.xml sql injectionEPSS 0.5%CVE-2024-25288MEDIUMSLIMS (Senayan Library Management Systems) 9 Bulian v9.6.1 is vulnerable to SQL Injection via pop-scope-vocabolary.php.EPSS 0.5%CVE-2023-33945MEDIUMSQL injection vulnerability in the upgrade process for SQL Server in Liferay Portal 7.3.1 through 7.4.3.17, and Liferay DXP 7.3 before updatEPSS 0.5%CVE-2025-30879HIGHWordPress MC Woocommerce Wishlist plugin <= 1.8.9 - SQL Injection vulnerabilityEPSS 0.5%CVE-2024-0608MEDIUMWP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting <= 1.13.1 - Authenticated (Subscriber+) SQL InjectionEPSS 0.5%CVE-2025-32125HIGHWordPress Silvasoft boekhouden plugin <= 3.0.6 - SQL Injection vulnerabilityEPSS 0.5%CVE-2025-32204HIGHWordPress Split Test For Elementor Plugin <= 1.8.3 - SQL Injection vulnerabilityEPSS 0.5%CVE-2025-32127HIGHWordPress onOffice for WP-Websites plugin <= 5.7 - SQL Injection vulnerabilityEPSS 0.5%CVE-2024-47926CRITICALTecnick TCExam – CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')EPSS 0.5%CVE-2024-48356CRITICALLyLme Spage <=1.6.0 is vulnerable to SQL Injection via /admin/group.php.EPSS 0.5%