CWE-89

High likelihood

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Parent: CWE-943 - Improper Neutralization of Special Elements in Data Query Logic

The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.

19,636 vulnerabilities with CWE-89
CVE-2025-2735 HIGH
PHPGurukul Old Age Home Management System 1.0 - SQL Injection via sertitle Parameter
CVSS 7.3
CVE-2025-2734 HIGH
PHPGurukul Old Age Home Management System 1.0 - SQL Injection via /admin/aboutus.php pagetitle Parameter
CVSS 7.3
CVE-2025-30604 HIGH
JiangQie Official Website Mini Program <1.8.2 - SQL Injection
CVSS 7.6
CVE-2025-30590 HIGH
Dourou Flickr set slideshows <0.9 - SQL Injection
CVSS 8.5
CVE-2025-30571 HIGH
STEdb Forms <= 1.0.4 - SQL Injection
CVSS 7.6
CVE-2025-30570 HIGH
دکمه، شبکه اجتماعی خرید <2.0.6 - SQL Injection
CVSS 7.6
CVE-2025-30569 HIGH
Jahertor WP Featured Entries <1.0 - SQL Injection
CVSS 8.5
CVE-2025-30525 HIGH
ProfitShare.ro WP Profitshare <1.4.9 - SQL Injection
CVSS 7.6
CVE-2025-30523 HIGH
Marcel-NL Super Simple Subscriptions <1.1.0 - SQL Injection
CVSS 7.6
CVE-2025-2684 HIGH
PHPGurukul Bank Locker Management System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-2683 HIGH
PHPGurukul Bank Locker Management System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-2682 HIGH
PHPGurukul Bank Locker Management System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-2681 HIGH
PHPGurukul Bank Locker Management System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-2680 HIGH
PHPGurukul Bank Locker Management System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-2679 HIGH
PHPGurukul Bank Locker Management System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-2678 HIGH
PHPGurukul Bank Locker Management System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-2677 HIGH
PHPGurukul Bank Locker Management System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-2676 HIGH
PHPGurukul Bank Locker Management System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-2675 HIGH
PHPGurukul Bank Locker Management System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-2674 HIGH
PHPGurukul Bank Locker Management System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-2672 MEDIUM
Code-projects Payroll Management System 1.0 - SQL Injection
CVSS 6.3
CVE-2025-2665 HIGH
PHPGurukul Online Security Guards Hiring System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-2664 MEDIUM
CodeZips Hospital Management System 1.0 - SQL Injection
CVSS 4.7
CVE-2025-2663 HIGH
PHPGurukul Bank Locker Management System 1.0 - SQL Injection
CVSS 7.3
CVE-2025-2662 MEDIUM
Project Worlds Online Time Table Generator 1.0 - SQL Injection
CVSS 6.3
Details
Vulnerabilities 19,636
Exploit Likelihood High