CWE-89— SQL Injection
The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.— MITRE CWE catalog
18,858 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-89page 113 of 378
- CVE-2020-10549CRITICALCVSS 9.8EG 9.82020-06-04
rConfig 3.9.4 and previous versions has unauthenticated snippets.inc.php SQL injection. Because, by default, nodes' passwords are stored in cleartext, this vulnerability leads to lateral movement, granting an attacker access to monitored n…
- CVE-2020-10563CRITICALCVSS 9.8EG 9.82020-03-13
An issue was discovered in DEVOME GRR before 3.4.1c. frmcontactlist.php mishandles a SQL query.
- CVE-2020-10582CRITICALCVSS 9.8EG 9.82021-03-25
A SQL injection on the /admin/display_errors.php script of Invigo Automatic Device Management (ADM) through 5.0 allows remote attackers to execute arbitrary SQL requests (including data reading and modification) on the database.
- CVE-2020-10617HIGHCVSS 7.5EG 7.52020-04-09
There are multiple ways an unauthenticated attacker could perform SQL injection on WebAccess/NMS (versions prior to 3.0.2) to gain access to sensitive information.
- CVE-2020-10623MEDIUMCVSS 6.5EG 6.52020-04-09
Multiple vulnerabilities could allow an attacker with low privileges to perform SQL injection on WebAccess/NMS (versions prior to 3.0.2) to gain access to sensitive information.
- CVE-2020-10802HIGHCVSS 8.0EG 8.02020-03-22
In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability has been discovered where certain parameters are not properly escaped when generating certain queries for search actions in libraries/classes/Controllers/Ta…
- CVE-2020-10803MEDIUMCVSS 5.4EG 5.42020-03-22
In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability was discovered where malicious code could be used to trigger an XSS attack through retrieving and displaying results (in tbl_get_field.php and libraries/cla…
- CVE-2020-10804HIGHCVSS 8.0EG 8.02020-03-22
In phpMyAdmin 4.x before 4.9.5 and 5.x before 5.0.2, a SQL injection vulnerability was found in retrieval of the current username (in libraries/classes/Server/Privileges.php and libraries/classes/UserPassword.php). A malicious user with ac…
- CVE-2020-10817HIGHCVSS 8.8EG 8.82020-03-27
The custom-searchable-data-entry-system (aka Custom Searchable Data Entry System) plugin through 1.7.1 for WordPress allows SQL Injection. NOTE: this product is discontinued.
- CVE-2020-10982MEDIUMCVSS 4.9EG 4.92020-07-28
Gambio GX before 4.0.1.0 allows SQL Injection in admin/gv_mail.php.
- CVE-2020-10983MEDIUMCVSS 4.9EG 4.92020-07-28
Gambio GX before 4.0.1.0 allows SQL Injection in admin/mobile.php.
- CVE-2020-11004HIGHCVSS 7.7EG 7.72020-04-24
SQL Injection was discovered in Admidio before version 3.3.13. The main cookie parameter is concatenated into a SQL query without any input validation/sanitization, thus an attacker without logging in, can send a GET request with arbitrary…
- CVE-2020-11010MEDIUMCVSS 6.3EG 6.32020-04-20
In Tortoise ORM before versions 0.15.23 and 0.16.6, various forms of SQL injection have been found for MySQL and when filtering or doing mass-updates on char/text fields. SQLite & PostgreSQL are only affected when filtering with contains, …
- CVE-2020-11032HIGHCVSS 7.6EG 7.62020-05-05
In GLPI before version 9.4.6, there is a SQL injection vulnerability for all helpdesk instances. Exploiting this vulnerability requires a technician account. This is fixed in version 9.4.6.
- CVE-2020-11437MEDIUMCVSS 4.3EG 4.32020-07-15
LibreHealth EMR v2.0.0 is affected by SQL injection allowing low-privilege authenticated users to enumerate the database.
- CVE-2020-11530CRITICALCVSS 9.8EG 9.82020-05-08
A blind SQL injection vulnerability is present in Chop Slider 3, a WordPress plugin. The vulnerability is introduced in the id GET parameter supplied to get_script/index.php, and allows an attacker to execute arbitrary SQL queries in the c…
- CVE-2020-11537CRITICALCVSS 9.8EG 9.82020-04-15
A SQL Injection issue was discovered in ONLYOFFICE Document Server 5.5.0. An attacker can execute arbitrary SQL queries via injection to DocID parameter of Websocket API.
