CWE-89

High likelihood

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Parent: CWE-943 - Improper Neutralization of Special Elements in Data Query Logic

The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.

19,716 vulnerabilities with CWE-89
CVE-2024-5397 MEDIUM
itsourcecode Online Student Enrollment System 1.0 - SQL Injection
CVSS 6.3
CVE-2024-5396 MEDIUM
itsourcecode Online Student Enrollment System 1.0 - SQL Injection
CVSS 6.3
CVE-2024-5395 MEDIUM
itsourcecode Online Student Enrollment System 1.0 - SQL Injection
CVSS 6.3
CVE-2024-5394 MEDIUM
itsourcecode Online Student Enrollment System 1.0 - SQL Injection
CVSS 6.3
CVE-2024-5393 MEDIUM
itsourcecode Online Student Enrollment System 1.0 - SQL Injection
CVSS 6.3
CVE-2024-5392 MEDIUM
itsourcecode Online Student Enrollment System 1.0 - SQL Injection
CVSS 6.3
CVE-2024-5391 MEDIUM
itsourcecode Online Student Enrollment System 1.0 - SQL Injection
CVSS 6.3
CVE-2024-5390 MEDIUM
itsourcecode Online Student Enrollment System 1.0 - SQL Injection
CVSS 6.3
CVE-2024-5384 HIGH
SourceCodester Facebook News Feed Like 1.0 - SQL Injection
CVSS 7.3
CVE-2024-5381 MEDIUM
itsourcecode Student Information Management System 1.0 - SQL Injection
CVSS 6.3
CVE-2024-5378 MEDIUM
SourceCodester School Intramurals Student Attendance Management Sys...
CVSS 6.3
CVE-2024-5366 MEDIUM
SourceCodester Best House Rental Management System <1.0 - SQL Injec...
CVSS 6.3
CVE-2024-5365 MEDIUM
SourceCodester Best House Rental Management System <1.0 - SQL Injec...
CVSS 6.3
CVE-2024-5364 MEDIUM
SourceCodester Best House Rental Management System <1.0 - SQL Injec...
CVSS 6.3
CVE-2024-5363 MEDIUM
SourceCodester Best House Rental Management System <1.0 - SQL Injec...
CVSS 6.3
CVE-2024-5362 HIGH
SourceCodester Online Hospital Management System 1.0 - SQL Injection
CVSS 7.3
CVE-2024-5361 MEDIUM
PHPGurukul Zoo Management System 2.1 - SQL Injection
CVSS 6.3
CVE-2024-5360 MEDIUM
PHPGurukul Zoo Management System 2.1 - SQL Injection
CVSS 6.3
CVE-2024-5359 MEDIUM
PHPGurukul Zoo Management System 2.1 - SQL Injection
CVSS 6.3
CVE-2024-5358 MEDIUM
PHPGurukul Zoo Management System 2.1 - SQL Injection
CVSS 6.3
CVE-2024-5357 HIGH
PHPGurukul Zoo Management System 2.1 - SQL Injection
CVSS 7.3
CVE-2024-5356 MEDIUM
Anji-plus AJ-Report <1.4.1 - SQL Injection
CVSS 6.3
CVE-2024-5350 MEDIUM
Anji-plus AJ-Report <1.4.1 - SQL Injection
CVSS 6.3
CVE-2024-5315 CRITICAL
Dolibarr ERP - CRM <9.0.1 - SQL Injection
CVSS 9.1
CVE-2024-5314 CRITICAL
Dolibarr ERP - CRM <9.0.1 - SQL Injection
CVSS 9.1
Details
Vulnerabilities 19,716
Exploit Likelihood High