CWE-89— SQL Injection
The product constructs all or part of an SQL command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended SQL command when it is sent to a downstream component. Without sufficient removal or quoting of SQL syntax in user-controllable inputs, the generated SQL query can cause those inputs to be interpreted as SQL instead of ordinary user data.— MITRE CWE catalog
18,868 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-89page 142 of 378
- CVE-2021-47848HIGHCVSS 8.2EG 8.22026-01-21
Blitar Tourism 1.0 contains an authentication bypass vulnerability that allows attackers to bypass login by injecting SQL code through the username parameter. Attackers can manipulate the login request by sending a crafted username with SQ…
- CVE-2021-47872HIGHCVSS 7.1EG 7.12026-01-21
SEO Panel versions prior to 4.9.0 contain a blind SQL injection vulnerability in the archive.php page that allows authenticated attackers to manipulate database queries through the 'order_col' parameter. Attackers can use sqlmap to exploit…
- CVE-2021-47902HIGHCVSS 8.2EG 8.22026-01-27
Testa Online Test Management System 3.4.7 contains a SQL injection vulnerability that allows attackers to manipulate database queries through the 'q' search parameter. Attackers can inject malicious SQL code in the search field to extract …
- CVE-2021-47909HIGHCVSS 8.1EG 8.12026-02-01
Mult-E-Cart Ultimate 2.4 contains multiple SQL injection vulnerabilities in inventory, customer, vendor, and order modules. Remote attackers with privileged vendor or admin roles can exploit the 'id' parameter to execute malicious SQL comm…
- CVE-2021-47915HIGHCVSS 8.1EG 8.12026-02-01
PHP Melody version 3.0 contains a remote SQL injection vulnerability in the video edit module that allows authenticated attackers to inject malicious SQL commands. Attackers can exploit the unvalidated 'vid' parameter to execute arbitrary …
- CVE-2021-47918HIGHCVSS 8.1EG 8.12026-02-01
Simple CMS 2.1 contains a remote SQL injection vulnerability that allows privileged attackers to inject unfiltered SQL commands in the users module. Attackers can exploit unvalidated input parameters in the admin.php file to compromise the…
- CVE-2021-47928HIGHCVSS 8.2EG 8.22026-05-10
Opencart TMD Vendor System 3.x contains a blind SQL injection vulnerability that allows unauthenticated attackers to extract database information by injecting SQL code through the product_id parameter. Attackers can craft malicious SQL que…
- CVE-2021-47930HIGHCVSS 8.2EG 8.22026-05-10
Balbooa Joomla Forms Builder 2.0.6 contains an unauthenticated SQL injection vulnerability in the form submission handler that allows remote attackers to execute arbitrary SQL queries. Attackers can send POST requests to the com_baforms co…
- CVE-2021-47941HIGHCVSS 8.2EG 8.22026-05-10
WordPress Plugin Survey & Poll 1.5.7.3 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the wp_sap cookie parameter. Attackers can craft SQL …
- CVE-2021-47954HIGHCVSS 8.2EG 8.22026-05-16
LayerBB 1.1.4 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the search_query parameter. Attackers can send POST requests to /search.php with malic…
- CVE-2021-47956HIGHCVSS 8.2EG 8.22026-05-16
EgavilanMedia PHPCRUD 1.0 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the firstname parameter. Attackers can send POST requests to insert.php wi…
- CVE-2021-47966HIGHCVSS 8.2EG 8.22026-05-15
PHP Timeclock 1.04 contains time-based and boolean-based blind SQL injection vulnerabilities in the login_userid parameter of login.php that allows unauthenticated attackers to extract database contents. Attackers can submit crafted POST r…
- CVE-2021-47980HIGHCVSS 7.1EG 7.12026-05-16
Fuel CMS 1.4.13 contains a blind SQL injection vulnerability that allows authenticated attackers to manipulate database queries by injecting SQL code through the 'col' parameter in the Activity Log interface. Attackers can send requests to…
- CVE-2022-0153HIGHCVSS 7.5EG 7.52022-03-24
SQL Injection in GitHub repository forkcms/forkcms prior to 5.11.1.
- CVE-2022-0169CRITICALCVSS 9.8EG 9.82022-03-14
The Photo Gallery by 10Web WordPress plugin before 1.6.0 does not validate and escape the bwg_tag_id_bwg_thumbnails_0 parameter before using it in a SQL statement via the bwg_frontend_data AJAX action (available to unauthenticated and auth…
- CVE-2022-0190HIGHCVSS 8.8EG 8.82022-02-14
The Ad Invalid Click Protector (AICP) WordPress plugin before 1.2.6 is affected by a SQL Injection in the id parameter of the delete action.
