Vulnerabilities (CVE)

Filtered by vendor Commodityrentals Subscribe
Total 7 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2010-0762 1 Commodityrentals 1 Cd Rental Software 2024-02-28 7.5 HIGH N/A
SQL injection vulnerability in index.php in CommodityRentals CD Rental Software allows remote attackers to execute arbitrary SQL commands via the cat_id parameter in a catalog action.
CVE-2010-0690 1 Commodityrentals 1 Video Games Rentals 2024-02-28 7.5 HIGH N/A
SQL injection vulnerability in index.php in CommodityRentals Video Games Rentals allows remote attackers to execute arbitrary SQL commands via the pfid parameter in a catalog action.
CVE-2010-0763 1 Commodityrentals 1 Vacation Rental Software 2024-02-28 7.5 HIGH N/A
SQL injection vulnerability in index.php in CommodityRentals Vacation Rental Software allows remote attackers to execute arbitrary SQL commands via the rental_id parameter in a CalendarView action.
CVE-2010-4770 1 Commodityrentals 1 Dvd Rentals Script 2024-02-28 7.5 HIGH N/A
SQL injection vulnerability in index.php in CommodityRentals DVD Rentals Script allows remote attackers to execute arbitrary SQL commands via the cat_id parameter in a catalog action.
CVE-2010-0693 1 Commodityrentals 1 Trade Manager Script 2024-02-28 7.5 HIGH N/A
SQL injection vulnerability in products.php in CommodityRentals Trade Manager Script allows remote attackers to execute arbitrary SQL commands via the cid parameter.
CVE-2010-0761 1 Commodityrentals 1 Books\/ebooks Rentals Script 2024-02-28 7.5 HIGH N/A
SQL injection vulnerability in index.php in CommodityRentals Books/eBooks Rentals Script allows remote attackers to execute arbitrary SQL commands via the cat_id parameter in a gamecatalog action.
CVE-2005-3917 1 Commodityrentals 1 Commodityrentals 2024-02-28 7.5 HIGH N/A
SQL injection vulnerability in usersession in CommodityRentals 2.0 Online Rental Business Creator script allows remote attackers to execute arbitrary SQL commands via the user_id parameter.