CWE-89 CVEs and Security Vulnerabilities

Filtered by CWE-89

Search

Switch to Advanced Search (Beta)

Total 16419 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2022-45278	1 Jizhicms	1 Jizhicms	2025-04-25	8.8 High
Jizhicms v2.3.3 was discovered to contain a SQL injection vulnerability via the /index.php/admins/Fields/get_fields.html component.
CVE-2022-44399	1 Poultry Farm Management System Project	1 Poultry Farm Management System	2025-04-25	9.8 Critical
Poultry Farm Management System v1.0 contains a SQL injection vulnerability via the del parameter at /Redcock-Farm/farm/category.php.
CVE-2022-44278	1 Sanitization Management System Project	1 Sanitization Management System	2025-04-25	7.2 High
Sanitization Management System v1.0 is vulnerable to SQL Injection via /php-sms/admin/?page=user/manage_user&id=.
CVE-2022-44140	1 Jizhicms	1 Jizhicms	2025-04-25	8.8 High
Jizhicms v2.3.3 was discovered to contain a SQL injection vulnerability via the /Member/memberedit.html component.
CVE-2022-36193	1 Lahirudanushka	1 School Management System	2025-04-25	9.8 Critical
SQL injection in School Management System 1.0 allows remote attackers to modify or delete data, causing persistent changes to the application's content or behavior by using malicious SQL queries.
CVE-2024-25469	1 Crmeb	1 Crmeb Java	2025-04-25	7.5 High
SQL Injection vulnerability in CRMEB crmeb_java v.1.3.4 and before allows a remote attacker to obtain sensitive information via the latitude and longitude parameters in the api/front/store/list component.
CVE-2022-3848	1 Wp User Merger Project	1 Wp User Merger	2025-04-25	8.8 High
The WP User Merger WordPress plugin before 1.5.3 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as admin
CVE-2022-42109	1 Online-shopping-system-advanced Project	1 Online-shopping-system-advanced	2025-04-25	9.8 Critical
Online-shopping-system-advanced 1.0 was discovered to contain a SQL injection vulnerability via the p parameter at /shopping/product.php.
CVE-2022-45329	1 Aerocms Project	1 Aerocms	2025-04-25	7.5 High
AeroCMS v0.0.1 was discovered to contain a SQL Injection vulnerability via the Search parameter. This vulnerability allows attackers to access database information.
CVE-2022-3768	1 Wpsmartcontracts	1 Wpsmartcontracts	2025-04-25	8.8 High
The WPSmartContracts WordPress plugin before 1.3.12 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as author
CVE-2022-3751	1 Owncast Project	1 Owncast	2025-04-25	9.8 Critical
SQL Injection in GitHub repository owncast/owncast prior to 0.0.13.
CVE-2022-44291	1 Webtareas Project	1 Webtareas	2025-04-24	9.8 Critical
webTareas 2.4p5 was discovered to contain a SQL injection vulnerability via the id parameter in phasesets.php.
CVE-2022-44290	1 Webtareas Project	1 Webtareas	2025-04-24	9.8 Critical
webTareas 2.4p5 was discovered to contain a SQL injection vulnerability via the id parameter in deleteapprovalstages.php.
CVE-2022-44277	1 Sanitization Management System Project	1 Sanitization Management System	2025-04-24	7.2 High
Sanitization Management System v1.0 is vulnerable to SQL Injection via /php-sms/classes/Master.php?f=delete_product.
CVE-2022-45328	1 Church Management System Project	1 Church Management System	2025-04-24	7.2 High
Church Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/edit_members.php.
CVE-2022-44348	1 Sanitization Management System Project	1 Sanitization Management System	2025-04-24	7.2 High
Sanitization Management System v1.0 is vulnerable to SQL Injection via /php-sms/admin/orders/update_status.php?id=.
CVE-2022-44347	1 Sanitization Management System Project	1 Sanitization Management System	2025-04-24	7.2 High
Sanitization Management System v1.0 is vulnerable to SQL Injection via /php-sms/admin/?page=inquiries/view_inquiry&id=.
CVE-2022-44345	1 Sanitization Management System Project	1 Sanitization Management System	2025-04-24	7.2 High
Sanitization Management System v1.0 is vulnerable to SQL Injection via /php-sms/admin/?page=quotes/view_quote&id=.
CVE-2022-44296	1 Sanitization Management System Project	1 Sanitization Management System	2025-04-24	7.2 High
Sanitization Management System v1.0 is vulnerable to SQL Injection via /php-sms/admin/quotes/manage_remark.php?id=.
CVE-2022-44295	1 Sanitization Management System Project	1 Sanitization Management System	2025-04-24	7.2 High
Sanitization Management System v1.0 is vulnerable to SQL Injection via /php-sms/admin/orders/assign_team.php?id=.

« first previous Page 164 of 821. next last »