CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Description
The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.
Hierarchy (View 1000)
Related attack patterns (CAPEC)
CAPEC-108 · CAPEC-109 · CAPEC-110 · CAPEC-470 · CAPEC-66 · CAPEC-7
CVEs mapped to this weakness (12,807)
page 316 of 641| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2016-10943 | Hig | 0.47 | 7.2 | 0.02 | Sep 13, 2019 | The zx-csv-upload plugin 1 for WordPress has SQL injection via the id parameter. | ||
| CVE-2016-10940 | Hig | 0.47 | 7.2 | 0.06 | Sep 13, 2019 | The zm-gallery plugin 1.0 for WordPress has SQL injection via the order parameter. | ||
| CVE-2016-10939 | Hig | 0.47 | 7.2 | 0.02 | Sep 13, 2019 | The xtremelocator plugin 1.5 for WordPress has SQL injection via the id parameter. | ||
| CVE-2019-11363 | Hig | 0.47 | 7.2 | 0.01 | Aug 29, 2019 | A SQL injection vulnerability in Snare Central before 7.4.5 allows remote authenticated attackers to execute arbitrary SQL commands via the AgentConsole/UserGroupQuery.php ShowUser parameter. | ||
| CVE-2015-9353 | Hig | 0.47 | 7.2 | 0.01 | Aug 28, 2019 | The gigpress plugin before 2.3.11 for WordPress has SQL injection in the admin area, a different vulnerability than CVE-2015-4066. | ||
| CVE-2019-10141 | — | Hig | 0.47 | 8.3 | 0.02 | Jul 30, 2019 | A vulnerability was found in openstack-ironic-inspector all versions excluding 5.0.2, 6.0.3, 7.2.4, 8.0.3 and 8.2.1. A SQL-injection vulnerability was found in openstack-ironic-inspector's node_cache.find_node(). This function makes a SQL query using unfiltered data from a… | |
| CVE-2018-11774 | Hig | 0.47 | 7.2 | 0.01 | Jul 29, 2019 | Apache VCL versions 2.1 through 2.5 do not properly validate form input when adding and removing VMs to and from hosts. The form data is then used in SQL statements. This allows for an SQL injection attack. Access to this portion of a VCL system requires admin level rights.… | ||
| CVE-2018-11772 | Hig | 0.47 | 7.2 | 0.01 | Jul 29, 2019 | Apache VCL versions 2.1 through 2.5 do not properly validate cookie input when determining what node (if any) was previously selected in the privilege tree. The cookie data is then used in an SQL statement. This allows for an SQL injection attack. Access to this portion of a VCL… | ||
| CVE-2019-13570 | Hig | 0.47 | 7.2 | 0.01 | Jul 23, 2019 | The AJdG AdRotate plugin before 5.3 for WordPress allows SQL Injection. | ||
| CVE-2018-12250 | Hig | 0.47 | 7.2 | 0.02 | Jul 3, 2019 | An issue was discovered in Elite CMS Pro 2.01. In /admin/add_sidebar.php, the ?page= parameter is vulnerable to SQL injection. | ||
| CVE-2019-12872 | Hig | 0.47 | 7.2 | 0.01 | Jun 18, 2019 | dotCMS before 5.1.6 is vulnerable to a SQL injection that can be exploited by an attacker of the role Publisher via view_unpushed_bundles.jsp. | ||
| CVE-2018-19462 | Hig | 0.47 | 7.2 | 0.02 | Jun 7, 2019 | admin\db\DoSql.php in EmpireCMS through 7.5 allows remote attackers to execute arbitrary PHP code via SQL injection that uses a .php filename in a SELECT INTO OUTFILE statement to admin/admin.php. | ||
| CVE-2019-12239 | Hig | 0.47 | 7.2 | 0.01 | May 20, 2019 | The WP Booking System plugin 1.5.1 for WordPress has no CSRF protection, which allows attackers to reach certain SQL injection issues that require administrative access. | ||
| CVE-2019-5934 | Hig | 0.47 | 7.2 | 0.01 | May 17, 2019 | SQL injection vulnerability in the Cybozu Garoon 4.0.0 to 4.10.0 allows attacker with administrator rights to execute arbitrary SQL commands via the Log Search function of application 'logging'. | ||
| CVE-2019-11567 | Hig | 0.47 | 7.2 | 0.01 | Apr 27, 2019 | An issue was discovered in AikCms v2.0. There is a SQL Injection vulnerability via $_GET['del'], as demonstrated by an admin/page/system/nav.php?del= URI. | ||
| CVE-2019-11518 | Hig | 0.47 | 7.2 | 0.01 | Apr 25, 2019 | An issue was discovered in SEMCMS 3.8. SEMCMS_Inquiry.php allows AID[] SQL Injection because the class.phpmailer.php inject_check_sql protection mechanism is incomplete. | ||
| CVE-2019-11452 | Hig | 0.47 | 7.2 | 0.01 | Apr 22, 2019 | whatsns 4.0 allows index.php?admin_category/remove.html cid[] SQL injection. | ||
| CVE-2019-11451 | Hig | 0.47 | 7.2 | 0.01 | Apr 22, 2019 | whatsns 4.0 allows index.php?inform/add.html qid SQL injection. | ||
| CVE-2018-17420 | Hig | 0.47 | 7.2 | 0.01 | Mar 7, 2019 | An issue was discovered in ZrLog 2.0.3. There is a SQL injection vulnerability in the article management search box via the keywords parameter. | ||
| CVE-2018-17416 | Hig | 0.47 | 7.2 | 0.01 | Mar 7, 2019 | A SQL injection vulnerability exists in zzcms v8.3 via the /admin/adclass.php bigclassid parameter. |
- risk 0.47cvss 7.2epss 0.02
The zx-csv-upload plugin 1 for WordPress has SQL injection via the id parameter.
