CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Description
The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.
Hierarchy (View 1000)
Related attack patterns (CAPEC)
CAPEC-108 · CAPEC-109 · CAPEC-110 · CAPEC-470 · CAPEC-66 · CAPEC-7
CVEs mapped to this weakness (12,807)
page 306 of 641| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-9887 | Hig | 0.47 | 7.2 | 0.00 | Nov 16, 2024 | The Login using WordPress Users ( WP as SAML IDP ) plugin for WordPress is vulnerable to time-based SQL Injection via the ‘id’ parameter in all versions up to, and including, 1.15.6 due to insufficient escaping on the user supplied parameter and lack of sufficient… | ||
| CVE-2024-45794 | — | Hig | 0.47 | 8.3 | 0.01 | Nov 7, 2024 | devtron is an open source tool integration platform for Kubernetes. In affected versions an authenticated user (with minimum permission) could utilize and exploit SQL Injection to allow the execution of malicious SQL queries via CreateUser API (/orchestrator/user). This issue… | |
| CVE-2024-43436 | Hig | 0.47 | 7.2 | 0.01 | Nov 7, 2024 | A SQL injection risk flaw was found in the XMLDB editor tool available to site administrators. | ||
| CVE-2024-48230 | Hig | 0.47 | 7.2 | 0.00 | Oct 25, 2024 | funadmin 5.0.2 is vulnerable to SQL Injection via the parentField parameter in the index method of \backend\controller\auth\Auth.php. | ||
| CVE-2024-48229 | Hig | 0.47 | 7.2 | 0.00 | Oct 25, 2024 | funadmin 5.0.2 has a SQL injection vulnerability in the Curd one click command mode plugin. | ||
| CVE-2024-48226 | Hig | 0.47 | 7.2 | 0.01 | Oct 25, 2024 | Funadmin 5.0.2 is vulnerable to SQL Injection in curd/table/savefield. | ||
| CVE-2024-48223 | Hig | 0.47 | 7.2 | 0.01 | Oct 25, 2024 | Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/fieldlist. | ||
| CVE-2024-48222 | Hig | 0.47 | 7.2 | 0.01 | Oct 25, 2024 | Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/edit. | ||
| CVE-2024-48218 | Hig | 0.47 | 7.2 | 0.01 | Oct 25, 2024 | Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/list. | ||
| CVE-2024-48231 | Hig | 0.47 | 7.2 | 0.00 | Oct 21, 2024 | Funadmin 5.0.2 is vulnerable to SQL Injection via the selectFields parameter in the index method of \backend\controller\auth\Auth.php. | ||
| CVE-2023-3419 | Hig | 0.47 | 7.2 | 0.01 | Aug 17, 2024 | The tagDiv Opt-In Builder plugin is vulnerable to Blind SQL Injection via the 'couponId' parameter of the 'recreate_stripe_subscription' REST API endpoint in versions up to, and including, 1.4.4 due to insufficient escaping on the user supplied parameter and lack of sufficient… | ||
| CVE-2023-3416 | Hig | 0.47 | 7.2 | 0.01 | Aug 17, 2024 | The tagDiv Opt-In Builder plugin is vulnerable to Blind SQL Injection via the 'subscriptionCouponId' parameter via the 'create_stripe_subscription' REST API endpoint in versions up to, and including, 1.4.4 due to insufficient escaping on the user supplied parameter and lack of… | ||
| CVE-2024-7101 | Hig | 0.47 | 7.3 | 0.00 | Jul 25, 2024 | A vulnerability, which was classified as critical, has been found in ForIP Tecnologia Administração PABX 1.x. This issue affects some unknown processing of the file /login of the component Authentication Form. The manipulation of the argument usuario leads to sql injection.… | ||
| CVE-2024-6003 | Hig | 0.47 | 7.3 | 0.01 | Jun 14, 2024 | A vulnerability was found in Guangdong Baolun Electronics IP Network Broadcasting Service Platform 2.0. It has been classified as critical. Affected is an unknown function of the file /api/v2/maps. The manipulation of the argument orderColumn leads to sql injection. It is… | ||
| CVE-2024-4902 | Hig | 0.47 | 7.2 | 0.01 | Jun 7, 2024 | The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to time-based SQL Injection via the ‘course_id’ parameter in all versions up to, and including, 2.7.1 due to insufficient escaping on the user supplied parameter and lack of sufficient… | ||
| CVE-2022-28132 | Hig | 0.47 | 7.2 | 0.01 | May 14, 2024 | The T-Soft E-Commerce 4 web application is susceptible to SQL injection (SQLi) attacks when authenticated as an admin or privileged user. This vulnerability allows attackers to access and manipulate the database through crafted requests. By exploiting this flaw, attackers can… | ||
| CVE-2024-4423 | Hig | 0.47 | 7.2 | 0.01 | May 14, 2024 | The access control in CemiPark software does not properly validate user-entered data, which allows the authentication bypass. An attacker who has network access to the login panel can log in with administrator rights to the application.This issue affects CemiPark software: 4.5,… | ||
| CVE-2024-34534 | Hig | 0.47 | 7.3 | 0.01 | May 6, 2024 | A SQL injection vulnerability in Cybrosys Techno Solutions Text Commander module (aka text_commander) 16.0 through 16.0.1 allows a remote attacker to gain privileges via the data parameter to models/ir_model.py:IrModel::chech_model. | ||
| CVE-2024-34533 | Hig | 0.47 | 7.3 | 0.01 | May 6, 2024 | A SQL injection vulnerability in ZI PT Solusi Usaha Mudah Analytic Data Query module (aka izi_data) 11.0 through 17.x before 17.0.3 allows a remote attacker to gain privileges via a query to IZITools::query_check, IZITools::query_fetch, or IZITools::query_execute. | ||
| CVE-2024-3067 | Hig | 0.47 | 7.2 | 0.01 | Apr 16, 2024 | The WooCommerce Google Feed Manager plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 2.4.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. … |
- risk 0.47cvss 7.2epss 0.00
The Login using WordPress Users ( WP as SAML IDP ) plugin for WordPress is vulnerable to time-based SQL Injection via the ‘id’ parameter in all versions up to, and including, 1.15.6 due to insufficient escaping on the user supplied parameter and lack of sufficient…
- risk 0.47cvss 8.3epss 0.01
devtron is an open source tool integration platform for Kubernetes. In affected versions an authenticated user (with minimum permission) could utilize and exploit SQL Injection to allow the execution of malicious SQL queries via CreateUser API (/orchestrator/user). This issue…
- risk 0.47cvss 7.2epss 0.01
A SQL injection risk flaw was found in the XMLDB editor tool available to site administrators.
