VYPR

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

BaseStableLikelihood: High

Description

The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.

Hierarchy (View 1000)

Parents

Children

Related attack patterns (CAPEC)

CAPEC-108 · CAPEC-109 · CAPEC-110 · CAPEC-470 · CAPEC-66 · CAPEC-7

CVEs mapped to this weakness (10,236)

page 83 of 512
  • CVE-2018-11470HigMay 25, 2018
    risk 0.57cvss 8.8epss 0.01

    iScripts eSwap v2.4 has SQL injection via the "search.php" 'Told' parameter in the User Panel.

  • CVE-2018-11414HigMay 24, 2018
    risk 0.57cvss 8.8epss 0.01

    An issue was discovered in BearAdmin 0.5. There is admin/admin_log/index.html?user_id= SQL injection because admin\controller\AdminLog.php constructs a MySQL query improperly.

  • CVE-2018-10352HigMay 23, 2018
    risk 0.57cvss 8.8epss 0.02

    A vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow a remote attacker to execute arbitrary SQL statements on vulnerable installations due to a flaw in the formConfiguration class. Authentication is required to exploit this vulnerability.

  • CVE-2018-10351HigMay 23, 2018
    risk 0.57cvss 8.8epss 0.04

    A vulnerability in Trend Micro Email Encryption Gateway 5.5 could allow a remote attacker to execute arbitrary SQL statements on vulnerable installations due to a flaw in the formRegistration2 class. Authentication is required to exploit this vulnerability.

  • CVE-2018-9019CriMay 22, 2018
    risk 0.57cvss 9.8epss 0.04

    SQL Injection vulnerability in Dolibarr before version 7.0.2 allows remote attackers to execute arbitrary SQL commands via the sortfield parameter to /accountancy/admin/accountmodel.php, /accountancy/admin/categories_list.php, /accountancy/admin/journals_list.php,…

  • CVE-2018-6493HigMay 22, 2018
    risk 0.57cvss 8.8epss 0.02

    SQL Injection in HP Network Operations Management Ultimate, version 2017.07, 2017.11, 2018.02 and in Network Automation, version 10.00, 10.10, 10.11, 10.20, 10.30, 10.40, 10.50. This vulnerability could be remotely exploited to allow Remote SQL Injection.

  • CVE-2018-1289HigApr 20, 2018
    risk 0.57cvss 8.8epss 0.03

    In Apache Fineract versions 1.0.0, 0.6.0-incubating, 0.5.0-incubating, 0.4.0-incubating, the system exposes different REST end points to query domain specific entities with a Query Parameter 'orderBy' and 'sortOrder' which are appended directly with SQL statements. A hacker/user…

  • CVE-2018-0530HigApr 16, 2018
    risk 0.57cvss 8.8epss 0.01

    SQL injection vulnerability in the Cybozu Garoon 3.5.0 to 4.2.6 allows remote authenticated attackers to execute arbitrary SQL commands via unspecified vectors.

  • CVE-2018-8953HigApr 11, 2018
    risk 0.57cvss 8.8epss 0.03

    CA Workload Automation AE before r11.3.6 SP7 allows remote attackers to a perform SQL injection via a crafted HTTP request.

  • CVE-2017-9839HigApr 11, 2018
    risk 0.57cvss 8.8epss 0.01

    Dolibarr ERP/CRM is affected by SQL injection in versions before 5.0.4 via product/stats/card.php (type parameter).

  • CVE-2017-18260HigApr 11, 2018
    risk 0.57cvss 8.8epss 0.01

    Dolibarr ERP/CRM is affected by multiple SQL injection vulnerabilities in versions through 7.0.0 via comm/propal/list.php (viewstatut parameter) or comm/propal/list.php (propal_statut parameter, aka search_statut parameter).

  • CVE-2014-4928HigMar 20, 2018
    risk 0.57cvss 8.8epss 0.01

    SQL injection vulnerability in Invision Power Board (aka IPB or IP.Board) before 3.4.6 allows remote attackers to execute arbitrary SQL commands via the cId parameter.

  • CVE-2018-1414HigFeb 22, 2018
    risk 0.57cvss 8.8epss 0.02

    IBM Maximo Asset Management 7.5 and 7.6 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 138820.

  • CVE-2015-5725CriFeb 21, 2018
    risk 0.57cvss 9.8epss 0.02

    SQL injection vulnerability in the offset method in the Active Record class in CodeIgniter before 2.2.4 allows remote attackers to execute arbitrary SQL commands via vectors involving the offset variable.

  • CVE-2017-15329HigFeb 15, 2018
    risk 0.57cvss 8.8epss 0.01

    Huawei UMA V200R001C00 has a SQL injection vulnerability in the operation and maintenance module. An attacker logs in to the system as a common user and sends crafted HTTP requests that contain malicious SQL statements to the affected system. Due to a lack of input validation on…

  • CVE-2017-7351HigFeb 8, 2018
    risk 0.57cvss 8.8epss 0.01

    A SQL injection issue exists in a file upload handler in REDCap 7.x before 7.0.11 via a trailing substring to SendITController:upload.

  • CVE-2018-6792HigFeb 7, 2018
    risk 0.57cvss 8.8epss 0.01

    Multiple SQL injection vulnerabilities in Saifor CVMS HUB 1.3.1 allow an authenticated user to execute arbitrary SQL commands via multiple parameters to the /cvms-hub/privado/seccionesmib/secciones.xhtml resource. The POST parameters are j_idt118, j_idt120, j_idt122, j_idt124,…

  • CVE-2018-5960HigJan 22, 2018
    risk 0.57cvss 8.8epss 0.01

    Zenario v7.1 - v7.6 has SQL injection via the `Name` input field of organizer.php or admin_boxes.ajax.php in the `Categories - Edit` module.

  • CVE-2018-5374HigJan 12, 2018
    risk 0.57cvss 8.8epss 0.01

    The Dbox 3D Slider Lite plugin through 1.2.2 for WordPress has SQL Injection via settings\sliders.php (current_slider_id parameter).

  • CVE-2018-5373HigJan 12, 2018
    risk 0.57cvss 8.8epss 0.01

    The Smooth Slider plugin through 2.8.6 for WordPress has SQL Injection via smooth-slider.php (trid parameter).