CWE-89

High likelihood

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Parent: CWE-943 - Improper Neutralization of Special Elements in Data Query Logic

The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.

19,807 vulnerabilities with CWE-89
CVE-2022-31346 CRITICAL
Online Car Wash Booking System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-31345 CRITICAL
Online Car Wash Booking System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-31344 CRITICAL
Online Car Wash Booking System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-31343 CRITICAL
Online Car Wash Booking System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-31340 CRITICAL
Simple Inventory System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-31339 HIGH
Simple Inventory System v1.0 - SQL Injection
CVSS 7.2
CVE-2022-31338 CRITICAL
Online Ordering System 2.3.2 - SQL Injection
CVSS 9.8
CVE-2022-31337 CRITICAL
Online Ordering System 2.3.2 - SQL Injection
CVSS 9.8
CVE-2022-31336 CRITICAL
Online Ordering System 2.3.2 - SQL Injection
CVSS 9.8
CVE-2022-31335 CRITICAL
Online Ordering System 2.3.2 - SQL Injection
CVSS 9.8
CVE-2022-31329 CRITICAL
Online Ordering System By janobe <2.3.2 - SQL Injection
CVSS 9.8
CVE-2022-31328 CRITICAL
Online Ordering System By janobe <2.3.2 - SQL Injection
CVSS 9.8
CVE-2022-31327 CRITICAL
Online Ordering System By janobe <2.3.2 - SQL Injection
CVSS 9.8
CVE-2022-30836 HIGH
Wedding Management System v1.0 - SQL Injection
CVSS 7.2
CVE-2022-30835 HIGH
Wedding Management System v1.0 - SQL Injection
CVSS 7.2
CVE-2022-30834 HIGH
Wedding Management System v1.0 - SQL Injection
CVSS 7.2
CVE-2022-30833 HIGH
Wedding Management System v1.0 - SQL Injection
CVSS 7.2
CVE-2022-30832 HIGH
Wedding Management System v1.0 - SQL Injection
CVSS 7.2
CVE-2022-30831 HIGH
Wedding Management System v1.0 - SQL Injection
CVSS 7.2
CVE-2022-30830 HIGH
Wedding Management System v1.0 - SQL Injection
CVSS 7.2
CVE-2022-30829 HIGH
Wedding Management System v1.0 - SQL Injection
CVSS 7.2
CVE-2022-30828 HIGH
Wedding Management System v1.0 - SQL Injection
CVSS 7.2
CVE-2022-30827 HIGH
Wedding Management System v1.0 - SQL Injection
CVSS 7.2
CVE-2022-30826 HIGH
Wedding Management System v1.0 - SQL Injection
CVSS 7.2
CVE-2022-30825 HIGH
Wedding Management System v1.0 - SQL Injection
CVSS 7.2
Details
Vulnerabilities 19,807
Exploit Likelihood High