Falhas do tipo CWE-89
11.837 resultadosCVE-2026-27005HIGHChartbrew: SQL injection in date-type variable handling (applyMysqlOrPostgresVariables)EPSS 0.5%CVE-2024-37896HIGHSQL injection vulnerability in Gin-vue-adminEPSS 0.5%CVE-2024-12015HIGHSQL Injection in WordPress Project Manager PluginEPSS 0.5%CVE-2024-7349HIGHLifterLMS <= 7.7.5 - Authenticated (Admin+) SQL InjectionEPSS 0.5%CVE-2025-0308HIGHUltimate Member <= 2.9.1 - Unauthenticated SQL InjectionEPSS 0.5%CVE-2025-1583MEDIUMPHPGurukul Online Nurse Hiring System search-report-details.php sql injectionEPSS 0.5%CVE-2024-2942MEDIUMCampcodes Online Examination System deleteQuestionExe.php sql injectionEPSS 0.5%CVE-2023-40921CRITICALSQL Injection vulnerability in functions/point_list.php in Common Services soliberte before v4.3.03 allows attackers to obtain sensitive infEPSS 0.5%CVE-2024-2945MEDIUMCampcodes Online Examination System updateExaminee.php sql injectionEPSS 0.5%CVE-2023-38913MEDIUMSQL injection vulnerability in anirbandutta9 NEWS-BUZZ v.1.0 allows a remote attacker to execute arbitrary code via a crafted script.EPSS 0.5%CVE-2024-25527CRITICALRuvarOA v6.01 and v12.01 were discovered to contain a SQL injection vulnerability via the id parameter at /PersonalAffair/worklog_template_sEPSS 0.5%CVE-2024-11213MEDIUMSourceCodester Best Employee Management System edit_role.php sql injectionEPSS 0.5%CVE-2024-36681CRITICALSQL Injection vulnerability in the module "Isotope" (pk_isotope) <=1.7.3 from Promokit.eu for PrestaShop allows attackers to obtain sensitivEPSS 0.5%CVE-2024-35361CRITICALMTab Bookmark v1.9.5 has an SQL injection vulnerability in /LinkStore/getIcon. An attacker can execute arbitrary SQL statements through thisEPSS 0.5%CVE-2024-6353HIGHWallet for WooCommerce <= 1.5.4 - Authenticated (Subscriber+) SQL Injection via 'search[value]'EPSS 0.5%CVE-2024-2943MEDIUMCampcodes Online Examination System deleteExamExe.php sql injectionEPSS 0.5%CVE-2019-25514HIGHJettweb PHP Hazir Haber Sitesi Scripti V3 SQL InjectionEPSS 0.5%CVE-2024-3060MEDIUMENL Newsletter <= 1.0.1 - Admin+ SQL InjectionEPSS 0.5%CVE-2023-2080HIGHImproper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Forcepoint Cloud Security Gateway (CSGEPSS 0.5%CVE-2025-61848MEDIUMAn improper neutralization of special elements used in an sql command ('sql injection') vulnerability in Fortinet FortiAnalyzer 7.6.0 througEPSS 0.5%