Total
12396 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2008-0515 | 2 Joomla, Mambo | 2 Musepoes Component, Musepoes Component | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in index.php in the musepoes (com_musepoes) component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the aid parameter in an answer action. | |||||
CVE-2007-6540 | 1 Neuron | 1 News | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in neuron news 1.0 allows remote attackers to execute arbitrary SQL commands via the q parameter to the default URI in patch/. | |||||
CVE-2008-0253 | 1 Binn | 1 Sbuilder | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in full_text.php in Binn SBuilder allows remote attackers to execute arbitrary SQL commands via the nid parameter. | |||||
CVE-2007-6032 | 1 Aleris | 1 Web Publishing Server | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in calendar/page.asp in Aleris Web Publishing Server 3.0 allows remote attackers to execute arbitrary SQL commands via the mode parameter. | |||||
CVE-2008-0089 | 1 Clip-share | 1 Clipshare | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in uprofile.php in ClipShare allows remote attackers to execute arbitrary SQL commands via the UID parameter. | |||||
CVE-2007-4604 | 1 Dinkumsoft.com | 1 Dl Paycart | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in viewitem.php in DL PayCart 1.01 allows remote attackers to execute arbitrary SQL commands via the ItemID parameter. | |||||
CVE-2007-5430 | 1 Scottmanktelow | 1 Stride Cms | 2024-02-28 | 7.5 HIGH | N/A |
Multiple SQL injection vulnerabilities in Stride 1.0 allow remote attackers to execute arbitrary SQL commands via (1) the p parameter to main.php in the Content Management System, (2) the id parameter in a sto cmd action to shop.php in the Merchant subsystem, or the (3) course or (4) provider parameter to detail.php in the Courses subsystem. | |||||
CVE-2006-6912 | 1 Phpmyfaq | 1 Phpmyfaq | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in phpMyFAQ 1.6.7 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors, possibly the userfile or filename parameter. | |||||
CVE-2007-5131 | 1 Interspire | 1 Activekb Nx | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in index.php in Interspire ActiveKB NX 2.x allows remote attackers to execute arbitrary SQL commands via the catId parameter in a browse action. NOTE: it was separately reported that ActiveKB 1.5 is also affected. | |||||
CVE-2008-0543 | 1 Pre Projects | 1 Pre Dynamic Institution | 2024-02-28 | 7.5 HIGH | N/A |
Multiple SQL injection vulnerabilities in Pre Dynamic Institution allow remote attackers to execute arbitrary SQL commands via the (1) sloginid and (2) spass parameters to (a) login.asp and (b) siteadmin/login.asp. NOTE: some of these details are obtained from third party information. | |||||
CVE-2008-0789 | 1 Li-scripts | 1 Li-countdown | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in countdown.php in LI-Scripts LI-Countdown allows remote attackers to execute arbitrary SQL commands via the years parameter. | |||||
CVE-2007-5679 | 1 Deeemm | 1 Dmcms | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in index.php in DeeEmm.com DM CMS 0.7.0.Beta allows remote attackers to execute arbitrary SQL commands via the id parameter in the media page (build_media_content.php). NOTE: it was later reported that 0.7.4 is also affected. | |||||
CVE-2008-0833 | 1 Joomla | 1 Com Galeria | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in index.php in the com_galeria component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action. | |||||
CVE-2007-5678 | 1 Phpbasic | 1 Phpbasic | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in the Music module in phpBasic allows remote attackers to execute arbitrary SQL commands via the id parameter in a view action to the default URI. | |||||
CVE-2006-6073 | 1 Enthrallweb | 1 Eshopping Cart | 2024-02-28 | 7.5 HIGH | N/A |
Multiple SQL injection vulnerabilities in Enthrallweb eShopping Cart allow remote attackers to execute arbitrary SQL commands via the (1) ProductID parameter in productdetail.asp or the (2) categoryid parameter in products.asp. | |||||
CVE-2007-5488 | 1 Asterisk | 1 Asterisk-addons | 2024-02-28 | 7.5 HIGH | N/A |
Multiple SQL injection vulnerabilities in cdr_addon_mysql in Asterisk-Addons before 1.2.8, and 1.4.x before 1.4.4, allow remote attackers to execute arbitrary SQL commands via the (1) source and (2) destination numbers, and probably (3) SIP URI, when inserting a record. | |||||
CVE-2008-0815 | 2 Egitimhost, Joomla | 2 Com Mezun, Com Mezun | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in the com_mezun component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in an edit task. | |||||
CVE-2007-5999 | 1 Softbizscripts | 1 Softbiz Auctions Script | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in product_desc.php in Softbiz Auctions Script allows remote attackers to execute arbitrary SQL commands via the id parameter. | |||||
CVE-2007-6292 | 1 Mwopen | 1 E-commerce | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in leggi_commenti.asp in MWOpen 1.4 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. | |||||
CVE-2008-0327 | 1 Fascript | 1 Famp3 | 2024-02-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in show.php in FaScript FaMp3 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. |