- CVE-2020-11545CRITICALCVSS 9.8EG 9.82020-04-06
Project Worlds Official Car Rental System 1 is vulnerable to multiple SQL injection issues, as demonstrated by the email and parameters (account.php), uname and pass parameters (login.php), and id parameter (book_car.php) This allows an at…
- CVE-2020-11597CRITICALCVSS 9.8EG 9.82020-04-06
An issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. An unauthenticated attacker can make an HTTP POST request and inject SQL statements in the user context of the db owner.
- CVE-2020-11717CRITICALCVSS 9.8EG 9.82020-12-21
An issue was discovered in Programi 014 31.01.2020. It has multiple SQL injection vulnerabilities.
- CVE-2020-11812CRITICALCVSS 9.8EG 9.82020-04-16
Rukovoditel 2.5.2 is affected by a SQL injection vulnerability because of improper handling of the filters[0][value] or filters[1][value] parameter.
- CVE-2020-11816CRITICALCVSS 9.8EG 9.82020-04-16
Rukovoditel 2.5.2 is affected by a SQL injection vulnerability because of improper handling of the reports_id (POST) parameter.
- CVE-2020-11820CRITICALCVSS 9.8EG 9.82020-04-16
Rukovoditel 2.5.2 is affected by a SQL injection vulnerability because of improper handling of the entities_id parameter.
- CVE-2020-11886HIGHCVSS 8.1EG 8.12020-04-17
OpenNMS Horizon and Meridian allows HQL Injection in element/nodeList.htm (aka the NodeListController) via snmpParm or snmpParmValue to addCriteriaForSnmpParm. This affects Horizon before 25.2.1, Meridian 2019 before 2019.1.4, Meridian 201…
- CVE-2020-11942CRITICALCVSS 9.8EG 9.82020-04-29
An issue was discovered in Open-AudIT 3.2.2. There are Multiple SQL Injections.
- CVE-2020-12013CRITICALCVSS 9.1EG 9.12020-07-16
A specially crafted WCF client that interfaces to the may allow the execution of certain arbitrary SQL commands remotely. This affects: Mitsubishi Electric MC Works64 Version 4.02C (10.95.208.31) and earlier, all versions; Mitsubishi Elect…
- CVE-2020-12014HIGHCVSS 7.5EG 7.52020-05-08
Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Input is not properly sanitized and may allow an attacker to inject SQL commands.
- CVE-2020-12034HIGHCVSS 8.2EG 8.22020-05-20
Products that use EDS Subsystem: Version 28.0.1 and prior (FactoryTalk Linx software (Previously called RSLinx Enterprise): Versions 6.00, 6.10, and 6.11, RSLinx Classic: Version 4.11.00 and prior, RSNetWorx software: Version 28.00.00 and …
- CVE-2020-12104HIGHCVSS 8.8EG 8.82020-05-05
The Import feature in the wp-advanced-search plugin 3.3.6 for WordPress is vulnerable to authenticated SQL injection via an uploaded .sql file. An attacker can use this to execute SQL commands without any validation.
- CVE-2020-12271CRITICALCVSS 9.8EG 9.8⚠ KEV2020-04-27
A SQL injection issue was found in SFOS 17.0, 17.1, 17.5, and 18.0 before 2020-04-25 on Sophos XG Firewall devices, as exploited in the wild in April 2020. This affected devices configured with either the administration (HTTPS) service or …
- CVE-2020-12429CRITICALCVSS 9.8EG 9.82020-04-28
Online Course Registration 2.0 has multiple SQL injections that would can lead to a complete database compromise and authentication bypass in the login pages: admin/change-password.php, admin/check_availability.php, admin/index.php, change…
- CVE-2020-12442CRITICALCVSS 9.8EG 9.82020-04-28
Ivanti Avalanche 6.3 allows a SQL injection that is vaguely associated with the Apache HTTP Server, aka Bug 683250.
- CVE-2020-12461HIGHCVSS 8.8EG 8.82020-04-29
PHP-Fusion 9.03.50 allows SQL Injection because maincore.php has an insufficient protection mechanism. An attacker can develop a crafted payload that can be inserted into the sort_order GET parameter on the members.php members search page.…
- CVE-2020-12507HIGHCVSS 8.8EG 8.82022-11-15
In s::can moni::tools before version 4.2 an authenticated attacker could get full access to the database through SQL injection. This may result in loss of confidentiality, loss of integrity and DoS.
