CWE-89— SQL Injection
The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.— MITRE CWE catalog
18,858 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-89page 112 of 378
- CVE-2019-8143MEDIUMCVSS 6.5EG 6.52019-11-06
A SQL injection vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An authenticated user with access to email templates can send malicious SQL queries and obtain access to sensitive information sto…
- CVE-2019-8360CRITICALCVSS 9.8EG 9.82019-02-16
Themerig Find a Place CMS Directory 1.5 has SQL Injection via the find/assets/external/data_2.php cate parameter.
- CVE-2019-8393CRITICALCVSS 9.8EG 9.82019-02-17
Hotels_Server through 2018-11-05 has SQL Injection via the API because the controller/api/login.php telephone parameter is mishandled.
- CVE-2019-8421HIGHCVSS 7.2EG 7.22019-02-17
upload/protected/modules/admini/views/post/index.php in BageCMS through 3.1.4 allows SQL Injection via the title or titleAlias parameter.
- CVE-2019-8422HIGHCVSS 7.2EG 7.22019-02-17
A SQL Injection vulnerability exists in PbootCMS v1.3.2 via the description parameter in apps\admin\controller\content\ContentController.php.
- CVE-2019-8423CRITICALCVSS 9.8EG 9.82019-02-18
ZoneMinder through 1.32.3 has SQL Injection via the skins/classic/views/events.php filter[Query][terms][0][cnj] parameter.
- CVE-2019-8424CRITICALCVSS 9.8EG 9.82019-02-18
ZoneMinder before 1.32.3 has SQL Injection via the ajax/status.php sort parameter.
- CVE-2019-8428CRITICALCVSS 9.8EG 9.82019-02-18
ZoneMinder before 1.32.3 has SQL Injection via the skins/classic/views/control.php groupSql parameter, as demonstrated by a newGroup[MonitorIds][] value.
- CVE-2019-8429CRITICALCVSS 9.8EG 9.82019-02-18
ZoneMinder before 1.32.3 has SQL Injection via the ajax/status.php filter[Query][terms][0][cnj] parameter.
- CVE-2019-8600CRITICALCVSS 9.8EG 9.82019-12-18
A memory corruption issue was addressed with improved input validation. This issue is fixed in iOS 12.3, macOS Mojave 10.14.5, tvOS 12.3, watchOS 5.2.1, iTunes for Windows 12.9.5, iCloud for Windows 7.12. A maliciously crafted SQL query ma…
- CVE-2019-8923CRITICALCVSS 9.8EG 9.82019-05-14
XAMPP through 5.6.8 and previous allows SQL injection via the cds-fpdf.php jahr parameter. NOTE: This product is discontinued.
- CVE-2019-8979CRITICALCVSS 9.8EG 9.82019-02-21
Kohana through 3.3.6 has SQL Injection when the order_by() parameter can be controlled.
- CVE-2019-9039CRITICALCVSS 9.8EG 9.82019-06-26
In Couchbase Sync Gateway 2.1.2, an attacker with access to the Sync Gateway’s public REST API was able to issue additional N1QL statements and extract sensitive data or call arbitrary N1QL functions through the parameters "startkey" and…
- CVE-2019-9047CRITICALCVSS 9.8EG 9.82019-02-23
GoRose v1.0.4 has SQL Injection when the order_by or group_by parameter can be controlled.
- CVE-2019-9053HIGHCVSS 8.1EG 9.02019-03-26
An issue was discovered in CMS Made Simple 2.2.8. It is possible with the News module, through a crafted URL, to achieve unauthenticated blind time-based SQL injection via the m1_idlist parameter.
- CVE-2019-9083CRITICALCVSS 9.8EG 9.82019-03-21
SQLiteManager 1.20 and 1.24 allows SQL injection via the /sqlitemanager/main.php dbsel parameter. NOTE: This product is discontinued.
- CVE-2019-9086CRITICALCVSS 9.8EG 9.82019-06-07
HotelDruid before v2.3.1 has SQL Injection via the /visualizza_tabelle.php anno parameter.
- CVE-2019-9087CRITICALCVSS 9.8EG 9.82019-06-07
HotelDruid before v2.3.1 has SQL Injection via the /tab_tariffe.php numtariffa1 parameter.
