CWE-89

High likelihood

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Parent: CWE-943 - Improper Neutralization of Special Elements in Data Query Logic

The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.

19,772 vulnerabilities with CWE-89
CVE-2023-27742 CRITICAL
idurar ERP/CRM v1 - SQL Injection via /api/login
CVSS 9.8
CVE-2023-31519 CRITICAL
Pharmacy Management System v1.0 - SQL Injection
CVSS 9.8
CVE-2023-32308 HIGH
anuko timetracker < 1.22.11.5781 - SQL Injection in invoices.php
CVSS 8.2
CVE-2023-30245 CRITICAL
Judging Management System 1.0 - SQL Injection via crit_id Parameter
CVSS 9.8
CVE-2023-31631 HIGH
openlink virtuoso-opensource <7.2.9 - DoS
CVSS 7.5
CVE-2023-31630 HIGH
openlink virtuoso-opensource <7.2.9 - DoS
CVSS 7.5
CVE-2023-31629 HIGH
openlink virtuoso-opensource <7.2.9 - DoS
CVSS 7.5
CVE-2023-31628 HIGH
openlink virtuoso-opensource <7.2.9 - DoS
CVSS 7.5
CVE-2023-31627 HIGH
openlink virtuoso-opensource <7.2.9 - DoS
CVSS 7.5
CVE-2023-31626 HIGH
openlink virtuoso-opensource <7.2.9 - DoS
CVSS 7.5
CVE-2023-31625 HIGH
openlink virtuoso-opensource <7.2.9 - DoS
CVSS 7.5
CVE-2023-31624 HIGH
openlink virtuoso-opensource <7.2.9 - DoS
CVSS 7.5
CVE-2023-31623 HIGH
openlink virtuoso-opensource <7.2.9 - DoS
CVSS 7.5
CVE-2023-31622 HIGH
openlink virtuoso-opensource <7.2.9 - DoS
CVSS 7.5
CVE-2023-31621 HIGH
openlink virtuoso-opensource <7.2.9 - DoS
CVSS 7.5
CVE-2023-31620 HIGH
openlink virtuoso-opensource <7.2.9 - DoS
CVSS 7.5
CVE-2023-31619 HIGH
openlink virtuoso-opensource <7.2.9 - DoS
CVSS 7.5
CVE-2023-31618 HIGH
openlink virtuoso-opensource <7.2.9 - DoS
CVSS 7.5
CVE-2023-31617 HIGH
openlink virtuoso-opensource <7.2.9 - DoS
CVSS 7.5
CVE-2023-31616 HIGH
openlink virtuoso-opensource <7.2.9 - DoS
CVSS 7.5
CVE-2023-31615 HIGH
openlink virtuoso-opensource <7.2.9 - DoS
CVSS 7.5
CVE-2023-31614 HIGH
openlink virtuoso-opensource <7.2.9 - DoS
CVSS 7.5
CVE-2023-31613 HIGH
openlink virtuoso-opensource <7.2.9 - DoS
CVSS 7.5
CVE-2023-31612 HIGH
openlink virtuoso-opensource <7.2.9 - DoS
CVSS 7.5
CVE-2023-31611 HIGH
openlink virtuoso-opensource <7.2.9 - DoS
CVSS 7.5
Details
Vulnerabilities 19,772
Exploit Likelihood High