- CVE-2020-12606CRITICALCVSS 9.8EG 9.82020-08-17
An issue was discovered in DB Soft SGLAC before 20.05.001. The ProcedimientoGenerico method in the SVCManejador.svc webservice of the SGLAC web frontend allows an attacker to run arbitrary SQL commands on the SQL Server. Command execution …
- CVE-2020-12720CRITICALCVSS 9.8EG 9.82020-05-08
vBulletin before 5.5.6pl1, 5.6.0 before 5.6.0pl1, and 5.6.1 before 5.6.1pl1 has incorrect access control.
- CVE-2020-12766CRITICALCVSS 9.8EG 9.82020-05-09
Gnuteca 3.8 allows action=main:search:simpleSearch SQL Injection via the exemplaryStatusId parameter.
- CVE-2020-12870CRITICALCVSS 9.8EG 9.82020-09-30
RainbowFish PacsOne Server 6.8.4 allows SQL injection on the username parameter in the signup page.
- CVE-2020-13118CRITICALCVSS 9.8EG 9.82020-05-16
An issue was discovered in Mikrotik-Router-Monitoring-System through 2018-10-22. SQL Injection exists in check_community.php via the parameter community.
- CVE-2020-13127HIGHCVSS 8.8EG 8.82020-09-09
A SQL injection vulnerability at a tpf URI in Loway QueueMetrics before 19.04.1 allows remote authenticated attackers to execute arbitrary SQL commands via the TASKS_LIST__pt.querystring parameter.
- CVE-2020-13380CRITICALCVSS 9.8EG 9.82020-07-01
openSIS before 7.4 allows SQL Injection.
- CVE-2020-13381CRITICALCVSS 9.8EG 9.82020-07-01
openSIS through 7.4 allows SQL Injection.
- CVE-2020-13433CRITICALCVSS 9.8EG 9.82020-05-24
Jason2605 AdminPanel 4.0 allows SQL Injection via the editPlayer.php hidden parameter.
- CVE-2020-13499CRITICALCVSS 9.8EG 9.82020-09-24
An SQL injection vulnerability exists in the CHaD.asmx web service functionality of eDNA Enterprise Data Historian 3.0.1.2/7.5.4989.33053. Specially crafted SOAP web requests can cause SQL injections resulting in data compromise. Parameter…
- CVE-2020-13500CRITICALCVSS 9.8EG 9.82020-09-24
SQL injection vulnerability exists in the CHaD.asmx web service functionality of eDNA Enterprise Data Historian 3.0.1.2/7.5.4989.33053. Specially crafted SOAP web requests can cause SQL injections resulting in data compromise. Parameter Cl…
- CVE-2020-13501CRITICALCVSS 9.8EG 9.82020-09-24
An SQL injection vulnerability exists in the CHaD.asmx web service functionality of eDNA Enterprise Data Historian 3.0.1.2/7.5.4989.33053. Specially crafted SOAP web requests can cause SQL injections resulting in data compromise. Parameter…
- CVE-2020-13504CRITICALCVSS 9.8EG 9.82020-09-24
Parameter AttFilterValue in ednareporting.asmx is vulnerable to unauthenticated SQL injection attacks. Specially crafted SOAP web requests can cause SQL injections resulting in data compromise. An attacker can send unauthenticated HTTP req…
- CVE-2020-13505CRITICALCVSS 9.8EG 9.82020-09-24
Parameter psClass in ednareporting.asmx is vulnerable to unauthenticated SQL injection attacks. Specially crafted SOAP web requests can cause SQL injections resulting in data compromise. An attacker can send unauthenticated HTTP requests t…
- CVE-2020-13525HIGHCVSS 8.8EG 8.82020-12-03
The sort parameter in the download page /sysworkflow/en/neoclassic/reportTables/reportTables_Ajax is vulnerable to SQL injection in ProcessMaker 3.4.11. A specially crafted HTTP request can cause an SQL injection. An attacker can make an a…
- CVE-2020-13526HIGHCVSS 8.8EG 8.82020-12-10
SQL injection vulnerability exists in the handling of sort parameters in ProcessMaker 3.4.11. A specially crafted HTTP request can cause an SQL injection. The reportTables_Ajax and clientSetupAjax pages are vulnerable to SQL injection in t…
Map vulnerabilities like CWE-89 to your infrastructure
EchelonGraph correlates every CVE — across CWE-89 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →