CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Description
The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.
Hierarchy (View 1000)
Related attack patterns (CAPEC)
CAPEC-108 · CAPEC-109 · CAPEC-110 · CAPEC-470 · CAPEC-66 · CAPEC-7
CVEs mapped to this weakness (10,236)
page 216 of 512| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2019-10141 | — | Hig | 0.47 | 8.3 | 0.02 | Jul 30, 2019 | A vulnerability was found in openstack-ironic-inspector all versions excluding 5.0.2, 6.0.3, 7.2.4, 8.0.3 and 8.2.1. A SQL-injection vulnerability was found in openstack-ironic-inspector's node_cache.find_node(). This function makes a SQL query using unfiltered data from a… | |
| CVE-2018-16436 | Hig | 0.47 | 7.2 | 0.01 | Sep 5, 2018 | Gxlcms 2.0 before bug fix 20180915 has SQL Injection exploitable by an administrator. | ||
| CVE-2018-2450 | Hig | 0.47 | 7.2 | 0.02 | Aug 14, 2018 | SAP MaxDB (liveCache), versions 7.8 and 7.9, allows an attacker who gets DBM operator privileges to execute crafted database queries and therefore read, modify or delete sensitive data from database. | ||
| CVE-2018-14472 | Hig | 0.47 | 7.2 | 0.02 | Jul 20, 2018 | An issue was discovered in WUZHI CMS 4.1.0. The vulnerable file is coreframe/app/order/admin/goods.php. The $keywords parameter is taken directly into execution without any filtering, leading to SQL injection. | ||
| CVE-2018-0606 | Hig | 0.47 | 7.2 | 0.01 | Jun 26, 2018 | SQL injection vulnerability in the Pixelpost v1.7.3 and earlier allows remote authenticated attackers to execute arbitrary SQL commands via unspecified vectors. | ||
| CVE-2018-12110 | Hig | 0.47 | 7.2 | 0.01 | Jun 11, 2018 | portfolioCMS 1.0.5 has SQL Injection via the admin/portfolio.php preview parameter. | ||
| CVE-2018-10050 | Hig | 0.47 | 7.2 | 0.01 | Apr 11, 2018 | iScripts eSwap v2.4 has SQL injection via the "registration_settings.php" ddlFree parameter in the Admin Panel. | ||
| CVE-2018-6843 | Hig | 0.47 | 7.2 | 0.01 | Mar 19, 2018 | Kentico 10 before 10.0.50 and 11 before 11.0.3 has SQL injection in the administration interface. | ||
| CVE-2018-6230 | Med | 0.47 | 6.8 | 0.03 | Mar 15, 2018 | A SQL injection vulnerability in an Trend Micro Email Encryption Gateway 5.5 search configuration script could allow an attacker to execute SQL commands to upload and execute arbitrary code that may harm the target system. | ||
| CVE-2018-7735 | Hig | 0.47 | 7.2 | 0.01 | Mar 6, 2018 | Afian FileRun (before 2018.02.13) suffers from a remote SQL injection vulnerability, when logged in as superuser, via the search parameter in a /?module=metadata§ion=cpanel&page=list_filetypes request. | ||
| CVE-2018-7734 | Hig | 0.47 | 7.2 | 0.01 | Mar 6, 2018 | Afian FileRun (before 2018.02.13) suffers from a remote SQL injection vulnerability, when logged in as superuser, via the search parameter in a /?module=users§ion=cpanel&page=list request. | ||
| CVE-2018-7579 | Hig | 0.47 | 7.2 | 0.01 | Mar 1, 2018 | \application\admin\controller\update_urls.class.php in YzmCMS 3.6 has SQL Injection via the catids array parameter to admin/update_urls/update_category_url.html. | ||
| CVE-2018-6393 | Hig | 0.47 | 7.2 | 0.02 | Jan 29, 2018 | FreePBX 10.13.66-32bit and 14.0.1.24 (SNG7-PBX-64bit-1712-2) allow post-authentication SQL injection via the order parameter. NOTE: the vendor disputes this issue because it is intentional that a user can "directly modify SQL tables ... [or] run shell scripts ... once ... logged… | ||
| CVE-2018-5697 | Hig | 0.47 | 7.2 | 0.01 | Jan 14, 2018 | Icy Phoenix 2.2.0.105 allows SQL injection via an unapprove request to admin_kb_art.php or the order parameter to admin_jr_admin.php, related to functions_kb.php. | ||
| CVE-2018-5695 | Hig | 0.47 | 7.2 | 0.01 | Jan 14, 2018 | The WpJobBoard plugin 4.4.4 for WordPress allows SQL injection via the order or sort parameter to the wpjb-job or wpjb-alerts module, with a request to wp-admin/admin.php. | ||
| CVE-2017-17941 | Hig | 0.47 | 7.2 | 0.01 | Dec 28, 2017 | PHP Scripts Mall Single Theater Booking has SQL Injection via the admin/movieview.php movieid parameter. | ||
| CVE-2017-17829 | Hig | 0.47 | 7.2 | 0.01 | Dec 21, 2017 | Bus Booking Script has SQL Injection via the admin/view_seatseller.php sp_id parameter or the admin/view_member.php memid parameter. | ||
| CVE-2017-8198 | Hig | 0.47 | 7.2 | 0.01 | Nov 22, 2017 | FusionSphere V100R006C00SPC102(NFV) has an SQL injection vulnerability. An authenticated, remote attacker could craft interface messages carrying malicious SQL statements and send them to a target device. Successful exploit could allow the attacker to launch an SQL injection… | ||
| CVE-2017-16000 | Hig | 0.47 | 7.2 | 0.02 | Oct 29, 2017 | SQL injection vulnerability in the EyesOfNetwork web interface (aka eonweb) 5.1-0 allows remote authenticated administrators to execute arbitrary SQL commands via the graph parameter to module/capacity_per_label/index.php. | ||
| CVE-2017-15949 | Hig | 0.47 | 7.2 | 0.01 | Oct 28, 2017 | Xavier PHP Management Panel 2.4 allows SQL injection via the usertoedit parameter to admin/adminuseredit.php or the log_id parameter to admin/editgroup.php. |
- risk 0.47cvss 8.3epss 0.02
A vulnerability was found in openstack-ironic-inspector all versions excluding 5.0.2, 6.0.3, 7.2.4, 8.0.3 and 8.2.1. A SQL-injection vulnerability was found in openstack-ironic-inspector's node_cache.find_node(). This function makes a SQL query using unfiltered data from a…
- risk 0.47cvss 7.2epss 0.01
Gxlcms 2.0 before bug fix 20180915 has SQL Injection exploitable by an administrator.