- CVE-2022-0224CRITICALCVSS 9.8EG 8.32022-01-14
dolibarr is vulnerable to Improper Neutralization of Special Elements used in an SQL Command
- CVE-2022-0228HIGHCVSS 7.2EG 7.22022-02-21
The Popup Builder WordPress plugin before 4.0.7 does not validate and properly escape the orderby and order parameters before using them in a SQL statement in the admin dashboard, which could allow high privilege users to perform SQL injec…
- CVE-2022-0254CRITICALCVSS 9.8EG 9.82022-03-14
The WordPress Zero Spam WordPress plugin before 5.2.11 does not properly sanitise and escape the order and orderby parameters before using them in a SQL statement in the admin dashboard, leading to a SQL injection
- CVE-2022-0255HIGHCVSS 7.2EG 7.22022-02-21
The Database Backup for WordPress plugin before 2.5.1 does not properly sanitise and escape the fragment parameter before using it in a SQL statement in the admin dashboard, leading to a SQL injection issue
- CVE-2022-0258HIGHCVSS 8.8EG 8.82022-01-17
pimcore is vulnerable to Improper Neutralization of Special Elements used in an SQL Command
- CVE-2022-0267HIGHCVSS 7.2EG 7.22022-03-07
The AdRotate WordPress plugin before 5.8.22 does not sanitise and escape the adrotate_action before using it in a SQL statement via the adrotate_request_action function available to admins, leading to a SQL injection
- CVE-2022-0332CRITICALCVSS 9.8EG 9.82022-01-25
A flaw was found in Moodle in versions 3.11 to 3.11.4. An SQL injection risk was identified in the h5p activity web service responsible for fetching user attempt data.
- CVE-2022-0349CRITICALCVSS 9.8EG 9.82022-03-07
The NotificationX WordPress plugin before 2.3.9 does not sanitise and escape the nx_id parameter before using it in a SQL statement, leading to an Unauthenticated Blind SQL Injection
- CVE-2022-0362CRITICALCVSS 9.8EG 9.82022-01-26
SQL Injection in Packagist showdoc/showdoc prior to 2.10.3.
- CVE-2022-0366HIGHCVSS 8.8EG 8.82022-02-02
An authenticated and authorized agent user could potentially gain administrative access via an SQLi vulnerability to Capsule8 Console between versions 4.6.0 and 4.9.1.
- CVE-2022-0383HIGHCVSS 7.2EG 7.22022-02-28
The WP Review Slider WordPress plugin before 11.0 does not sanitise and escape the pid parameter when copying a Twitter source, which could allow a high privilege users to perform SQL Injections attacks
- CVE-2022-0386HIGHCVSS 8.8EG 8.82022-03-22
A post-auth SQL injection vulnerability in the Mail Manager potentially allows an authenticated attacker to execute code in Sophos UTM before version 9.710.
- CVE-2022-0410HIGHCVSS 8.8EG 8.82022-03-07
The WP Visitor Statistics (Real Time Traffic) WordPress plugin before 5.6 does not sanitise and escape the id parameter before using it in a SQL statement via the refUrlDetails AJAX action, available to any authenticated user, leading to a…
- CVE-2022-0411HIGHCVSS 8.8EG 8.82022-02-28
The Asgaros Forum WordPress plugin before 2.0.0 does not sanitise and escape the post_id parameter before using it in a SQL statement via a REST route of the plugin (accessible to any authenticated user), leading to a SQL injection
- CVE-2022-0412CRITICALCVSS 9.8EG 9.82022-02-28
The TI WooCommerce Wishlist WordPress plugin before 1.40.1, TI WooCommerce Wishlist Pro WordPress plugin before 1.40.1 do not sanitise and escape the item_id parameter before using it in a SQL statement via the wishlist/remove_product REST…
- CVE-2022-0420HIGHCVSS 7.2EG 7.22022-03-07
The RegistrationMagic WordPress plugin before 5.0.2.2 does not sanitise and escape the rm_form_id parameter before using it in a SQL statement in the Automation admin dashboard, allowing high privilege users to perform SQL injection attacks
- CVE-2022-0434CRITICALCVSS 9.8EG 9.82022-03-07
The Page View Count WordPress plugin before 2.4.15 does not sanitise and escape the post_ids parameter before using it in a SQL statement via a REST endpoint, available to both unauthenticated and authenticated users. As a result, unauthen…
- CVE-2022-0439HIGHCVSS 8.8EG 8.82022-03-07
The Email Subscribers & Newsletters WordPress plugin before 5.3.2 does not correctly escape the `order` and `orderby` parameters to the `ajax_fetch_report_list` action, making it vulnerable to blind SQL injection attacks by users with role…
- CVE-2022-0478HIGHCVSS 8.8EG 8.82022-03-14
The Event Manager and Tickets Selling for WooCommerce WordPress plugin before 3.5.8 does not validate and escape the post_author_gutenberg parameter before using it in a SQL statement when creating/editing events, which could allow users w…
- CVE-2022-0479CRITICALCVSS 9.8EG 9.82022-03-28
The Popup Builder WordPress plugin before 4.1.1 does not sanitise and escape the sgpb-subscription-popup-id parameter before using it in a SQL statement in the All Subscribers admin dashboard, leading to a SQL injection, which could also b…
- CVE-2022-0495CRITICALCVSS 9.4EG 9.82022-09-21
The library automation system product KOHA developed by Parantez Teknoloji before version 19.05.03 has an unauthenticated SQL Injection vulnerability. This has been fixed in the version 19.05.03.01.
