VYPR

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

BaseStableLikelihood: High

Description

The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.

Hierarchy (View 1000)

Parents

Children

Related attack patterns (CAPEC)

CAPEC-108 · CAPEC-109 · CAPEC-110 · CAPEC-470 · CAPEC-66 · CAPEC-7

CVEs mapped to this weakness (12,807)

page 306 of 641
  • CVE-2024-9887HigNov 16, 2024
    risk 0.47cvss 7.2epss 0.00

    The Login using WordPress Users ( WP as SAML IDP ) plugin for WordPress is vulnerable to time-based SQL Injection via the ‘id’ parameter in all versions up to, and including, 1.15.6 due to insufficient escaping on the user supplied parameter and lack of sufficient…

  • CVE-2024-45794HigNov 7, 2024
    risk 0.47cvss 8.3epss 0.01

    devtron is an open source tool integration platform for Kubernetes. In affected versions an authenticated user (with minimum permission) could utilize and exploit SQL Injection to allow the execution of malicious SQL queries via CreateUser API (/orchestrator/user). This issue…

  • CVE-2024-43436HigNov 7, 2024
    risk 0.47cvss 7.2epss 0.01

    A SQL injection risk flaw was found in the XMLDB editor tool available to site administrators.

  • CVE-2024-48230HigOct 25, 2024
    risk 0.47cvss 7.2epss 0.00

    funadmin 5.0.2 is vulnerable to SQL Injection via the parentField parameter in the index method of \backend\controller\auth\Auth.php.

  • CVE-2024-48229HigOct 25, 2024
    risk 0.47cvss 7.2epss 0.00

    funadmin 5.0.2 has a SQL injection vulnerability in the Curd one click command mode plugin.

  • CVE-2024-48226HigOct 25, 2024
    risk 0.47cvss 7.2epss 0.01

    Funadmin 5.0.2 is vulnerable to SQL Injection in curd/table/savefield.

  • CVE-2024-48223HigOct 25, 2024
    risk 0.47cvss 7.2epss 0.01

    Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/fieldlist.

  • CVE-2024-48222HigOct 25, 2024
    risk 0.47cvss 7.2epss 0.01

    Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/edit.

  • CVE-2024-48218HigOct 25, 2024
    risk 0.47cvss 7.2epss 0.01

    Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/list.

  • CVE-2024-48231HigOct 21, 2024
    risk 0.47cvss 7.2epss 0.00

    Funadmin 5.0.2 is vulnerable to SQL Injection via the selectFields parameter in the index method of \backend\controller\auth\Auth.php.

  • CVE-2023-3419HigAug 17, 2024
    risk 0.47cvss 7.2epss 0.01

    The tagDiv Opt-In Builder plugin is vulnerable to Blind SQL Injection via the 'couponId' parameter of the 'recreate_stripe_subscription' REST API endpoint in versions up to, and including, 1.4.4 due to insufficient escaping on the user supplied parameter and lack of sufficient…

  • CVE-2023-3416HigAug 17, 2024
    risk 0.47cvss 7.2epss 0.01

    The tagDiv Opt-In Builder plugin is vulnerable to Blind SQL Injection via the 'subscriptionCouponId' parameter via the 'create_stripe_subscription' REST API endpoint in versions up to, and including, 1.4.4 due to insufficient escaping on the user supplied parameter and lack of…

  • CVE-2024-7101HigJul 25, 2024
    risk 0.47cvss 7.3epss 0.00

    A vulnerability, which was classified as critical, has been found in ForIP Tecnologia Administração PABX 1.x. This issue affects some unknown processing of the file /login of the component Authentication Form. The manipulation of the argument usuario leads to sql injection.…

  • CVE-2024-6003HigJun 14, 2024
    risk 0.47cvss 7.3epss 0.01

    A vulnerability was found in Guangdong Baolun Electronics IP Network Broadcasting Service Platform 2.0. It has been classified as critical. Affected is an unknown function of the file /api/v2/maps. The manipulation of the argument orderColumn leads to sql injection. It is…

  • CVE-2024-4902HigJun 7, 2024
    risk 0.47cvss 7.2epss 0.01

    The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to time-based SQL Injection via the ‘course_id’ parameter in all versions up to, and including, 2.7.1 due to insufficient escaping on the user supplied parameter and lack of sufficient…

  • CVE-2022-28132HigMay 14, 2024
    risk 0.47cvss 7.2epss 0.01

    The T-Soft E-Commerce 4 web application is susceptible to SQL injection (SQLi) attacks when authenticated as an admin or privileged user. This vulnerability allows attackers to access and manipulate the database through crafted requests. By exploiting this flaw, attackers can…

  • CVE-2024-4423HigMay 14, 2024
    risk 0.47cvss 7.2epss 0.01

    The access control in CemiPark software does not properly validate user-entered data, which allows the authentication bypass. An attacker who has network access to the login panel can log in with administrator rights to the application.This issue affects CemiPark software: 4.5,…

  • CVE-2024-34534HigMay 6, 2024
    risk 0.47cvss 7.3epss 0.01

    A SQL injection vulnerability in Cybrosys Techno Solutions Text Commander module (aka text_commander) 16.0 through 16.0.1 allows a remote attacker to gain privileges via the data parameter to models/ir_model.py:IrModel::chech_model.

  • CVE-2024-34533HigMay 6, 2024
    risk 0.47cvss 7.3epss 0.01

    A SQL injection vulnerability in ZI PT Solusi Usaha Mudah Analytic Data Query module (aka izi_data) 11.0 through 17.x before 17.0.3 allows a remote attacker to gain privileges via a query to IZITools::query_check, IZITools::query_fetch, or IZITools::query_execute.

  • CVE-2024-3067HigApr 16, 2024
    risk 0.47cvss 7.2epss 0.01

    The WooCommerce Google Feed Manager plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 2.4.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. …