- risk 0.47cvss 7.2epss 0.02
SAP MaxDB (liveCache), versions 7.8 and 7.9, allows an attacker who gets DBM operator privileges to execute crafted database queries and therefore read, modify or delete sensitive data from database.
- risk 0.47cvss 7.2epss 0.02
An issue was discovered in WUZHI CMS 4.1.0. The vulnerable file is coreframe/app/order/admin/goods.php. The $keywords parameter is taken directly into execution without any filtering, leading to SQL injection.
- risk 0.47cvss 7.2epss 0.01
SQL injection vulnerability in the Pixelpost v1.7.3 and earlier allows remote authenticated attackers to execute arbitrary SQL commands via unspecified vectors.
- risk 0.47cvss 7.2epss 0.01
portfolioCMS 1.0.5 has SQL Injection via the admin/portfolio.php preview parameter.
- risk 0.47cvss 7.2epss 0.01
iScripts eSwap v2.4 has SQL injection via the "registration_settings.php" ddlFree parameter in the Admin Panel.
- risk 0.47cvss 7.2epss 0.01
Kentico 10 before 10.0.50 and 11 before 11.0.3 has SQL injection in the administration interface.
- risk 0.47cvss 6.8epss 0.03
A SQL injection vulnerability in an Trend Micro Email Encryption Gateway 5.5 search configuration script could allow an attacker to execute SQL commands to upload and execute arbitrary code that may harm the target system.
- risk 0.47cvss 7.2epss 0.01
Afian FileRun (before 2018.02.13) suffers from a remote SQL injection vulnerability, when logged in as superuser, via the search parameter in a /?module=metadata§ion=cpanel&page=list_filetypes request.
- risk 0.47cvss 7.2epss 0.01
Afian FileRun (before 2018.02.13) suffers from a remote SQL injection vulnerability, when logged in as superuser, via the search parameter in a /?module=users§ion=cpanel&page=list request.
- risk 0.47cvss 7.2epss 0.01
\application\admin\controller\update_urls.class.php in YzmCMS 3.6 has SQL Injection via the catids array parameter to admin/update_urls/update_category_url.html.
- risk 0.47cvss 7.2epss 0.02
FreePBX 10.13.66-32bit and 14.0.1.24 (SNG7-PBX-64bit-1712-2) allow post-authentication SQL injection via the order parameter. NOTE: the vendor disputes this issue because it is intentional that a user can "directly modify SQL tables ... [or] run shell scripts ... once ... logged…
- risk 0.47cvss 7.2epss 0.01
Icy Phoenix 2.2.0.105 allows SQL injection via an unapprove request to admin_kb_art.php or the order parameter to admin_jr_admin.php, related to functions_kb.php.
- risk 0.47cvss 7.2epss 0.01
The WpJobBoard plugin 4.4.4 for WordPress allows SQL injection via the order or sort parameter to the wpjb-job or wpjb-alerts module, with a request to wp-admin/admin.php.
- risk 0.47cvss 7.2epss 0.01
PHP Scripts Mall Single Theater Booking has SQL Injection via the admin/movieview.php movieid parameter.
- risk 0.47cvss 7.2epss 0.01
Bus Booking Script has SQL Injection via the admin/view_seatseller.php sp_id parameter or the admin/view_member.php memid parameter.
- risk 0.47cvss 7.2epss 0.01
FusionSphere V100R006C00SPC102(NFV) has an SQL injection vulnerability. An authenticated, remote attacker could craft interface messages carrying malicious SQL statements and send them to a target device. Successful exploit could allow the attacker to launch an SQL injection…
- risk 0.47cvss 7.2epss 0.02
SQL injection vulnerability in the EyesOfNetwork web interface (aka eonweb) 5.1-0 allows remote authenticated administrators to execute arbitrary SQL commands via the graph parameter to module/capacity_per_label/index.php.
- risk 0.47cvss 7.2epss 0.01
Xavier PHP Management Panel 2.4 allows SQL injection via the usertoedit parameter to admin/adminuseredit.php or the log_id parameter to admin/editgroup.php.