CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Description
The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.
Hierarchy (View 1000)
Related attack patterns (CAPEC)
CAPEC-108 · CAPEC-109 · CAPEC-110 · CAPEC-470 · CAPEC-66 · CAPEC-7
CVEs mapped to this weakness (10,236)
page 5 of 512| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-17378 | Cri | 0.67 | 9.8 | 0.03 | Sep 28, 2018 | SQL Injection exists in the Penny Auction Factory 2.0.4 component for Joomla! via the filter_order_Dir or filter_order parameter. | ||
| CVE-2018-17377 | Cri | 0.67 | 9.8 | 0.03 | Sep 28, 2018 | SQL Injection exists in the Questions 1.4.3 component for Joomla! via the term, userid, users, or groups parameter. | ||
| CVE-2018-17376 | Cri | 0.67 | 9.8 | 0.03 | Sep 28, 2018 | SQL Injection exists in the Reverse Auction Factory 4.3.8 component for Joomla! via the filter_order_Dir, cat, or filter_letter parameter. | ||
| CVE-2018-17375 | Cri | 0.67 | 9.8 | 0.03 | Sep 28, 2018 | SQL Injection exists in the Music Collection 3.0.3 component for Joomla! via the id parameter. | ||
| CVE-2018-16659 | Cri | 0.67 | 9.8 | 0.03 | Sep 28, 2018 | An issue was discovered in Rausoft ID.prove 2.95. The login page allows SQL injection via Microsoft SQL Server stacked queries in the Username POST parameter. Hypothetically, an attacker can utilize master..xp_cmdshell for the further privilege elevation. | ||
| CVE-2018-14592 | Cri | 0.67 | 9.8 | 0.03 | Sep 20, 2018 | The CWJoomla CW Article Attachments PRO extension before 2.0.7 and CW Article Attachments FREE extension before 1.0.6 for Joomla! allow SQL Injection within download.php. | ||
| CVE-2018-14418 | Cri | 0.67 | 9.8 | 0.09 | Jul 20, 2018 | In Msvod Cms v10, SQL Injection exists via an images/lists?cid= URI. | ||
| CVE-2018-13050 | Cri | 0.67 | 9.8 | 0.38 | Jul 2, 2018 | A SQL Injection vulnerability exists in Zoho ManageEngine Applications Manager 13.x before build 13800 via the j_username parameter in a /j_security_check POST request. | ||
| CVE-2018-10969 | Cri | 0.67 | 9.8 | 0.05 | Jun 17, 2018 | SQL injection vulnerability in the Pie Register plugin before 3.0.10 for WordPress allows remote attackers to execute arbitrary SQL commands via the invitation codes grid. | ||
| CVE-2018-12055 | Cri | 0.67 | 9.8 | 0.03 | Jun 8, 2018 | Multiple SQL Injections exist in PHP Scripts Mall Schools Alert Management Script via crafted POST data in contact_us.php, faq.php, about.php, photo_gallery.php, privacy.php, and so on. | ||
| CVE-2018-12052 | Cri | 0.67 | 9.8 | 0.05 | Jun 8, 2018 | SQL Injection exists in PHP Scripts Mall Schools Alert Management Script via the q Parameter in get_sec.php. | ||
| CVE-2016-9488 | Cri | 0.67 | 9.8 | 0.05 | Jun 5, 2018 | ManageEngine Applications Manager versions 12 and 13 before build 13200 suffer from remote SQL injection vulnerabilities. An unauthenticated attacker is able to access the URL /servlet/MenuHandlerServlet, which is vulnerable to SQL injection. The attacker could extract users'… | ||
| CVE-2018-11535 | Cri | 0.67 | 9.8 | 0.03 | May 29, 2018 | An issue was discovered in SITEMAKIN SLAC (Site Login and Access Control) v1.0. The parameter "my_item_search" in users.php is exploitable using SQL injection. | ||
| CVE-2018-6410 | Cri | 0.67 | 9.8 | 0.05 | May 26, 2018 | An issue was discovered in Appnitro MachForm before 4.2.3. There is a download.php SQL injection via the q parameter. | ||
| CVE-2018-11444 | Cri | 0.67 | 9.8 | 0.03 | May 25, 2018 | A SQL Injection issue was observed in the parameter "q" in jobcard-ongoing.php in EasyService Billing 1.0. | ||
| CVE-2018-9245 | Cri | 0.67 | 9.8 | 0.04 | Apr 22, 2018 | The Ericsson-LG iPECS NMS A.1Ac login portal has a SQL injection vulnerability in the User ID and password fields that allows users to bypass the login page and execute remote code on the operating system. | ||
| CVE-2018-7474 | Cri | 0.67 | 9.8 | 0.07 | Mar 14, 2018 | An issue was discovered in Textpattern CMS 4.6.2 and earlier. It is possible to inject SQL code in the variable "qty" on the page index.php. | ||
| CVE-2018-7538 | Cri | 0.67 | 9.8 | 0.04 | Mar 12, 2018 | A SQL injection vulnerability in the tracker functionality of Enalean Tuleap software engineering platform before 9.18 allows attackers to execute arbitrary SQL commands. | ||
| CVE-2018-7477 | Cri | 0.67 | 9.8 | 0.03 | Feb 28, 2018 | SQL Injection exists in PHP Scripts Mall School Management Script 3.0.4 via the Username and Password fields to parents/Parent_module/parent_login.php. | ||
| CVE-2018-7319 | Cri | 0.67 | 9.8 | 0.02 | Feb 22, 2018 | SQL Injection exists in the OS Property Real Estate 3.12.7 component for Joomla! via the cooling_system1, heating_system1, or laundry parameter. |
- risk 0.67cvss 9.8epss 0.03
SQL Injection exists in the Penny Auction Factory 2.0.4 component for Joomla! via the filter_order_Dir or filter_order parameter.
