VYPR

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

BaseStableLikelihood: High

Description

The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.

Hierarchy (View 1000)

Parents

Children

Related attack patterns (CAPEC)

CAPEC-108 · CAPEC-109 · CAPEC-110 · CAPEC-470 · CAPEC-66 · CAPEC-7

CVEs mapped to this weakness (10,236)

page 47 of 512
  • CVE-2017-11354CriJul 17, 2017
    risk 0.64cvss 9.8epss 0.01

    Fiyo CMS v2.0.7 has an SQL injection vulnerability in dapur/apps/app_article/sys_article.php via the name parameter in editing or adding a tag name.

  • CVE-2017-11329CriJul 17, 2017
    risk 0.64cvss 9.8epss 0.01

    GLPI before 9.1.5 allows SQL injection via an ajax/getDropdownValue.php request with an entity_restrict parameter that is not a list of integers.

  • CVE-2017-1000060CriJul 17, 2017
    risk 0.64cvss 9.8epss 0.03

    EyesOfNetwork (EON) 5.1 Unauthenticated SQL Injection in eonweb leading to remote root

  • CVE-2017-1000004CriJul 17, 2017
    risk 0.64cvss 9.8epss 0.05

    ATutor version 2.2.1 and earlier are vulnerable to a SQL injection in the Assignment Dropbox, BasicLTI, Blog Post, Blog, Group Course Email, Course Alumni, Course Enrolment, Group Membership, Course unenrolment, Course Enrolment List Search, Glossary, Social Group Member Search,…

  • CVE-2017-11174CriJul 12, 2017
    risk 0.64cvss 9.8epss 0.01

    In install/page_dbsettings.php in the Core distribution of XOOPS 2.5.8.1, unfiltered data passed to CREATE and ALTER SQL queries caused SQL Injection in the database settings page, related to use of GBK in CHARACTER SET and COLLATE clauses.

  • CVE-2017-1175CriJul 5, 2017
    risk 0.64cvss 9.8epss 0.02

    IBM Maximo Asset Management 7.1, 7.5, and 7.6 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 123297.

  • CVE-2017-1269CriJul 5, 2017
    risk 0.64cvss 9.8epss 0.02

    IBM Security Guardium 10.0 and 10.1 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-force ID: 124744

  • CVE-2017-9848CriJun 24, 2017
    risk 0.64cvss 9.8epss 0.01

    SQL injection vulnerability in C_InfoService.asmx in WebServices in Easysite 7.0 could allow remote attackers to execute arbitrary SQL commands via an XML document containing a crafted ArticleIDs element within a GetArticleHitsArray element.

  • CVE-2017-6050CriJun 21, 2017
    risk 0.64cvss 9.8epss 0.04

    A SQL Injection issue was discovered in Ecava IntegraXor Versions 5.2.1231.0 and prior. The application fails to properly validate user input, which may allow for an unauthenticated attacker to remotely execute arbitrary code in the form of SQL queries.

  • CVE-2017-9246CriJun 13, 2017
    risk 0.64cvss 9.8epss 0.01

    New Relic .NET Agent before 6.3.123.0 adds SQL injection flaws to safe applications via vectors involving failure to escape quotes during use of the Slow Queries feature, as demonstrated by a mishandled quote in a VALUES clause of an INSERT statement, after bypassing a SET…

  • CVE-2016-2034CriJun 8, 2017
    risk 0.64cvss 9.8epss 0.01

    SQL injection vulnerability in ClearPass Policy Manager 6.5.x through 6.5.6 and 6.6.0.

  • CVE-2017-9436CriJun 5, 2017
    risk 0.64cvss 9.8epss 0.01

    TeamPass before 2.1.27.4 is vulnerable to a SQL injection in users.queries.php.

  • CVE-2017-9360CriJun 2, 2017
    risk 0.64cvss 9.8epss 0.01

    WebsiteBaker v2.10.0 has a SQL injection vulnerability in /account/details.php.

  • CVE-2016-4905CriMay 22, 2017
    risk 0.64cvss 9.8epss 0.02

    SQL injection vulnerability in the WP-OliveCart versions prior to 3.1.3 and WP-OliveCartPro versions prior to 3.1.8 allows attackers with administrator rights to execute arbitrary SQL commands via unspecified vectors.

  • CVE-2017-6195CriMay 18, 2017
    risk 0.64cvss 9.8epss 0.02

    Ipswitch MOVEit Transfer (formerly DMZ) allows pre-authentication blind SQL injection. The fixed versions are MOVEit Transfer 2017 9.0.0.201, MOVEit DMZ 8.3.0.30, and MOVEit DMZ 8.2.0.20.

  • CVE-2017-7886CriMay 10, 2017
    risk 0.64cvss 9.8epss 0.02

    Dolibarr ERP/CRM 4.0.4 has SQL Injection in doli/theme/eldy/style.css.php via the lang parameter.

  • CVE-2017-8796CriMay 5, 2017
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered on Accellion FTA devices before FTA_9_12_180. Because mysql_real_escape_string is misused, seos/courier/communication_p2p.php allows SQL injection with the app_id parameter.

  • CVE-2017-8789CriMay 5, 2017
    risk 0.64cvss 9.8epss 0.01

    An issue was discovered on Accellion FTA devices before FTA_9_12_180. A report_error.php?year='payload SQL injection vector exists.

  • CVE-2017-7991CriApr 22, 2017
    risk 0.64cvss 9.8epss 0.02

    Exponent CMS 2.4.1 and earlier has SQL injection via a base64 serialized API key (apikey parameter) in the api function of framework/modules/eaas/controllers/eaasController.php.

  • CVE-2017-7878CriApr 14, 2017
    risk 0.64cvss 9.8epss 0.01

    SQL Injection vulnerability in flatCore version 1.4.6 allows an attacker to read and write to the users database.