VYPR

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

BaseStableLikelihood: High

Description

The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.

Hierarchy (View 1000)

Parents

Children

Related attack patterns (CAPEC)

CAPEC-108 · CAPEC-109 · CAPEC-110 · CAPEC-470 · CAPEC-66 · CAPEC-7

CVEs mapped to this weakness (10,236)

page 216 of 512
  • CVE-2019-10141HigJul 30, 2019
    risk 0.47cvss 8.3epss 0.02

    A vulnerability was found in openstack-ironic-inspector all versions excluding 5.0.2, 6.0.3, 7.2.4, 8.0.3 and 8.2.1. A SQL-injection vulnerability was found in openstack-ironic-inspector's node_cache.find_node(). This function makes a SQL query using unfiltered data from a…

  • CVE-2018-16436HigSep 5, 2018
    risk 0.47cvss 7.2epss 0.01

    Gxlcms 2.0 before bug fix 20180915 has SQL Injection exploitable by an administrator.

  • CVE-2018-2450HigAug 14, 2018
    risk 0.47cvss 7.2epss 0.02

    SAP MaxDB (liveCache), versions 7.8 and 7.9, allows an attacker who gets DBM operator privileges to execute crafted database queries and therefore read, modify or delete sensitive data from database.

  • CVE-2018-14472HigJul 20, 2018
    risk 0.47cvss 7.2epss 0.02

    An issue was discovered in WUZHI CMS 4.1.0. The vulnerable file is coreframe/app/order/admin/goods.php. The $keywords parameter is taken directly into execution without any filtering, leading to SQL injection.

  • CVE-2018-0606HigJun 26, 2018
    risk 0.47cvss 7.2epss 0.01

    SQL injection vulnerability in the Pixelpost v1.7.3 and earlier allows remote authenticated attackers to execute arbitrary SQL commands via unspecified vectors.

  • CVE-2018-12110HigJun 11, 2018
    risk 0.47cvss 7.2epss 0.01

    portfolioCMS 1.0.5 has SQL Injection via the admin/portfolio.php preview parameter.

  • CVE-2018-10050HigApr 11, 2018
    risk 0.47cvss 7.2epss 0.01

    iScripts eSwap v2.4 has SQL injection via the "registration_settings.php" ddlFree parameter in the Admin Panel.

  • CVE-2018-6843HigMar 19, 2018
    risk 0.47cvss 7.2epss 0.01

    Kentico 10 before 10.0.50 and 11 before 11.0.3 has SQL injection in the administration interface.

  • CVE-2018-6230MedMar 15, 2018
    risk 0.47cvss 6.8epss 0.03

    A SQL injection vulnerability in an Trend Micro Email Encryption Gateway 5.5 search configuration script could allow an attacker to execute SQL commands to upload and execute arbitrary code that may harm the target system.

  • CVE-2018-7735HigMar 6, 2018
    risk 0.47cvss 7.2epss 0.01

    Afian FileRun (before 2018.02.13) suffers from a remote SQL injection vulnerability, when logged in as superuser, via the search parameter in a /?module=metadata&section=cpanel&page=list_filetypes request.

  • CVE-2018-7734HigMar 6, 2018
    risk 0.47cvss 7.2epss 0.01

    Afian FileRun (before 2018.02.13) suffers from a remote SQL injection vulnerability, when logged in as superuser, via the search parameter in a /?module=users&section=cpanel&page=list request.

  • CVE-2018-7579HigMar 1, 2018
    risk 0.47cvss 7.2epss 0.01

    \application\admin\controller\update_urls.class.php in YzmCMS 3.6 has SQL Injection via the catids array parameter to admin/update_urls/update_category_url.html.

  • CVE-2018-6393HigJan 29, 2018
    risk 0.47cvss 7.2epss 0.02

    FreePBX 10.13.66-32bit and 14.0.1.24 (SNG7-PBX-64bit-1712-2) allow post-authentication SQL injection via the order parameter. NOTE: the vendor disputes this issue because it is intentional that a user can "directly modify SQL tables ... [or] run shell scripts ... once ... logged…

  • CVE-2018-5697HigJan 14, 2018
    risk 0.47cvss 7.2epss 0.01

    Icy Phoenix 2.2.0.105 allows SQL injection via an unapprove request to admin_kb_art.php or the order parameter to admin_jr_admin.php, related to functions_kb.php.

  • CVE-2018-5695HigJan 14, 2018
    risk 0.47cvss 7.2epss 0.01

    The WpJobBoard plugin 4.4.4 for WordPress allows SQL injection via the order or sort parameter to the wpjb-job or wpjb-alerts module, with a request to wp-admin/admin.php.

  • CVE-2017-17941HigDec 28, 2017
    risk 0.47cvss 7.2epss 0.01

    PHP Scripts Mall Single Theater Booking has SQL Injection via the admin/movieview.php movieid parameter.

  • CVE-2017-17829HigDec 21, 2017
    risk 0.47cvss 7.2epss 0.01

    Bus Booking Script has SQL Injection via the admin/view_seatseller.php sp_id parameter or the admin/view_member.php memid parameter.

  • CVE-2017-8198HigNov 22, 2017
    risk 0.47cvss 7.2epss 0.01

    FusionSphere V100R006C00SPC102(NFV) has an SQL injection vulnerability. An authenticated, remote attacker could craft interface messages carrying malicious SQL statements and send them to a target device. Successful exploit could allow the attacker to launch an SQL injection…

  • CVE-2017-16000HigOct 29, 2017
    risk 0.47cvss 7.2epss 0.02

    SQL injection vulnerability in the EyesOfNetwork web interface (aka eonweb) 5.1-0 allows remote authenticated administrators to execute arbitrary SQL commands via the graph parameter to module/capacity_per_label/index.php.

  • CVE-2017-15949HigOct 28, 2017
    risk 0.47cvss 7.2epss 0.01

    Xavier PHP Management Panel 2.4 allows SQL injection via the usertoedit parameter to admin/adminuseredit.php or the log_id parameter to admin/editgroup.php.