CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Description
The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.
Hierarchy (View 1000)
Related attack patterns (CAPEC)
CAPEC-108 · CAPEC-109 · CAPEC-110 · CAPEC-470 · CAPEC-66 · CAPEC-7
CVEs mapped to this weakness (10,236)
page 38 of 512| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-12498 | Cri | 0.64 | 9.8 | 0.01 | Jun 15, 2018 | spider.admincp.php in iCMS v7.0.8 has SQL Injection via the id parameter in an app=spider&do=batch request to admincp.php. | ||
| CVE-2017-18291 | Cri | 0.64 | 9.8 | 0.01 | Jun 12, 2018 | An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exists in ladder/stats.php via the GET user parameter. | ||
| CVE-2017-18290 | Cri | 0.64 | 9.8 | 0.01 | Jun 12, 2018 | An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exists in ladder/stats.php via the GET sort_direction parameter. | ||
| CVE-2017-18289 | Cri | 0.64 | 9.8 | 0.01 | Jun 12, 2018 | An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exist in ladder/stats.php via the GET type parameter. | ||
| CVE-2017-18288 | Cri | 0.64 | 9.8 | 0.01 | Jun 12, 2018 | An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exists in ladder/stats.php via the GET game parameter. | ||
| CVE-2017-18287 | Cri | 0.64 | 9.8 | 0.01 | Jun 12, 2018 | An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exists in ladder/stats.php via the POST user_search parameter. | ||
| CVE-2018-0225 | Cri | 0.64 | 9.8 | 0.01 | Jun 8, 2018 | The Enterprise Console in Cisco AppDynamics App iQ Platform before 4.4.3.10598 (HF4) allows SQL injection, aka the Security Advisory 2089 issue. | ||
| CVE-2018-12039 | Cri | 0.64 | 9.8 | 0.05 | Jun 7, 2018 | joyplus-cms 1.6.0 allows Remote Code Execution because of an Arbitrary SQL command execution issue in manager/index.php involving use of a "/!select/" substring in place of a select substring. | ||
| CVE-2018-0320 | Cri | 0.64 | 9.8 | 0.04 | Jun 7, 2018 | A vulnerability in the web framework code of Cisco Prime Collaboration Provisioning (PCP) could allow an unauthenticated, remote attacker to execute arbitrary SQL queries. The vulnerability is due to a lack of proper validation on user-supplied input in SQL queries. An attacker… | ||
| CVE-2018-11722 | Cri | 0.64 | 9.8 | 0.02 | Jun 5, 2018 | WUZHI CMS 4.1.0 has a SQL Injection in api/uc.php via the 'code' parameter, because 'UC_KEY' is hard coded. | ||
| CVE-2016-10553 | — | Cri | 0.64 | 9.8 | 0.01 | May 31, 2018 | sequelize is an Object-relational mapping, or a middleman to convert things from Postgres, MySQL, MariaDB, SQLite and Microsoft SQL Server into usable data for NodeJS. A fix was pushed out that fixed potential SQL injection in sequelize 2.1.3 and earlier. | |
| CVE-2018-11140 | Cri | 0.64 | 9.8 | 0.01 | May 31, 2018 | The 'reportID' parameter received by the '/common/run_report.php' script in the Quest KACE System Management Appliance 8.0.318 is not sanitized, leading to SQL injection (in particular, an error-based type). | ||
| CVE-2018-11136 | Cri | 0.64 | 9.8 | 0.01 | May 31, 2018 | The 'orgID' parameter received by the '/common/download_agent_installer.php' script in the Quest KACE System Management Appliance 8.0.318 is not sanitized, leading to SQL injection (in particular, a blind time-based type). | ||
| CVE-2018-10466 | — | Cri | 0.64 | 9.8 | 0.08 | May 29, 2018 | Zoho ManageEngine ADAudit Plus before 5.0.0 build 5100 allows blind SQL Injection. | |
| CVE-2015-9244 | Cri | 0.64 | 9.8 | 0.02 | May 29, 2018 | Keys of objects in mysql node module v2.0.0-alpha7 and earlier are not escaped with `mysql.escape()` which could lead to SQL Injection. | ||
| CVE-2018-11528 | Cri | 0.64 | 9.8 | 0.02 | May 29, 2018 | WUZHI CMS 4.1.0 has SQL Injection via an api/sms_check.php?param= URI. | ||
| CVE-2018-11309 | Cri | 0.64 | 9.8 | 0.02 | May 28, 2018 | Blind SQL injection in coupon_code in the MemberMouse plugin 2.2.8 and prior for WordPress allows an unauthenticated attacker to dump the WordPress MySQL database via an applyCoupon action in an admin-ajax.php request. | ||
| CVE-2018-11515 | Cri | 0.64 | 9.8 | 0.02 | May 28, 2018 | The wpForo plugin through 2018-02-05 for WordPress has SQL Injection via a search with the /forum/ wpfo parameter. | ||
| CVE-2018-11373 | Cri | 0.64 | 9.8 | 0.01 | May 22, 2018 | iScripts eSwap v2.4 has SQL injection via the "salelistdetailed.php" User Panel ToId parameter. | ||
| CVE-2018-11372 | Cri | 0.64 | 9.8 | 0.01 | May 22, 2018 | iScripts eSwap v2.4 has SQL injection via the wishlistdetailed.php User Panel ToId parameter. |
- risk 0.64cvss 9.8epss 0.01
spider.admincp.php in iCMS v7.0.8 has SQL Injection via the id parameter in an app=spider&do=batch request to admincp.php.
