CWE-89 CVEs and Security Vulnerabilities

Filtered by CWE-89

Search

Switch to Advanced Search (Beta)

Total 17409 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2022-30478	1 Ecommerce-project-with-php-and-mysqli-fruits-bazar Project	1 Ecommerce-project-with-php-and-mysqli-fruits-bazar	2024-11-21	9.8 Critical
Ecommerce-project-with-php-and-mysqli-Fruits-Bazar 1.0 is vulnerable to SQL Injection in \search_product.php via the keyword parameters.
CVE-2022-30469	1 Afian	1 Filerun	2024-11-21	8.8 High
In Afian Filerun 20220202, lack of sanitization of the POST parameter "metadata[]" in `/?module=fileman&section=get&page=grid` leads to SQL injection.
CVE-2022-30463	1 Automotive Shop Management System Project	1 Automotive Shop Management System	2024-11-21	8.8 High
Automotive Shop Management System v1.0 is vulnerable to SQL Injection via /asms/classes/Master.php?f=delete_product.
CVE-2022-30461	1 Water Billing System Project	1 Water Billing System	2024-11-21	9.8 Critical
Water-billing-management-system v1.0 is vulnerable to SQL Injection via /wbms/classes/Master.php?f=delete_client, id
CVE-2022-30459	1 Chatbot App With Suggestion Project	1 Chatbot App With Suggestion	2024-11-21	8.8 High
ChatBot App with Suggestion in PHP/OOP v1.0 is vulnerable to SQL Injection via /simple_chat_bot/classes/Master.php?f=delete_response, id.
CVE-2022-30455	1 Badminton Center Management System Project	1 Badminton Center Management System	2024-11-21	9.8 Critical
Badminton Center Management System 1.0 is vulnerable to SQL Injection via /bcms/classes/Master.php?f=delete_court_rental, id.
CVE-2022-30454	1 Merchandise Online Store Project	1 Merchandise Online Store	2024-11-21	9.8 Critical
Merchandise Online Store 1.0 is vulnerable to SQL Injection via /vloggers_merch/classes/Master.php?f=delete_product.
CVE-2022-30452	1 Shopwind	1 Shopwind	2024-11-21	7.2 High
ShopWind <= v3.4.2 has a Sql injection vulnerability in Database.php
CVE-2022-30451	1 Waimairencms Project	1 Waimairencms	2024-11-21	8.8 High
An authenticated user could execute code via a SQLi vulnerability in waimairenCMS before version 9.1.
CVE-2022-30449	1 Hospital Management System Project	1 Hospital Management System	2024-11-21	9.8 Critical
Hospital Management System in PHP with Source Code (HMS) 1.0 was discovered to contain a SQL injection vulnerability via the editid parameter in room.php.
CVE-2022-30417	1 Covid 19 Travel Pass Management System Project	1 Covid 19 Travel Pass Management System	2024-11-21	7.2 High
Covid-19 Travel Pass Management System v1.0 is vulnerable to SQL Injection via ctpms/admin/?page=user/manage_user&id=.
CVE-2022-30415	1 Covid 19 Travel Pass Management System Project	1 Covid 19 Travel Pass Management System	2024-11-21	7.2 High
Covid-19 Travel Pass Management System v1.0 is vulnerable to SQL Injection via /ctpms/admin/applications/update_status.php?id=.
CVE-2022-30414	1 Covid 19 Travel Pass Management System Project	1 Covid 19 Travel Pass Management System	2024-11-21	7.2 High
Covid-19 Travel Pass Management System v1.0 is vulnerable to SQL Injection via /ctpms/admin/?page=applications/view_application&id=.
CVE-2022-30413	1 Covid 19 Travel Pass Management System Project	1 Covid 19 Travel Pass Management System	2024-11-21	9.8 Critical
Covid-19 Travel Pass Management System v1.0 is vulnerable to SQL Injection via /ctpms/classes/Master.php?f=delete_application.
CVE-2022-30412	1 Covid 19 Travel Pass Management System Project	1 Covid 19 Travel Pass Management System	2024-11-21	7.2 High
Covid-19 Travel Pass Management System v1.0 is vulnerable to SQL Injection via /ctpms/admin/individuals/update_status.php?id=.
CVE-2022-30411	1 Covid 19 Travel Pass Management System Project	1 Covid 19 Travel Pass Management System	2024-11-21	7.2 High
Covid-19 Travel Pass Management System v1.0 is vulnerable to SQL Injection via /ctpms/admin/?page=individuals/view_individual&id=.
CVE-2022-30407	1 Pharmacy Sales And Inventory System Project	1 Pharmacy Sales And Inventory System	2024-11-21	9.8 Critical
Pharmacy Sales And Inventory System v1.0 is vulnerable to SQL Injection via /pharmacy-sales-and-inventory-system/manage_user.php?id=.
CVE-2022-30404	1 College Management System Project	1 College Management System	2024-11-21	7.2 High
College Management System v1.0 is vulnerable to SQL Injection via /College_Management_System/admin/display-teacher.php?teacher_id=.
CVE-2022-30403	1 Merchandise Online Store Product	1 Merchandise Online Store	2024-11-21	7.2 High
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/?p=products&c=.
CVE-2022-30402	1 Merchandise Online Store Project	1 Merchandise Online Store	2024-11-21	7.2 High
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/admin/?page=maintenance/manage_sub_category&id=.

« first previous Page 690 of 871. next last »