Total
12391 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2008-2504 | 1 Simpel Side | 1 Netbutik | 2024-02-28 | 7.5 HIGH | N/A |
Multiple SQL injection vulnerabilities in Simpel Side Netbutik 1 through 4 allow remote attackers to execute arbitrary SQL commands via the (1) cat parameter to netbutik.php and the (2) id parameter to product.php. | |||||
CVE-2008-3118 | 1 Phpmotion | 1 Phpmotion | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in play.php in PHPmotion 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the vid parameter. | |||||
CVE-2009-2326 | 1 Max Kervin | 1 Kervinet Forum | 2024-02-28 | 7.5 HIGH | N/A |
Multiple SQL injection vulnerabilities in KerviNet Forum 1.1 and earlier allow remote attackers to execute arbitrary SQL commands via (1) an enter_parol cookie to index.php in an auto action or (2) the topic parameter to message.php. NOTE: vector 2 can be leveraged for a cross-site scripting (XSS) attack. | |||||
CVE-2008-6266 | 1 Appstate | 1 Phpwebsite | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in links.php in Appalachian State University phpWebSite allows remote attackers to execute arbitrary SQL commands via the cid parameter in a viewlink action. | |||||
CVE-2008-2983 | 1 Cwh Underground | 1 Demo4 Cms | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in index.php in Demo4 CMS 01 Beta allows remote attackers to execute arbitrary SQL commands via the id parameter. | |||||
CVE-2008-6881 | 2 Joomla, Joompolitan | 2 Joomla\!, Com Livechat | 2024-02-28 | 7.5 HIGH | N/A |
Multiple SQL injection vulnerabilities in the Live Chat (com_livechat) component 1.0 for Joomla! allow remote attackers to execute arbitrary SQL commands via the last parameter to (1) getChat.php, (2) getChatRoom.php, and (3) getSavedChatRooms.php. | |||||
CVE-2008-4154 | 1 Living-e | 1 Webedition Cms | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in living-e webEdition CMS allows remote attackers to execute arbitrary SQL commands via the we_objectID parameter. | |||||
CVE-2008-4991 | 1 Ec-cube | 1 Ec-cube | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in LOCKON CO.,LTD. EC-CUBE 2.3.0 and earlier, 1.4.7 and earlier, and 1.5.0-beta2 and earlier; and Community Edition 1.3.5 and earlier allows remote attackers to execute arbitrary SQL commands via the parameter. | |||||
CVE-2008-4902 | 1 Scripts Frenzy | 1 Article Publisher Pro | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in contact_author.php in Article Publisher Pro 1.5 allows remote attackers to execute arbitrary SQL commands via the userid parameter. | |||||
CVE-2008-6203 | 1 Jakob-persson | 1 Cobalt | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in adminler.asp in CoBaLT 2.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. | |||||
CVE-2008-6596 | 1 Phpcredo | 1 Phcdownload | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in admin/index.php in PHCDownload 1.1 allows remote attackers to execute arbitrary SQL commands via the hash parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. | |||||
CVE-2008-6277 | 1 Rakhisoftware | 1 Rakhisoftware Shopping Cart | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in product.php in RakhiSoftware Price Comparison Script (aka Shopping Cart) allows remote attackers to execute arbitrary SQL commands via the subcategory_id parameter. | |||||
CVE-2008-5197 | 1 Php-fusion | 1 Php-fusion | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in classifieds.php in PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the lid parameter in a detail_adverts action. | |||||
CVE-2008-4091 | 1 Source Workshop | 1 Web Directory Script | 2024-02-28 | 6.8 MEDIUM | N/A |
SQL injection vulnerability in index.php in Web Directory Script 1.5.3 allows remote attackers to execute arbitrary SQL commands via the site parameter in an open action. | |||||
CVE-2009-1818 | 1 Maxcms | 1 Maxcms | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in admin/admin_manager.asp in MaxCMS 2.0 allows remote attackers to execute arbitrary SQL commands via an m_username cookie in an add action. | |||||
CVE-2009-1945 | 1 Tzo | 1 Webcal | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in webCal3_detail.asp in WebCal 3.04 allows remote attackers to execute arbitrary SQL commands via the event_id parameter. | |||||
CVE-2008-1774 | 1 Pligg | 1 Pligg Cms | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in editlink.php in Pligg 9.9.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. | |||||
CVE-2009-0334 | 1 Katywhitton | 1 Blogit\! | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in index.asp in Katy Whitton BlogIt! allows remote attackers to execute arbitrary SQL commands via the day parameter in an archive action. | |||||
CVE-2008-2669 | 1 Y-blog | 1 Yblog | 2024-02-28 | 7.5 HIGH | N/A |
Multiple SQL injection vulnerabilities in yBlog 0.2.2.2 allow remote attackers to execute arbitrary SQL commands via (1) the q parameter to search.php, or the n parameter to (2) user.php or (3) uss.php. | |||||
CVE-2008-2697 | 2 Joomla, Rapid-source | 2 Com Rapidrecipe, Rapid Recipe | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in the Rapid Recipe (com_rapidrecipe) component 1.6.6 and 1.6.7 for Joomla! allows remote attackers to execute arbitrary SQL commands via the recipe_id parameter in a viewrecipe action to index.php. |