VYPR

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

BaseStableLikelihood: High

Description

The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.

Hierarchy (View 1000)

Parents

Children

Related attack patterns (CAPEC)

CAPEC-108 · CAPEC-109 · CAPEC-110 · CAPEC-470 · CAPEC-66 · CAPEC-7

CVEs mapped to this weakness (12,807)

page 316 of 641
  • CVE-2016-10943HigSep 13, 2019
    risk 0.47cvss 7.2epss 0.02

    The zx-csv-upload plugin 1 for WordPress has SQL injection via the id parameter.

  • CVE-2016-10940HigSep 13, 2019
    risk 0.47cvss 7.2epss 0.06

    The zm-gallery plugin 1.0 for WordPress has SQL injection via the order parameter.

  • CVE-2016-10939HigSep 13, 2019
    risk 0.47cvss 7.2epss 0.02

    The xtremelocator plugin 1.5 for WordPress has SQL injection via the id parameter.

  • CVE-2019-11363HigAug 29, 2019
    risk 0.47cvss 7.2epss 0.01

    A SQL injection vulnerability in Snare Central before 7.4.5 allows remote authenticated attackers to execute arbitrary SQL commands via the AgentConsole/UserGroupQuery.php ShowUser parameter.

  • CVE-2015-9353HigAug 28, 2019
    risk 0.47cvss 7.2epss 0.01

    The gigpress plugin before 2.3.11 for WordPress has SQL injection in the admin area, a different vulnerability than CVE-2015-4066.

  • CVE-2019-10141HigJul 30, 2019
    risk 0.47cvss 8.3epss 0.02

    A vulnerability was found in openstack-ironic-inspector all versions excluding 5.0.2, 6.0.3, 7.2.4, 8.0.3 and 8.2.1. A SQL-injection vulnerability was found in openstack-ironic-inspector's node_cache.find_node(). This function makes a SQL query using unfiltered data from a…

  • CVE-2018-11774HigJul 29, 2019
    risk 0.47cvss 7.2epss 0.01

    Apache VCL versions 2.1 through 2.5 do not properly validate form input when adding and removing VMs to and from hosts. The form data is then used in SQL statements. This allows for an SQL injection attack. Access to this portion of a VCL system requires admin level rights.…

  • CVE-2018-11772HigJul 29, 2019
    risk 0.47cvss 7.2epss 0.01

    Apache VCL versions 2.1 through 2.5 do not properly validate cookie input when determining what node (if any) was previously selected in the privilege tree. The cookie data is then used in an SQL statement. This allows for an SQL injection attack. Access to this portion of a VCL…

  • CVE-2019-13570HigJul 23, 2019
    risk 0.47cvss 7.2epss 0.01

    The AJdG AdRotate plugin before 5.3 for WordPress allows SQL Injection.

  • CVE-2018-12250HigJul 3, 2019
    risk 0.47cvss 7.2epss 0.02

    An issue was discovered in Elite CMS Pro 2.01. In /admin/add_sidebar.php, the ?page= parameter is vulnerable to SQL injection.

  • CVE-2019-12872HigJun 18, 2019
    risk 0.47cvss 7.2epss 0.01

    dotCMS before 5.1.6 is vulnerable to a SQL injection that can be exploited by an attacker of the role Publisher via view_unpushed_bundles.jsp.

  • CVE-2018-19462HigJun 7, 2019
    risk 0.47cvss 7.2epss 0.02

    admin\db\DoSql.php in EmpireCMS through 7.5 allows remote attackers to execute arbitrary PHP code via SQL injection that uses a .php filename in a SELECT INTO OUTFILE statement to admin/admin.php.

  • CVE-2019-12239HigMay 20, 2019
    risk 0.47cvss 7.2epss 0.01

    The WP Booking System plugin 1.5.1 for WordPress has no CSRF protection, which allows attackers to reach certain SQL injection issues that require administrative access.

  • CVE-2019-5934HigMay 17, 2019
    risk 0.47cvss 7.2epss 0.01

    SQL injection vulnerability in the Cybozu Garoon 4.0.0 to 4.10.0 allows attacker with administrator rights to execute arbitrary SQL commands via the Log Search function of application 'logging'.

  • CVE-2019-11567HigApr 27, 2019
    risk 0.47cvss 7.2epss 0.01

    An issue was discovered in AikCms v2.0. There is a SQL Injection vulnerability via $_GET['del'], as demonstrated by an admin/page/system/nav.php?del= URI.

  • CVE-2019-11518HigApr 25, 2019
    risk 0.47cvss 7.2epss 0.01

    An issue was discovered in SEMCMS 3.8. SEMCMS_Inquiry.php allows AID[] SQL Injection because the class.phpmailer.php inject_check_sql protection mechanism is incomplete.

  • CVE-2019-11452HigApr 22, 2019
    risk 0.47cvss 7.2epss 0.01

    whatsns 4.0 allows index.php?admin_category/remove.html cid[] SQL injection.

  • CVE-2019-11451HigApr 22, 2019
    risk 0.47cvss 7.2epss 0.01

    whatsns 4.0 allows index.php?inform/add.html qid SQL injection.

  • CVE-2018-17420HigMar 7, 2019
    risk 0.47cvss 7.2epss 0.01

    An issue was discovered in ZrLog 2.0.3. There is a SQL injection vulnerability in the article management search box via the keywords parameter.

  • CVE-2018-17416HigMar 7, 2019
    risk 0.47cvss 7.2epss 0.01

    A SQL injection vulnerability exists in zzcms v8.3 via the /admin/adclass.php bigclassid parameter.