- risk 0.47cvss 7.2epss 0.00
funadmin 5.0.2 is vulnerable to SQL Injection via the parentField parameter in the index method of \backend\controller\auth\Auth.php.
- risk 0.47cvss 7.2epss 0.00
funadmin 5.0.2 has a SQL injection vulnerability in the Curd one click command mode plugin.
- risk 0.47cvss 7.2epss 0.01
Funadmin 5.0.2 is vulnerable to SQL Injection in curd/table/savefield.
- risk 0.47cvss 7.2epss 0.01
Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/fieldlist.
- risk 0.47cvss 7.2epss 0.01
Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/edit.
- risk 0.47cvss 7.2epss 0.01
Funadmin v5.0.2 has a SQL injection vulnerability in /curd/table/list.
- risk 0.47cvss 7.2epss 0.00
Funadmin 5.0.2 is vulnerable to SQL Injection via the selectFields parameter in the index method of \backend\controller\auth\Auth.php.
- risk 0.47cvss 7.2epss 0.01
The tagDiv Opt-In Builder plugin is vulnerable to Blind SQL Injection via the 'couponId' parameter of the 'recreate_stripe_subscription' REST API endpoint in versions up to, and including, 1.4.4 due to insufficient escaping on the user supplied parameter and lack of sufficient…
- risk 0.47cvss 7.2epss 0.01
The tagDiv Opt-In Builder plugin is vulnerable to Blind SQL Injection via the 'subscriptionCouponId' parameter via the 'create_stripe_subscription' REST API endpoint in versions up to, and including, 1.4.4 due to insufficient escaping on the user supplied parameter and lack of…
- risk 0.47cvss 7.3epss 0.00
A vulnerability, which was classified as critical, has been found in ForIP Tecnologia Administração PABX 1.x. This issue affects some unknown processing of the file /login of the component Authentication Form. The manipulation of the argument usuario leads to sql injection.…
- risk 0.47cvss 7.3epss 0.01
A vulnerability was found in Guangdong Baolun Electronics IP Network Broadcasting Service Platform 2.0. It has been classified as critical. Affected is an unknown function of the file /api/v2/maps. The manipulation of the argument orderColumn leads to sql injection. It is…
- risk 0.47cvss 7.2epss 0.01
The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to time-based SQL Injection via the ‘course_id’ parameter in all versions up to, and including, 2.7.1 due to insufficient escaping on the user supplied parameter and lack of sufficient…
- risk 0.47cvss 7.2epss 0.01
The T-Soft E-Commerce 4 web application is susceptible to SQL injection (SQLi) attacks when authenticated as an admin or privileged user. This vulnerability allows attackers to access and manipulate the database through crafted requests. By exploiting this flaw, attackers can…
- risk 0.47cvss 7.2epss 0.01
The access control in CemiPark software does not properly validate user-entered data, which allows the authentication bypass. An attacker who has network access to the login panel can log in with administrator rights to the application.This issue affects CemiPark software: 4.5,…
- risk 0.47cvss 7.3epss 0.01
A SQL injection vulnerability in Cybrosys Techno Solutions Text Commander module (aka text_commander) 16.0 through 16.0.1 allows a remote attacker to gain privileges via the data parameter to models/ir_model.py:IrModel::chech_model.
- risk 0.47cvss 7.3epss 0.01
A SQL injection vulnerability in ZI PT Solusi Usaha Mudah Analytic Data Query module (aka izi_data) 11.0 through 17.x before 17.0.3 allows a remote attacker to gain privileges via a query to IZITools::query_check, IZITools::query_fetch, or IZITools::query_execute.
- risk 0.47cvss 7.2epss 0.01
The WooCommerce Google Feed Manager plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 2.4.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. …