- CVE-2019-9165CRITICALCVSS 9.8EG 9.82019-03-28
SQL injection vulnerability in Nagios XI before 5.5.11 allows attackers to execute arbitrary SQL commands via the API when using fusekeys and malicious user id.
- CVE-2019-9184CRITICALCVSS 9.8EG 9.82019-02-26
SQL injection vulnerability in the J2Store plugin 3.x before 3.3.7 for Joomla! allows remote attackers to execute arbitrary SQL commands via the product_option[] parameter.
- CVE-2019-9204CRITICALCVSS 9.8EG 9.82019-03-28
SQL injection vulnerability in Nagios IM (component of Nagios XI) before 2.2.7 allows attackers to execute arbitrary SQL commands.
- CVE-2019-9566CRITICALCVSS 9.8EG 9.82019-03-04
FlarumChina v0.1.0-beta.7C has SQL injection via a /?q= request.
- CVE-2019-9568MEDIUMCVSS 6.5EG 6.52019-03-04
The "Forminator Contact Form, Poll & Quiz Builder" plugin before 1.6 for WordPress has SQL Injection via the wp-admin/admin.php?page=forminator-entries entry[] parameter if the attacker has the delete permission.
- CVE-2019-9594CRITICALCVSS 9.8EG 9.82019-03-06
BlueCMS 1.6 allows SQL Injection via the user_id parameter in an uploads/admin/user.php?act=edit request.
- CVE-2019-9615HIGHCVSS 7.2EG 7.22019-03-06
An issue was discovered in OFCMS before 1.1.3. It allows admin/system/generate/create?sql= SQL injection, related to SystemGenerateController.java.
- CVE-2019-9626CRITICALCVSS 9.8EG 9.82019-03-07
PHPSHE 1.7 allows module/index/cart.php pintuan_id SQL Injection to index.php.
- CVE-2019-9693HIGHCVSS 8.8EG 8.82019-03-11
In CMS Made Simple (CMSMS) before 2.2.10, an authenticated user can achieve SQL Injection in class.showtime2_data.php via the functions _updateshow (parameter show_id), _inputshow (parameter show_id), _Getshowinfo (parameter show_id), _Get…
- CVE-2019-9759CRITICALCVSS 9.8EG 9.82019-04-02
An issue was discovered in TONGDA Office Anywhere 10.18.190121. There is a SQL Injection vulnerability via the general/approve_center/list/input_form/work_handle.php run_id parameter.
- CVE-2019-9762CRITICALCVSS 9.8EG 9.82019-03-14
A SQL Injection was discovered in PHPSHE 1.7 in include/plugin/payment/alipay/pay.php with the parameter id. The vulnerability does not need any authentication.
- CVE-2019-9846HIGHCVSS 8.8EG 8.82019-06-28
RockOA 1.8.7 allows remote attackers to obtain sensitive information because the webmain/webmainAction.php publictreestore method constructs a SQL WHERE clause unsafely by using the pidfields and idfields parameters, aka background SQL inj…
- CVE-2019-9885CRITICALCVSS 9.8EG 9.82019-07-25
eClass platform < ip.2.5.10.2.1 allows an attacker to execute SQL command via /admin/academic/studenview_left.php StudentID parameter.
- CVE-2019-9918CRITICALCVSS 9.1EG 9.12019-03-29
An issue was discovered in the Harmis JE Messenger component 1.2.2 for Joomla!. Input does not get validated and queries are not written in a way to prevent SQL injection. Therefore arbitrary SQL-Statements can be executed in the database.
- CVE-2020-0060MEDIUMCVSS 4.4EG 4.42020-03-10
In query of SmsProvider.java and MmsSmsProvider.java, there is a possible permission bypass due to SQL injection. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for e…
- CVE-2020-0344MEDIUMCVSS 5.5EG 5.52020-09-17
In MediaProvider, there is a possible permissions bypass due to SQL injection. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: Android…
- CVE-2020-0352MEDIUMCVSS 5.5EG 5.52020-09-17
In MediaProvider, there is a possible permissions bypass due to SQL injection. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: Android…
- CVE-2020-10106CRITICALCVSS 9.8EG 9.82020-03-05
PHPGurukul Daily Expense Tracker System 1.0 is vulnerable to SQL injection, as demonstrated by the email parameter in index.php or register.php. The SQL injection allows to dump the MySQL database and to bypass the login prompt.
