VYPR

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

BaseStableLikelihood: High

Description

The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.

Hierarchy (View 1000)

Parents

Children

Related attack patterns (CAPEC)

CAPEC-108 · CAPEC-109 · CAPEC-110 · CAPEC-470 · CAPEC-66 · CAPEC-7

CVEs mapped to this weakness (12,807)

page 312 of 641
  • CVE-2021-24398HigSep 20, 2021
    risk 0.47cvss 7.2epss 0.02

    The Add new scene functionality in the Responsive 3D Slider WordPress plugin through 1.2 uses an id parameter which is not sanitised, escaped or validated before being inserted to a SQL statement, leading to SQL injection. This is a time based SQLI and in the same function…

  • CVE-2021-24397HigSep 20, 2021
    risk 0.47cvss 7.2epss 0.02

    The edit functionality in the MicroCopy WordPress plugin through 1.1.0 makes a get request to fetch the related option. The id parameter used is not sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection.

  • CVE-2021-24396HigSep 20, 2021
    risk 0.47cvss 7.2epss 0.02

    A pageid GET parameter of the GSEOR – WordPress SEO Plugin WordPress plugin through 1.3 is not sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection.

  • CVE-2021-24395HigSep 6, 2021
    risk 0.47cvss 7.2epss 0.02

    The editid GET parameter of the Embed Youtube Video WordPress plugin through 1.0 is not sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection.

  • CVE-2021-24394HigSep 6, 2021
    risk 0.47cvss 7.2epss 0.02

    An id GET parameter of the Easy Testimonial Manager WordPress plugin through 1.2.0 is not sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection

  • CVE-2021-24393HigSep 6, 2021
    risk 0.47cvss 7.2epss 0.02

    A c GET parameter of the Comment Highlighter WordPress plugin through 0.13 is not properly sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection.

  • CVE-2021-24392HigSep 6, 2021
    risk 0.47cvss 7.2epss 0.02

    An id GET parameter of the WordPress Membership SwiftCloud.io WordPress plugin through 1.0 is not properly sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection.

  • CVE-2021-24390HigSep 6, 2021
    risk 0.47cvss 7.2epss 0.02

    A proid GET parameter of the WordPress支付宝Alipay|财付通Tenpay|贝宝PayPal集成插件 WordPress plugin through 3.7.2 is not sanitised, properly escaped or validated before inserting to a SQL statement not delimited by quotes, leading to SQL injection.

  • CVE-2021-3264HigAug 27, 2021
    risk 0.47cvss 7.2epss 0.01

    SQL Injection vulnerability in cxuucms 3.1 ivia the pid parameter in public/admin.php.

  • CVE-2021-24557HigAug 23, 2021
    risk 0.47cvss 7.2epss 0.02

    The update functionality in the rslider_page uses an rs_id POST parameter which is not validated, sanitised or escaped before being inserted in sql query, therefore leading to SQL injection for users having Administrator role.

  • CVE-2021-24554HigAug 23, 2021
    risk 0.47cvss 7.2epss 0.07

    The Paytm – Donation Plugin WordPress plugin through 1.3.2 does not sanitise, validate or escape the id GET parameter before using it in a SQL statement when deleting donations, leading to an authenticated SQL injection issue

  • CVE-2021-24553HigAug 23, 2021
    risk 0.47cvss 7.2epss 0.02

    The Timeline Calendar WordPress plugin through 1.2 does not sanitise, validate or escape the edit GET parameter before using it in a SQL statement when editing events, leading to an authenticated SQL injection issue. Other SQL Injections are also present in the plugin

  • CVE-2021-24552HigAug 23, 2021
    risk 0.47cvss 7.2epss 0.02

    The Simple Events Calendar WordPress plugin through 1.4.0 does not sanitise, validate or escape the event_id POST parameter before using it in a SQL statement when deleting events, leading to an authenticated SQL injection issue

  • CVE-2021-24550HigAug 23, 2021
    risk 0.47cvss 7.2epss 0.02

    The Broken Link Manager WordPress plugin through 0.6.5 does not sanitise, validate or escape the url GET parameter before using it in a SQL statement when retrieving an URL to edit, leading to an authenticated SQL injection issue

  • CVE-2021-24497HigAug 23, 2021
    risk 0.47cvss 7.2epss 0.01

    The Giveaway WordPress plugin through 1.2.2 is vulnerable to an SQL Injection issue which allows an administrative user to execute arbitrary SQL commands via the $post_id on the options.php page.

  • CVE-2020-18746HigAug 18, 2021
    risk 0.47cvss 7.2epss 0.02

    SQL Injection in AiteCMS v1.0 allows remote attackers to execute arbitrary code via the component "aitecms/login/diy_list.php".

  • CVE-2021-24521HigAug 9, 2021
    risk 0.47cvss 7.2epss 0.02

    The Side Menu Lite – add sticky fixed buttons WordPress plugin before 2.2.1 does not properly sanitize input values from the browser when building an SQL statement. Users with the administrator role or permission to manage this plugin could perform an SQL Injection attack.

  • CVE-2021-24484HigAug 2, 2021
    risk 0.47cvss 7.2epss 0.01

    The get_reports() function in the Secure Copy Content Protection and Content Locking WordPress plugin before 2.6.7 did not use whitelist or validate the orderby parameter before using it in SQL statements passed to the get_results() DB calls, leading to SQL injection issues in…

  • CVE-2021-24483HigAug 2, 2021
    risk 0.47cvss 7.2epss 0.01

    The get_poll_categories(), get_polls() and get_reports() functions in the Poll Maker WordPress plugin before 3.2.1 did not use whitelist or validate the orderby parameter before using it in SQL statements passed to the get_results() DB calls, leading to SQL injection issues in…

  • CVE-2021-24456HigAug 2, 2021
    risk 0.47cvss 7.2epss 0.01

    The Quiz Maker WordPress plugin before 6.2.0.9 did not properly sanitise and escape the order and orderby parameters before using them in SQL statements, leading to SQL injection issues in the admin dashboard