- risk 0.67cvss 9.8epss 0.03
SQL Injection exists in the Questions 1.4.3 component for Joomla! via the term, userid, users, or groups parameter.
- risk 0.67cvss 9.8epss 0.03
SQL Injection exists in the Reverse Auction Factory 4.3.8 component for Joomla! via the filter_order_Dir, cat, or filter_letter parameter.
- risk 0.67cvss 9.8epss 0.03
SQL Injection exists in the Music Collection 3.0.3 component for Joomla! via the id parameter.
- risk 0.67cvss 9.8epss 0.03
An issue was discovered in Rausoft ID.prove 2.95. The login page allows SQL injection via Microsoft SQL Server stacked queries in the Username POST parameter. Hypothetically, an attacker can utilize master..xp_cmdshell for the further privilege elevation.
- risk 0.67cvss 9.8epss 0.03
The CWJoomla CW Article Attachments PRO extension before 2.0.7 and CW Article Attachments FREE extension before 1.0.6 for Joomla! allow SQL Injection within download.php.
- risk 0.67cvss 9.8epss 0.09
In Msvod Cms v10, SQL Injection exists via an images/lists?cid= URI.
- risk 0.67cvss 9.8epss 0.38
A SQL Injection vulnerability exists in Zoho ManageEngine Applications Manager 13.x before build 13800 via the j_username parameter in a /j_security_check POST request.
- risk 0.67cvss 9.8epss 0.05
SQL injection vulnerability in the Pie Register plugin before 3.0.10 for WordPress allows remote attackers to execute arbitrary SQL commands via the invitation codes grid.
- risk 0.67cvss 9.8epss 0.03
Multiple SQL Injections exist in PHP Scripts Mall Schools Alert Management Script via crafted POST data in contact_us.php, faq.php, about.php, photo_gallery.php, privacy.php, and so on.
- risk 0.67cvss 9.8epss 0.05
SQL Injection exists in PHP Scripts Mall Schools Alert Management Script via the q Parameter in get_sec.php.
- risk 0.67cvss 9.8epss 0.05
ManageEngine Applications Manager versions 12 and 13 before build 13200 suffer from remote SQL injection vulnerabilities. An unauthenticated attacker is able to access the URL /servlet/MenuHandlerServlet, which is vulnerable to SQL injection. The attacker could extract users'…
- risk 0.67cvss 9.8epss 0.03
An issue was discovered in SITEMAKIN SLAC (Site Login and Access Control) v1.0. The parameter "my_item_search" in users.php is exploitable using SQL injection.
- risk 0.67cvss 9.8epss 0.05
An issue was discovered in Appnitro MachForm before 4.2.3. There is a download.php SQL injection via the q parameter.
- risk 0.67cvss 9.8epss 0.03
A SQL Injection issue was observed in the parameter "q" in jobcard-ongoing.php in EasyService Billing 1.0.
- risk 0.67cvss 9.8epss 0.04
The Ericsson-LG iPECS NMS A.1Ac login portal has a SQL injection vulnerability in the User ID and password fields that allows users to bypass the login page and execute remote code on the operating system.
- risk 0.67cvss 9.8epss 0.07
An issue was discovered in Textpattern CMS 4.6.2 and earlier. It is possible to inject SQL code in the variable "qty" on the page index.php.
- risk 0.67cvss 9.8epss 0.04
A SQL injection vulnerability in the tracker functionality of Enalean Tuleap software engineering platform before 9.18 allows attackers to execute arbitrary SQL commands.
- risk 0.67cvss 9.8epss 0.03
SQL Injection exists in PHP Scripts Mall School Management Script 3.0.4 via the Username and Password fields to parents/Parent_module/parent_login.php.
- risk 0.67cvss 9.8epss 0.02
SQL Injection exists in the OS Property Real Estate 3.12.7 component for Joomla! via the cooling_system1, heating_system1, or laundry parameter.