VYPR

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

BaseStableLikelihood: High

Description

The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.

Hierarchy (View 1000)

Parents

Children

Related attack patterns (CAPEC)

CAPEC-108 · CAPEC-109 · CAPEC-110 · CAPEC-470 · CAPEC-66 · CAPEC-7

CVEs mapped to this weakness (8,799)

page 24 of 440
  • CVE-2015-7670CriSep 26, 2017
    risk 0.64cvss 9.8epss 0.01

    Multiple SQL injection vulnerabilities in includes/update.php in the Support Ticket System plugin before 1.2.1 for WordPress allow remote attackers to execute arbitrary SQL commands via the (1) user or (2) id parameter.

  • CVE-2015-7390CriSep 26, 2017
    risk 0.64cvss 9.8epss 0.00

    SQL injection vulnerability in TestLink before 1.9.14 allows remote attackers to execute arbitrary SQL commands via the apikey parameter to lnl.php.

  • CVE-2017-7973CriSep 26, 2017
    risk 0.64cvss 9.8epss 0.00

    A SQL injection vulnerability exists in Schneider Electric's U.motion Builder software versions 1.2.1 and prior in which an unauthenticated user can use calls to various paths allowing performance of arbitrary SQL commands against the underlying database.

  • CVE-2017-14125CriSep 25, 2017
    risk 0.64cvss 9.8epss 0.02

    SQL injection vulnerability in the Responsive Image Gallery plugin before 1.2.1 for WordPress allows remote attackers to execute arbitrary SQL commands via the "id" parameter in an add_edit_theme task in the wpdevart_gallery_themes page to wp-admin/admin.php.

  • CVE-2017-14652CriSep 21, 2017
    risk 0.64cvss 9.8epss 0.01

    SQL Injection vulnerability in mobiquo/lib/classTTForum.php in the Tapatalk plugin before 4.5.8 for MyBB allows an unauthenticated remote attacker to inject arbitrary SQL commands via an XML-RPC encoded document sent as part of the user registration process.

  • CVE-2017-14512CriSep 17, 2017
    risk 0.64cvss 9.8epss 0.00

    NexusPHP 1.5.beta5.20120707 has SQL Injection in forummanage.php via the sort parameter in an editforum action, a different vulnerability than CVE-2017-12981.

  • CVE-2017-1002028CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.01

    Vulnerability in wordpress plugin wordpress-gallery-transformation v1.0, SQL injection is in ./wordpress-gallery-transformation/gallery.php via $jpic parameter being unsanitized before being passed into an SQL query.

  • CVE-2017-1002027CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.01

    Vulnerability in wordpress plugin rk-responsive-contact-form v1.0, The variable $delid isn't sanitized before being passed into an SQL query in file ./rk-responsive-contact-form/include/rk_user_list.php.

  • CVE-2017-1002019CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.06

    Vulnerability in wordpress plugin eventr v1.02.2, The edit.php form and event_form.php code do not sanitize input, this allows for blind SQL injection via the event parameter.

  • CVE-2017-1002018CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.06

    Vulnerability in wordpress plugin eventr v1.02.2, The edit.php form and attendees.php code do not sanitize input, this allows for blind SQL injection via the event parameter.

  • CVE-2017-1002015CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.06

    Vulnerability in wordpress plugin image-gallery-with-slideshow v1.5.2, Blind SQL Injection in image-gallery-with-slideshow/admin_setting.php via selectMulGallery parameter.

  • CVE-2017-1002014CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.06

    Vulnerability in wordpress plugin image-gallery-with-slideshow v1.5.2, Blind SQL Injection in image-gallery-with-slideshow/admin_setting.php via gallery_name parameter.

  • CVE-2017-1002013CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.06

    Vulnerability in wordpress plugin image-gallery-with-slideshow v1.5.2, Blind SQL Injection via imgid parameter in image-gallery-with-slideshow/admin_setting.php.

  • CVE-2017-1002010CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.06

    Vulnerability in wordpress plugin Membership Simplified v1.58, The code in membership-simplified-for-oap-members-only/updateDB.php is vulnerable to blind SQL injection because it doesn't sanitize user input via recordId in the delete_media function.

  • CVE-2017-1002009CriSep 14, 2017
    risk 0.64cvss 9.8epss 0.06

    Vulnerability in wordpress plugin Membership Simplified v1.58, The code in membership-simplified-for-oap-members-only/updateDB.php is vulnerable to blind SQL injection because it doesn't sanitize user input via recordId in the delete function.

  • CVE-2017-14403CriSep 13, 2017
    risk 0.64cvss 9.8epss 0.00

    The EyesOfNetwork web interface (aka eonweb) 5.1-0 has SQL injection via the term parameter to module/admin_group/search.php.

  • CVE-2017-14402CriSep 13, 2017
    risk 0.64cvss 9.8epss 0.00

    The EyesOfNetwork web interface (aka eonweb) 5.1-0 has SQL injection via the user_name parameter to module/admin_user/add_modify_user.php in the "ACCOUNT CREATION" section, related to lack of input validation in include/function.php.

  • CVE-2017-14401CriSep 13, 2017
    risk 0.64cvss 9.8epss 0.00

    The EyesOfNetwork web interface (aka eonweb) 5.1-0 has SQL injection via the user_name parameter to module/admin_user/add_modify_user.php in the "ACCOUNT UPDATE" section.

  • CVE-2017-8015CriSep 12, 2017
    risk 0.64cvss 9.8epss 0.01

    EMC AppSync (all versions prior to 3.5) contains a SQL injection vulnerability that could potentially be exploited by malicious users to compromise the affected system.

  • CVE-2017-14345CriSep 12, 2017
    risk 0.64cvss 9.8epss 0.00

    SQL Injection exists in tianchoy/blog through 2017-09-12 via the id parameter to view.php.