- CVE-2020-10184HIGHCVSS 7.5EG 7.52020-03-05
The verify endpoint in YubiKey Validation Server before 2.40 does not check the length of SQL queries, which allows remote attackers to cause a denial of service, aka SQL injection. NOTE: this issue is potentially relevant to persons outsi…
- CVE-2020-10190HIGHCVSS 8.8EG 8.82020-03-09
An issue was discovered in MunkiReport before 5.3.0. An authenticated user could achieve SQL Injection in app/models/tablequery.php by crafting a special payload on the /datatables/data endpoint.
- CVE-2020-10218MEDIUMCVSS 6.5EG 6.52020-03-13
A Blind SQL Injection issue was discovered in Sapplica Sentrifugo 3.2 via the index.php/holidaygroups/add id parameter because of the HolidaydatesController.php addAction function.
- CVE-2020-10220CRITICALCVSS 9.8EG 9.82020-03-07
An issue was discovered in rConfig through 3.9.4. The web interface is prone to a SQL injection via the commands.inc.php searchColumn parameter.
- CVE-2020-10230CRITICALCVSS 9.8EG 9.82020-03-16
CentOS-WebPanel.com (aka CWP) CentOS Web Panel (for CentOS 6 and 7) allows SQL Injection via the /cwp_{SESSION_HASH}/admin/loader_ajax.php term parameter.
- CVE-2020-10243CRITICALCVSS 9.8EG 9.82020-03-16
An issue was discovered in Joomla! before 3.9.16. The lack of type casting of a variable in a SQL statement leads to a SQL injection vulnerability in the Featured Articles frontend menutype.
- CVE-2020-10365MEDIUMCVSS 6.5EG 6.52020-03-18
LogicalDoc before 8.3.3 allows SQL Injection. LogicalDoc populates the list of available documents by querying the database. This list could be filtered by modifying some of the parameters. Some of them are not properly sanitized which cou…
- CVE-2020-10380CRITICALCVSS 9.8EG 9.82020-03-17
RMySQL through 0.10.19 allows SQL Injection.
- CVE-2020-10381MEDIUMCVSS 5.3EG 5.32020-04-14
An issue was discovered in the MB CONNECT LINE mymbCONNECT24 and mbCONNECT24 software in all versions through 2.5.0. There is an unauthenticated SQL injection in DATA24, allowing attackers to discover database and table names.
- CVE-2020-10505CRITICALCVSS 9.8EG 9.82020-04-15
The School Manage System before 2020, developed by ALLE INFORMATION CO., LTD., contains a vulnerability of SQL Injection, an attacker can use a union based injection query string to get databases schema and username/password.
- CVE-2020-10512HIGHCVSS 8.8EG 8.82020-04-15
HGiga C&Cmail CCMAILQ before olln-calendar-6.0-100.i386.rpm and CCMAILN before olln-calendar-5.0-100.i386.rpm contains a SQL Injection vulnerability which allows attackers to injecting SQL commands in the URL parameter to execute unauthori…
- CVE-2020-10546CRITICALCVSS 9.8EG 9.82020-06-04
rConfig 3.9.4 and previous versions has unauthenticated compliancepolicies.inc.php SQL injection. Because, by default, nodes' passwords are stored in cleartext, this vulnerability leads to lateral movement, granting an attacker access to m…
- CVE-2020-10547CRITICALCVSS 9.8EG 9.82020-06-04
rConfig 3.9.4 and previous versions has unauthenticated compliancepolicyelements.inc.php SQL injection. Because, by default, nodes' passwords are stored in cleartext, this vulnerability leads to lateral movement, granting an attacker acces…
- CVE-2020-10548CRITICALCVSS 9.8EG 9.82020-06-04
rConfig 3.9.4 and previous versions has unauthenticated devices.inc.php SQL injection. Because, by default, nodes' passwords are stored in cleartext, this vulnerability leads to lateral movement, granting an attacker access to monitored ne…
Map vulnerabilities like CWE-89 to your infrastructure
EchelonGraph correlates every CVE — across CWE-89 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →