Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: cwe-89 Clear
ID Title
CVE-2020-26677 SQL Injection in sqli (CVE-2020-26677)
SQL injection in sqli (CVE-2020-26677). Successful exploitation can lead to full system takeover.
CVE-2021-29053 SQL Injection in sqli (CVE-2021-29053)
SQL injection in sqli (CVE-2021-29053). Successful exploitation can lead to full system takeover.
CVE-2020-24913 SQL Injection in c (CVE-2020-24913)
SQL injection in c (CVE-2020-24913). Successful exploitation can lead to full system takeover.
CVE-2020-24841 SQL Injection in sqli (CVE-2020-24841)
SQL injection in sqli (CVE-2020-24841). Successful exploitation can lead to full system takeover.
CVE-2017-14851 SQL Injection in sqli (CVE-2017-14851)
SQL injection in sqli (CVE-2017-14851). Successful exploitation can lead to full system takeover.
CVE-2018-3882 SQL Injection in sqli (CVE-2018-3882)
SQL injection in sqli (CVE-2018-3882). Successful exploitation can lead to full system takeover.
CVE-2018-3883 SQL Injection in sqli (CVE-2018-3883)
SQL injection in sqli (CVE-2018-3883). Successful exploitation can lead to full system takeover.
CVE-2018-3884 SQL Injection in sqli (CVE-2018-3884)
SQL injection in sqli (CVE-2018-3884). Successful exploitation can lead to full system takeover.
CVE-2018-3885 SQL Injection in sqli (CVE-2018-3885)
SQL injection in sqli (CVE-2018-3885). Successful exploitation can lead to full system takeover.
CVE-2017-17983 SQL Injection in sqli (CVE-2017-17983)
SQL injection in sqli (CVE-2017-17983). Successful exploitation can lead to full system takeover.
CVE-2017-17916 SQL Injection in rails (CVE-2017-17916)
SQL injection in rails (CVE-2017-17916). Successful exploitation can lead to full system takeover.
CVE-2017-17917 SQL Injection in rails (CVE-2017-17917)
SQL injection in rails (CVE-2017-17917). Successful exploitation can lead to full system takeover.
CVE-2017-17919 SQL Injection in rails (CVE-2017-17919)
SQL injection in rails (CVE-2017-17919). Successful exploitation can lead to full system takeover.
CVE-2017-17920 SQL Injection in rails (CVE-2017-17920)
SQL injection in rails (CVE-2017-17920). Successful exploitation can lead to full system takeover.
CVE-2014-4914 SQL Injection in sqli (CVE-2014-4914)
SQL injection in sqli (CVE-2014-4914). Successful exploitation can lead to full system takeover.
CVE-2017-17950 Cells Blog 3.5 has SQL Injection via the pub_readpost.php ptid parameter.
Cells Blog 3.5 has SQL Injection via the pub_readpost.php ptid parameter.
CVE-2017-17951 SQL Injection in sqli (CVE-2017-17951)
SQL injection in sqli (CVE-2017-17951). Successful exploitation can lead to full system takeover.
CVE-2017-17957 PHP Scripts Mall PHP Multivendor Ecommerce has SQL Injection via the my_wishlist.php fid parameter.
PHP Scripts Mall PHP Multivendor Ecommerce has SQL Injection via the my_wishlist.php fid parameter.
CVE-2017-17959 SQL Injection in sqli (CVE-2017-17959)
SQL injection in sqli (CVE-2017-17959). Successful exploitation can lead to full system takeover.
CVE-2017-17941 SQL Injection in sqli (CVE-2017-17941)
SQL injection in sqli (CVE-2017-17941). Successful exploitation can lead to full system takeover.
CVE-2015-3637 SQL Injection in sqli (CVE-2015-3637)
SQL injection in sqli (CVE-2015-3637). Successful exploitation can lead to full system takeover.
CVE-2017-17900 SQL Injection in sqli (CVE-2017-17900)
SQL injection in sqli (CVE-2017-17900). Successful exploitation can lead to full system takeover.
CVE-2017-17906 PHP Scripts Mall Car Rental Script has SQL Injection via the admin/carlistedit.php carid parameter.
PHP Scripts Mall Car Rental Script has SQL Injection via the admin/carlistedit.php carid parameter.
CVE-2017-17928 SQL Injection in sqli (CVE-2017-17928)
SQL injection in sqli (CVE-2017-17928). Successful exploitation can lead to full system takeover.
CVE-2017-17931 PHP Scripts Mall Resume Clone Script has SQL Injection via the forget.php username parameter.
PHP Scripts Mall Resume Clone Script has SQL Injection via the forget.php username parameter.
CVE-2017-17892 SQL Injection in sqli (CVE-2017-17892)
SQL injection in sqli (CVE-2017-17892). Successful exploitation can lead to full system takeover.
CVE-2017-17895 Readymade Job Site Script has SQL Injection via the location_name array parameter to the /job URI.
Readymade Job Site Script has SQL Injection via the location_name array parameter to the /job URI.
CVE-2017-17897 SQL Injection in sqli (CVE-2017-17897)
SQL injection in sqli (CVE-2017-17897). Successful exploitation can lead to full system takeover.
CVE-2017-17899 SQL Injection in sqli (CVE-2017-17899)
SQL injection in sqli (CVE-2017-17899). Successful exploitation can lead to full system takeover.
CVE-2017-17870 SQL Injection in sqli (CVE-2017-17870)
SQL injection in sqli (CVE-2017-17870). Successful exploitation can lead to full system takeover.
CVE-2017-17871 SQL Injection in sqli (CVE-2017-17871)
SQL injection in sqli (CVE-2017-17871). Successful exploitation can lead to full system takeover.
CVE-2017-17872 SQL Injection in sqli (CVE-2017-17872)
SQL injection in sqli (CVE-2017-17872). Successful exploitation can lead to full system takeover.
CVE-2017-17873 Vanguard Marketplace Digital Products PHP 1.4 has SQL Injection via the PATH_INFO to the /p URI.
Vanguard Marketplace Digital Products PHP 1.4 has SQL Injection via the PATH_INFO to the /p URI.
CVE-2017-17875 SQL Injection in sqli (CVE-2017-17875)
SQL injection in sqli (CVE-2017-17875). Successful exploitation can lead to full system takeover.
CVE-2017-0304 SQL Injection in sqli (CVE-2017-0304)
SQL injection in sqli (CVE-2017-0304). Risk of unauthorized operations or information disclosure.
CVE-2017-17829 SQL Injection in sqli (CVE-2017-17829)
SQL injection in sqli (CVE-2017-17829). Successful exploitation can lead to full system takeover.
CVE-2017-17822 SQL Injection in sqli (CVE-2017-17822)
SQL injection in sqli (CVE-2017-17822). Confidential information can be exposed externally.
CVE-2017-17823 SQL Injection in sqli (CVE-2017-17823)
SQL injection in sqli (CVE-2017-17823). Confidential information can be exposed externally.
CVE-2017-17824 SQL Injection in sqli (CVE-2017-17824)
SQL injection in sqli (CVE-2017-17824). Confidential information can be exposed externally.
CVE-2012-2576 SQL Injection in sqli (CVE-2012-2576)
SQL injection in sqli (CVE-2012-2576). Successful exploitation can lead to full system takeover.
CVE-2017-16733 SQL Injection in sqli (CVE-2017-16733)
SQL injection in sqli (CVE-2017-16733). Risk of unauthorized operations or information disclosure.
CVE-2017-16735 SQL Injection in sqli (CVE-2017-16735)
SQL injection in sqli (CVE-2017-16735). Risk of unauthorized operations or information disclosure.
CVE-2017-1757 SQL Injection in sqli (CVE-2017-1757)
SQL injection in sqli (CVE-2017-1757). Successful exploitation can lead to full system takeover.
CVE-2017-17779 Paid To Read Script 2.0.5 has SQL injection via the referrals.php id parameter.
Paid To Read Script 2.0.5 has SQL injection via the referrals.php id parameter.
CVE-2017-15875 SQL Injection in sqli (CVE-2017-15875)
SQL injection in sqli (CVE-2017-15875). Successful exploitation can lead to full system takeover.
CVE-2017-17721 SQL Injection in csharp (CVE-2017-17721)
SQL injection in csharp (CVE-2017-17721). Successful exploitation can lead to full system takeover.
CVE-2017-17643 FS Lynda Clone 1.0 has SQL Injection via the keywords parameter to tutorial/.
FS Lynda Clone 1.0 has SQL Injection via the keywords parameter to tutorial/.
CVE-2017-17645 Bus Booking Script 1.0 has SQL Injection via the txtname parameter to admin/index.php.
Bus Booking Script 1.0 has SQL Injection via the txtname parameter to admin/index.php.
CVE-2017-17651 SQL Injection in sqli (CVE-2017-17651)
SQL injection in sqli (CVE-2017-17651). Successful exploitation can lead to full system takeover.
CVE-2017-17730 DedeCMS through 5.7 has SQL Injection via the logo parameter to plus/flink_add.php.
DedeCMS through 5.7 has SQL Injection via the logo parameter to plus/flink_add.php.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →