CWE-89

High likelihood

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Parent: CWE-943 - Improper Neutralization of Special Elements in Data Query Logic

The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.

19,816 vulnerabilities with CWE-89
CVE-2022-28438 CRITICAL
Baby Care System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-28437 CRITICAL
Baby Care System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-28436 CRITICAL
Baby Care System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-28435 CRITICAL
Baby Care System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-28434 CRITICAL
Baby Care System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-28433 CRITICAL
Baby Care System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-28432 CRITICAL
Baby Care System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-28431 CRITICAL
Baby Care System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-28429 CRITICAL
Baby Care System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-28427 CRITICAL
Baby Care System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-28426 CRITICAL
Baby Care System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-28425 CRITICAL
Baby Care System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-28424 CRITICAL
Baby Care System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-28423 CRITICAL
Baby Care System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-28422 CRITICAL
Baby Care System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-28421 CRITICAL
Baby Care System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-28420 CRITICAL
Baby Care System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-28417 CRITICAL
Home Owners Collection Management System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-28416 CRITICAL
Home Owners Collection Management System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-28415 CRITICAL
Home Owners Collection Management System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-28414 CRITICAL
Home Owners Collection Management System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-28413 CRITICAL
Car Driving School Management System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-28412 CRITICAL
Car Driving School Managment System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-28411 CRITICAL
Simple Real Estate Portal System v1.0 - SQL Injection
CVSS 9.8
CVE-2022-28410 CRITICAL
Simple Real Estate Portal System v1.0 - SQL Injection
CVSS 9.8
Details
Vulnerabilities 19,816
Exploit Likelihood High