- risk 0.47cvss 7.2epss 0.06
The zm-gallery plugin 1.0 for WordPress has SQL injection via the order parameter.
- risk 0.47cvss 7.2epss 0.02
The xtremelocator plugin 1.5 for WordPress has SQL injection via the id parameter.
- risk 0.47cvss 7.2epss 0.01
A SQL injection vulnerability in Snare Central before 7.4.5 allows remote authenticated attackers to execute arbitrary SQL commands via the AgentConsole/UserGroupQuery.php ShowUser parameter.
- risk 0.47cvss 7.2epss 0.01
The gigpress plugin before 2.3.11 for WordPress has SQL injection in the admin area, a different vulnerability than CVE-2015-4066.
- risk 0.47cvss 8.3epss 0.02
A vulnerability was found in openstack-ironic-inspector all versions excluding 5.0.2, 6.0.3, 7.2.4, 8.0.3 and 8.2.1. A SQL-injection vulnerability was found in openstack-ironic-inspector's node_cache.find_node(). This function makes a SQL query using unfiltered data from a…
- risk 0.47cvss 7.2epss 0.01
Apache VCL versions 2.1 through 2.5 do not properly validate form input when adding and removing VMs to and from hosts. The form data is then used in SQL statements. This allows for an SQL injection attack. Access to this portion of a VCL system requires admin level rights.…
- risk 0.47cvss 7.2epss 0.01
Apache VCL versions 2.1 through 2.5 do not properly validate cookie input when determining what node (if any) was previously selected in the privilege tree. The cookie data is then used in an SQL statement. This allows for an SQL injection attack. Access to this portion of a VCL…
- risk 0.47cvss 7.2epss 0.01
The AJdG AdRotate plugin before 5.3 for WordPress allows SQL Injection.
- risk 0.47cvss 7.2epss 0.02
An issue was discovered in Elite CMS Pro 2.01. In /admin/add_sidebar.php, the ?page= parameter is vulnerable to SQL injection.
- risk 0.47cvss 7.2epss 0.01
dotCMS before 5.1.6 is vulnerable to a SQL injection that can be exploited by an attacker of the role Publisher via view_unpushed_bundles.jsp.
- risk 0.47cvss 7.2epss 0.02
admin\db\DoSql.php in EmpireCMS through 7.5 allows remote attackers to execute arbitrary PHP code via SQL injection that uses a .php filename in a SELECT INTO OUTFILE statement to admin/admin.php.
- risk 0.47cvss 7.2epss 0.01
The WP Booking System plugin 1.5.1 for WordPress has no CSRF protection, which allows attackers to reach certain SQL injection issues that require administrative access.
- risk 0.47cvss 7.2epss 0.01
SQL injection vulnerability in the Cybozu Garoon 4.0.0 to 4.10.0 allows attacker with administrator rights to execute arbitrary SQL commands via the Log Search function of application 'logging'.
- risk 0.47cvss 7.2epss 0.01
An issue was discovered in AikCms v2.0. There is a SQL Injection vulnerability via $_GET['del'], as demonstrated by an admin/page/system/nav.php?del= URI.
- risk 0.47cvss 7.2epss 0.01
An issue was discovered in SEMCMS 3.8. SEMCMS_Inquiry.php allows AID[] SQL Injection because the class.phpmailer.php inject_check_sql protection mechanism is incomplete.
- risk 0.47cvss 7.2epss 0.01
whatsns 4.0 allows index.php?admin_category/remove.html cid[] SQL injection.
- risk 0.47cvss 7.2epss 0.01
whatsns 4.0 allows index.php?inform/add.html qid SQL injection.
- risk 0.47cvss 7.2epss 0.01
An issue was discovered in ZrLog 2.0.3. There is a SQL injection vulnerability in the article management search box via the keywords parameter.
- risk 0.47cvss 7.2epss 0.01
A SQL injection vulnerability exists in zzcms v8.3 via the /admin/adclass.php bigclassid parameter.