- risk 0.64cvss 9.8epss 0.01
An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exists in ladder/stats.php via the GET user parameter.
- risk 0.64cvss 9.8epss 0.01
An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exists in ladder/stats.php via the GET sort_direction parameter.
- risk 0.64cvss 9.8epss 0.01
An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exist in ladder/stats.php via the GET type parameter.
- risk 0.64cvss 9.8epss 0.01
An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exists in ladder/stats.php via the GET game parameter.
- risk 0.64cvss 9.8epss 0.01
An issue was discovered in PvPGN Stats 2.4.6. SQL Injection exists in ladder/stats.php via the POST user_search parameter.
- risk 0.64cvss 9.8epss 0.01
The Enterprise Console in Cisco AppDynamics App iQ Platform before 4.4.3.10598 (HF4) allows SQL injection, aka the Security Advisory 2089 issue.
- risk 0.64cvss 9.8epss 0.05
joyplus-cms 1.6.0 allows Remote Code Execution because of an Arbitrary SQL command execution issue in manager/index.php involving use of a "/!select/" substring in place of a select substring.
- risk 0.64cvss 9.8epss 0.04
A vulnerability in the web framework code of Cisco Prime Collaboration Provisioning (PCP) could allow an unauthenticated, remote attacker to execute arbitrary SQL queries. The vulnerability is due to a lack of proper validation on user-supplied input in SQL queries. An attacker…
- risk 0.64cvss 9.8epss 0.02
WUZHI CMS 4.1.0 has a SQL Injection in api/uc.php via the 'code' parameter, because 'UC_KEY' is hard coded.
- risk 0.64cvss 9.8epss 0.01
sequelize is an Object-relational mapping, or a middleman to convert things from Postgres, MySQL, MariaDB, SQLite and Microsoft SQL Server into usable data for NodeJS. A fix was pushed out that fixed potential SQL injection in sequelize 2.1.3 and earlier.
- risk 0.64cvss 9.8epss 0.01
The 'reportID' parameter received by the '/common/run_report.php' script in the Quest KACE System Management Appliance 8.0.318 is not sanitized, leading to SQL injection (in particular, an error-based type).
- risk 0.64cvss 9.8epss 0.01
The 'orgID' parameter received by the '/common/download_agent_installer.php' script in the Quest KACE System Management Appliance 8.0.318 is not sanitized, leading to SQL injection (in particular, a blind time-based type).
- risk 0.64cvss 9.8epss 0.08
Zoho ManageEngine ADAudit Plus before 5.0.0 build 5100 allows blind SQL Injection.
- risk 0.64cvss 9.8epss 0.02
Keys of objects in mysql node module v2.0.0-alpha7 and earlier are not escaped with `mysql.escape()` which could lead to SQL Injection.
- risk 0.64cvss 9.8epss 0.02
WUZHI CMS 4.1.0 has SQL Injection via an api/sms_check.php?param= URI.
- risk 0.64cvss 9.8epss 0.02
Blind SQL injection in coupon_code in the MemberMouse plugin 2.2.8 and prior for WordPress allows an unauthenticated attacker to dump the WordPress MySQL database via an applyCoupon action in an admin-ajax.php request.
- risk 0.64cvss 9.8epss 0.02
The wpForo plugin through 2018-02-05 for WordPress has SQL Injection via a search with the /forum/ wpfo parameter.
- risk 0.64cvss 9.8epss 0.01
iScripts eSwap v2.4 has SQL injection via the "salelistdetailed.php" User Panel ToId parameter.
- risk 0.64cvss 9.8epss 0.01
iScripts eSwap v2.4 has SQL injection via the wishlistdetailed.php User Panel ToId parameter.