- CVE-2022-0507MEDIUMCVSS 5.8EG 8.82022-03-10
Found a potential security vulnerability inside the Pandora API. Affected Pandora FMS version range: all versions of NG version, up to OUM 759. This vulnerability could allow an attacker with authenticated IP to inject SQL.
- CVE-2022-0513CRITICALCVSS 9.8EG 9.82022-02-16
The WP Statistics WordPress plugin is vulnerable to SQL Injection due to insufficient escaping and parameterization of the exclusion_reason parameter found in the ~/includes/class-wp-statistics-exclusion.php file which allows attackers wit…
- CVE-2022-0592CRITICALCVSS 9.8EG 9.82022-05-09
The MapSVG WordPress plugin before 6.2.20 does not validate and escape a parameter via a REST endpoint before using it in a SQL statement, leading to a SQL Injection exploitable by unauthenticated users.
- CVE-2022-0651CRITICALCVSS 9.8EG 9.82022-02-24
The WP Statistics WordPress plugin is vulnerable to SQL Injection due to insufficient escaping and parameterization of the current_page_type parameter found in the ~/includes/class-wp-statistics-hits.php file which allows attackers without…
- CVE-2022-0657CRITICALCVSS 9.8EG 9.82022-04-25
The 5 Stars Rating Funnel WordPress Plugin | RRatingg WordPress plugin before 1.2.54 does not properly sanitise, validate and escape lead ids before using them in a SQL statement via the rrtngg_delete_leads AJAX action, available to unauth…
- CVE-2022-0658CRITICALCVSS 9.8EG 9.82022-03-14
The CommonsBooking WordPress plugin before 2.6.8 does not sanitise and escape the location parameter of the calendar_data AJAX action (available to unauthenticated users) before it is used in dynamically constructed SQL queries, leading to…
- CVE-2022-0693CRITICALCVSS 9.8EG 9.82022-04-25
The Master Elements WordPress plugin through 8.0 does not validate and escape the meta_ids parameter of its remove_post_meta_condition AJAX action (available to both unauthenticated and authenticated users) before using it in a SQL stateme…
- CVE-2022-0694CRITICALCVSS 9.8EG 9.82022-03-21
The Advanced Booking Calendar WordPress plugin before 1.7.0 does not validate and escape the calendar parameter before using it in a SQL statement via the abc_booking_getSingleCalendar AJAX action (available to both unauthenticated and aut…
- CVE-2022-0739CRITICALCVSS 9.8EG 9.82022-03-21
The BookingPress WordPress plugin before 1.0.11 fails to properly sanitize user supplied POST data before it is used in a dynamically constructed SQL query via the bookingpress_front_get_category_services AJAX action (available to unauthen…
- CVE-2022-0747CRITICALCVSS 9.8EG 9.82022-03-21
The Infographic Maker WordPress plugin before 4.3.8 does not validate and escape the post_id parameter before using it in a SQL statement via the qcld_upvote_action AJAX action (available to unauthenticated and authenticated users), leadin…
- CVE-2022-0754MEDIUMCVSS 6.5EG 6.52022-03-07
SQL Injection in GitHub repository salesagility/suitecrm prior to 7.12.5.
- CVE-2022-0757MEDIUMCVSS 5.5EG 9.82022-03-17
Rapid7 Nexpose versions 6.6.93 and earlier are susceptible to an SQL Injection vulnerability, whereby valid search operators are not defined. This lack of validation can allow a logged-in, authenticated attacker to manipulate the "ANY" and…
- CVE-2022-0760CRITICALCVSS 9.8EG 9.82022-03-21
The Simple Link Directory WordPress plugin before 7.7.2 does not validate and escape the post_id parameter before using it in a SQL statement via the qcopd_upvote_action AJAX action (available to unauthenticated and authenticated users), l…
Map vulnerabilities like CWE-89 to your infrastructure
EchelonGraph correlates every CVE — across CWE-89 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →