Falhas do tipo CWE-89

11.837 resultados
CVE-2026-1131MEDIUMYonyou KSOA HTTP GET Parameter save_catalog.jsp sql injectionEPSS 0.5%CVE-2026-1132MEDIUMYonyou KSOA HTTP GET Parameter edit_folder.jsp sql injectionEPSS 0.5%CVE-2024-33800CRITICALA SQL injection vulnerability in /model/get_student1.php in campcodes Complete Web-Based School Management System 1.0 allows an attacker to EPSS 0.5%CVE-2024-35409CRITICALWeBid 1.1.2 is vulnerable to SQL Injection via admin/tax.php.EPSS 0.5%CVE-2024-34927CRITICALA SQL injection vulnerability in /model/update_classroom.php in Campcodes Complete Web-Based School Management System 1.0 allows an attackerEPSS 0.5%CVE-2024-55517HIGHAn issue was discovered in the Interllect Core Search in Polaris FT Intellect Core Banking 9.5. Input passed through the groupType parameterEPSS 0.5%CVE-2025-0200MEDIUMcode-projects Point of Sales and Inventory Management System search_num.php sql injectionEPSS 0.5%CVE-2024-33799CRITICALA SQL injection vulnerability in /model/get_teacher.php in campcodes Complete Web-Based School Management System 1.0 allows an attacker to eEPSS 0.5%CVE-2024-8757HIGHBoost Your Blog's Engagement with WP Post Author <= 3.8.1 - Authenticated (Administrator+) SQL InjectionEPSS 0.5%CVE-2025-39518HIGHWordPress BMA Lite plugin <= 1.4.2 - SQL Injection vulnerabilityEPSS 0.5%CVE-2024-34934CRITICALA SQL injection vulnerability in /view/emarks_range_grade_update_form.php in Campcodes Complete Web-Based School Management System 1.0 allowEPSS 0.5%CVE-2026-9848HIGHWP Ticket <= 6.0.4 - Unauthenticated SQL Injection via WordPress Search 's' ParameterEPSS 0.5%CVE-2024-11101MEDIUM1000 Projects Beauty Parlour Management System search-invoices.php sql injectionEPSS 0.5%CVE-2023-53926HIGHPHPJabbers Simple CMS 5.0 SQL Injection via Column ParameterEPSS 0.5%CVE-2024-2562MEDIUMPandaXGO PandaX role_menu.go InsertRole sql injectionEPSS 0.5%CVE-2024-34932CRITICALA SQL injection vulnerability in /model/update_exam.php in Campcodes Complete Web-Based School Management System 1.0 allows an attacker to eEPSS 0.5%CVE-2024-5103MEDIUMCampcodes Complete Web-Based School Management System student_first_payment.php sql injectionEPSS 0.5%CVE-2024-11460HIGHVerowa Connect <= 3.0.1 - Unauthenticated SQL InjectionEPSS 0.5%CVE-2024-50713CRITICALSmartAgent v1.1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /tests/interface.php.EPSS 0.5%CVE-2024-7372MEDIUMSourceCodester Simple Realtime Quiz System quiz_board.php sql injectionEPSS 0.5%