VYPR

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

BaseStableLikelihood: High

Description

The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.

Hierarchy (View 1000)

Parents

Children

Related attack patterns (CAPEC)

CAPEC-108 · CAPEC-109 · CAPEC-110 · CAPEC-470 · CAPEC-66 · CAPEC-7

CVEs mapped to this weakness (12,807)

page 313 of 641
  • CVE-2020-21131HigJul 12, 2021
    risk 0.47cvss 7.2epss 0.01

    SQL Injection vulnerability in MetInfo 7.0.0beta via admin/?n=language&c=language_web&a=doAddLanguage.

  • CVE-2021-24451HigJul 6, 2021
    risk 0.47cvss 7.2epss 0.01

    The Export Users With Meta WordPress plugin before 0.6.5 did not escape the list of roles to export before using them in a SQL statement in the export functionality, available to admins, leading to an authenticated SQL Injection.

  • CVE-2021-24348HigJun 14, 2021
    risk 0.47cvss 7.2epss 0.02

    The menu delete functionality of the Side Menu – add fixed side buttons WordPress plugin before 3.1.5, available to Administrator users takes the did GET parameter and uses it into an SQL statement without proper sanitisation, validation or escaping, therefore leading to a SQL…

  • CVE-2021-24336HigJun 7, 2021
    risk 0.47cvss 7.2epss 0.02

    The FlightLog WordPress plugin through 3.0.2 does not sanitise, validate or escape various POST parameters before using them a SQL statement, leading to SQL injections exploitable by editor and administrator users

  • CVE-2021-29090HigJun 2, 2021
    risk 0.47cvss 7.2epss 0.02

    Improper neutralization of special elements used in an SQL command ('SQL Injection') vulnerability in PHP component in Synology Photo Station before 6.8.14-3500 allows remote authenticated users to execute arbitrary SQL command via unspecified vectors.

  • CVE-2021-29350HigApr 29, 2021
    risk 0.47cvss 7.2epss 0.01

    SQL injection in the getip function in conn/function.php in 发货100-设计素材下载系统 1.1 allows remote attackers to inject arbitrary SQL commands via the X-Forwarded-For header to admin/product_add.php.

  • CVE-2021-28157HigApr 14, 2021
    risk 0.47cvss 7.2epss 0.01

    An SQL Injection issue in Devolutions Server before 2021.1 and Devolutions Server LTS before 2020.3.18 allows an administrative user to execute arbitrary SQL commands via a username in api/security/userinfo/delete.

  • CVE-2021-24142HigMar 18, 2021
    risk 0.47cvss 7.2epss 0.01

    Unvaludated input in the 301 Redirects - Easy Redirect Manager WordPress plugin, versions before 2.51, did not sanitise its "Redirect From" column when importing a CSV file, allowing high privilege users to perform SQL injections.

  • CVE-2021-24141HigMar 18, 2021
    risk 0.47cvss 7.2epss 0.01

    Unvaludated input in the Advanced Database Cleaner plugin, versions before 3.0.2, lead to SQL injection allowing high privilege users (admin+) to perform SQL attacks.

  • CVE-2021-24140HigMar 18, 2021
    risk 0.47cvss 7.2epss 0.01

    Unvalidated input in the Ajax Load More WordPress plugin, versions before 5.3.2, lead to SQL Injection in POST /wp-admin/admin-ajax.php with param repeater=' or sleep(5)#&type=test.

  • CVE-2021-24131HigMar 18, 2021
    risk 0.47cvss 7.2epss 0.01

    Unvalidated input in the Anti-Spam by CleanTalk WordPress plugin, versions before 5.149, lead to multiple authenticated SQL injection vulnerabilities, however, it requires high privilege user (admin+).

  • CVE-2021-24130HigMar 18, 2021
    risk 0.47cvss 7.2epss 0.01

    Unvalidated input in the WP Google Map Plugin WordPress plugin, versions before 4.1.5, in the Manage Locations page within the plugin settings was vulnerable to SQL Injection through a high privileged user (admin+).

  • CVE-2021-24125HigMar 18, 2021
    risk 0.47cvss 7.2epss 0.01

    Unvalidated input in the Contact Form Submissions WordPress plugin before 1.7.1, could lead to SQL injection in the wpcf7_contact_form GET parameter when submitting a filter request as a high privilege user (admin+)

  • CVE-2021-27948HigMar 15, 2021
    risk 0.47cvss 7.2epss 0.01

    SQL Injection vulnerability in MyBB before 1.8.26 via User Groups. (issue 3 of 3).

  • CVE-2021-27947HigMar 15, 2021
    risk 0.47cvss 7.2epss 0.01

    SQL Injection vulnerability in MyBB before 1.8.26 via the Copy Forum feature in Forum Management. (issue 2 of 3).

  • CVE-2020-29143HigFeb 15, 2021
    risk 0.47cvss 7.2epss 0.02

    A SQL injection vulnerability in interface/reports/non_reported.php in OpenEMR before 5.0.2.5 allows a remote authenticated attacker to execute arbitrary SQL commands via the form_code parameter.

  • CVE-2020-29140HigFeb 15, 2021
    risk 0.47cvss 7.2epss 0.02

    A SQL injection vulnerability in interface/reports/immunization_report.php in OpenEMR before 5.0.2.5 allows a remote authenticated attacker to execute arbitrary SQL commands via the form_code parameter.

  • CVE-2020-29139HigFeb 15, 2021
    risk 0.47cvss 7.2epss 0.02

    A SQL injection vulnerability in interface/main/finder/patient_select.php from library/patient.inc in OpenEMR before 5.0.2.5 allows a remote authenticated attacker to execute arbitrary SQL commands via the searchFields parameter.

  • CVE-2020-29142HigFeb 15, 2021
    risk 0.47cvss 7.2epss 0.02

    A SQL injection vulnerability in interface/usergroup/usergroup_admin.php in OpenEMR before 5.0.2.5 allows a remote authenticated attacker to execute arbitrary SQL commands via the schedule_facility parameter when restrict_user_facility=on is in global settings.

  • CVE-2020-5427HigJan 27, 2021
    risk 0.47cvss 7.2epss 0.01

    In Spring Cloud Data Flow, versions 2.6.x prior to 2.6.5, versions 2.5.x prior 2.5.4, an application is vulnerable to SQL injection when requesting task execution.