VYPR

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

BaseStableLikelihood: High

Description

The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.

Hierarchy (View 1000)

Parents

Children

Related attack patterns (CAPEC)

CAPEC-108 · CAPEC-109 · CAPEC-110 · CAPEC-470 · CAPEC-66 · CAPEC-7

CVEs mapped to this weakness (10,236)

page 38 of 512
  • CVE-2018-12498CriJun 15, 2018
    risk 0.64cvss 9.8epss 0.01

    spider.admincp.php in iCMS v7.0.8 has SQL Injection via the id parameter in an app=spider&do=batch request to admincp.php.

  • CVE-2017-18291CriJun 12, 2018
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exists in ladder/stats.php via the GET user parameter.

  • CVE-2017-18290CriJun 12, 2018
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exists in ladder/stats.php via the GET sort_direction parameter.

  • CVE-2017-18289CriJun 12, 2018
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exist in ladder/stats.php via the GET type parameter.

  • CVE-2017-18288CriJun 12, 2018
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exists in ladder/stats.php via the GET game parameter.

  • CVE-2017-18287CriJun 12, 2018
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exists in ladder/stats.php via the POST user_search parameter.

  • CVE-2018-0225CriJun 8, 2018
    risk 0.64cvss 9.8epss 0.01

    The Enterprise Console in Cisco AppDynamics App iQ Platform before 4.4.3.10598 (HF4) allows SQL injection, aka the Security Advisory 2089 issue.

  • CVE-2018-12039CriJun 7, 2018
    risk 0.64cvss 9.8epss 0.05

    joyplus-cms 1.6.0 allows Remote Code Execution because of an Arbitrary SQL command execution issue in manager/index.php involving use of a "/!select/" substring in place of a select substring.

  • CVE-2018-0320CriJun 7, 2018
    risk 0.64cvss 9.8epss 0.04

    A vulnerability in the web framework code of Cisco Prime Collaboration Provisioning (PCP) could allow an unauthenticated, remote attacker to execute arbitrary SQL queries. The vulnerability is due to a lack of proper validation on user-supplied input in SQL queries. An attacker…

  • CVE-2018-11722CriJun 5, 2018
    risk 0.64cvss 9.8epss 0.02

    WUZHI CMS 4.1.0 has a SQL Injection in api/uc.php via the 'code' parameter, because 'UC_KEY' is hard coded.

  • CVE-2016-10553CriMay 31, 2018
    risk 0.64cvss 9.8epss 0.01

    sequelize is an Object-relational mapping, or a middleman to convert things from Postgres, MySQL, MariaDB, SQLite and Microsoft SQL Server into usable data for NodeJS. A fix was pushed out that fixed potential SQL injection in sequelize 2.1.3 and earlier.

  • CVE-2018-11140CriMay 31, 2018
    risk 0.64cvss 9.8epss 0.01

    The 'reportID' parameter received by the '/common/run_report.php' script in the Quest KACE System Management Appliance 8.0.318 is not sanitized, leading to SQL injection (in particular, an error-based type).

  • CVE-2018-11136CriMay 31, 2018
    risk 0.64cvss 9.8epss 0.01

    The 'orgID' parameter received by the '/common/download_agent_installer.php' script in the Quest KACE System Management Appliance 8.0.318 is not sanitized, leading to SQL injection (in particular, a blind time-based type).

  • CVE-2018-10466CriMay 29, 2018
    risk 0.64cvss 9.8epss 0.08

    Zoho ManageEngine ADAudit Plus before 5.0.0 build 5100 allows blind SQL Injection.

  • CVE-2015-9244CriMay 29, 2018
    risk 0.64cvss 9.8epss 0.02

    Keys of objects in mysql node module v2.0.0-alpha7 and earlier are not escaped with `mysql.escape()` which could lead to SQL Injection.

  • CVE-2018-11528CriMay 29, 2018
    risk 0.64cvss 9.8epss 0.02

    WUZHI CMS 4.1.0 has SQL Injection via an api/sms_check.php?param= URI.

  • CVE-2018-11309CriMay 28, 2018
    risk 0.64cvss 9.8epss 0.02

    Blind SQL injection in coupon_code in the MemberMouse plugin 2.2.8 and prior for WordPress allows an unauthenticated attacker to dump the WordPress MySQL database via an applyCoupon action in an admin-ajax.php request.

  • CVE-2018-11515CriMay 28, 2018
    risk 0.64cvss 9.8epss 0.02

    The wpForo plugin through 2018-02-05 for WordPress has SQL Injection via a search with the /forum/ wpfo parameter.

  • CVE-2018-11373CriMay 22, 2018
    risk 0.64cvss 9.8epss 0.01

    iScripts eSwap v2.4 has SQL injection via the "salelistdetailed.php" User Panel ToId parameter.

  • CVE-2018-11372CriMay 22, 2018
    risk 0.64cvss 9.8epss 0.01

    iScripts eSwap v2.4 has SQL injection via the wishlistdetailed.php User Panel ToId parameter.