CWE-89
High likelihoodImproper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.
19,669 vulnerabilities with CWE-89
CVE-2024-48657
HIGH
Hospital Management System 1.0.0 - SQL Injection
CVSS 7.2
CVE-2024-44812
CRITICAL
Online Complaint Site <1.0 - Privilege Escalation
CVSS 9.8
CVE-2024-46903
MEDIUM
Trend Micro Deep Discovery Inspector >=5.8 <6.6 - Authenticated SQL Injection
CVSS 6.5
CVE-2024-46902
HIGH
Trend Micro Deep Discovery Inspector >=5.8 <6.6 - Authenticated SQL Injection
CVSS 8.4
CVE-2024-39753
HIGH
Trend Micro Apex One < 14.0.13139 - SQL Injection
CVSS 7.5
CVE-2024-48570
HIGH
Client Management System 1.0 - SQL Injection via Between Dates Reports Parameter
CVSS 7.5
CVE-2024-9987
HIGH
Pandora FMS 700-777.2 - Authenticated SQL Injection via Agents Modules CSV Filter Parameter
CVSS 8.8
CVE-2024-35286
CRITICAL
Mitel MiCollab < 9.8.0.33 - Unauthenticated SQL Injection in NuPoint Messenger
CVSS 9.8
CVE-2024-30158
HIGH
Mitel MiCollab <9.7.1.110 - SQL Injection
CVSS 7.2
CVE-2024-30157
HIGH
Mitel MiCollab <9.7.1.110 - SQL Injection
CVSS 7.2
CVE-2024-48597
HIGH
Online Clinic Management System 1.0 - SQL Injection via id Parameter
CVSS 8.1
CVE-2024-48509
CRITICAL
Learning with Texts 2.0.3 - SQL Injection via URL Parameter
CVSS 9.8
CVE-2024-47223
CRITICAL
Mitel MiCollab <9.8 SP1 FP2 - SQL Injection
CVSS 9.4
CVE-2024-47189
HIGH
Mitel MiCollab <9.8.1.201 - SQL Injection
CVSS 7.7
CVE-2024-48231
HIGH
funadmin 5.0.2 - SQL Injection via selectFields Parameter
CVSS 7.2
CVE-2024-47328
HIGH
FunnelKit Automation By Autonami <3.1.2 - SQL Injection
CVSS 7.6
CVE-2024-8625
HIGH
TS Poll < 2.4.0 - Authenticated SQL Injection
CVSS 7.2
CVE-2024-10196
MEDIUM
Pharmacy Management System 1.0 - SQL Injection
CVSS 6.3
CVE-2024-49620
HIGH
FERMA.Ru.Net <1.3.3 - SQL Injection
CVSS 8.5
CVE-2024-49619
HIGH
Acespritech Solutions Pvt. Ltd. Social Link Groups <1.1.0 - SQL Inj...
CVSS 8.5
CVE-2024-49618
HIGH
MyTweetLinks <1.1.1 - SQL Injection
CVSS 8.5
CVE-2024-49616
HIGH
Nyasro Rate Own Post <1.0 - SQL Injection
CVSS 8.5
CVE-2024-49614
HIGH
SermonAudio Widgets <1.9.3 - SQL Injection
CVSS 8.5
CVE-2024-49613
HIGH
Lodel Geraldo Simple Code Insert Shortcode <1.0 - SQL Injection
CVSS 8.5
CVE-2024-49612
HIGH
Infotuts SW Contact Form - SQL Injection
CVSS 8.5
Details
Vulnerabilities
19,669
Exploit Likelihood
High