Total
9311 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2017-17629 | 1 Secure E-commerce Script Project | 1 Secure E-commerce Script | 2017-12-22 | 7.5 HIGH | 9.8 CRITICAL |
| Secure E-commerce Script 2.0.1 has SQL Injection via the category.php searchmain or searchcat parameter, or the single_detail.php sid parameter. | |||||
| CVE-2017-17111 | 1 Scubez | 1 Posty Readymade Classifieds | 2017-12-22 | 7.5 HIGH | 9.8 CRITICAL |
| Posty Readymade Classifieds Script 1.0 allows an attacker to inject SQL commands via a listings.php?catid= or ads-details.php?ID= request. | |||||
| CVE-2017-17616 | 1 Event Calendar Category Script Project | 1 Event Calendar Category Script | 2017-12-22 | 7.5 HIGH | 9.8 CRITICAL |
| Event Search Script 1.0 has SQL Injection via the /event-list city parameter. | |||||
| CVE-2017-17605 | 1 Consumer Complaints Clone Script Project | 1 Consumer Complaints Clone Script | 2017-12-22 | 7.5 HIGH | 9.8 CRITICAL |
| Consumer Complaints Clone Script 1.0 has SQL Injection via the other-user-profile.php id parameter. | |||||
| CVE-2017-17606 | 1 Co-work Space Search Script Project | 1 Co-work Space Search Script | 2017-12-22 | 7.5 HIGH | 9.8 CRITICAL |
| Co-work Space Search Script 1.0 has SQL Injection via the /list city parameter. | |||||
| CVE-2017-17607 | 1 Cms Auditor Website Project | 1 Cms Auditor Website | 2017-12-22 | 7.5 HIGH | 9.8 CRITICAL |
| CMS Auditor Website 1.0 has SQL Injection via the PATH_INFO to /news-detail. | |||||
| CVE-2017-17600 | 1 Basic B2b Script Project | 1 Basic B2b Script | 2017-12-22 | 7.5 HIGH | 9.8 CRITICAL |
| Basic B2B Script 2.0.8 has SQL Injection via the product_details.php id parameter. | |||||
| CVE-2017-17601 | 1 Cab Booking Script Project | 1 Cab Booking Script | 2017-12-22 | 7.5 HIGH | 9.8 CRITICAL |
| Cab Booking Script 1.0 has SQL Injection via the /service-list city parameter. | |||||
| CVE-2017-17599 | 1 Advance Online Learning Management Script Project | 1 Advance Online Learning Management Script | 2017-12-22 | 7.5 HIGH | 9.8 CRITICAL |
| Advance Online Learning Management Script 3.1 has SQL Injection via the courselist.php subcatid or popcourseid parameter. | |||||
| CVE-2017-17598 | 1 Affiliate Mlm Script Project | 1 Affiliate Mlm Script | 2017-12-22 | 7.5 HIGH | 9.8 CRITICAL |
| Affiliate MLM Script 1.0 has SQL Injection via the product-category.php key parameter. | |||||
| CVE-2017-17597 | 1 Nearbuy Clone Script Project | 1 Nearbuy Clone Script | 2017-12-22 | 7.5 HIGH | 9.8 CRITICAL |
| Nearbuy Clone Script 3.2 has SQL Injection via the category_list.php search parameter. | |||||
| CVE-2017-17596 | 1 Entrepreneur Job Portal Script Project | 1 Entrepreneur Job Portal Script | 2017-12-22 | 7.5 HIGH | 9.8 CRITICAL |
| Entrepreneur Job Portal Script 2.0.6 has SQL Injection via the jobsearch_all.php rid1 parameter. | |||||
| CVE-2017-17595 | 1 Beauty Parlour Booking Script Project | 1 Beauty Parlour Booking Script | 2017-12-22 | 7.5 HIGH | 9.8 CRITICAL |
| Beauty Parlour Booking Script 1.0 has SQL Injection via the /list gender or city parameter. | |||||
| CVE-2017-17594 | 1 Domainsale Php Script Project | 1 Domainsale Php Script | 2017-12-22 | 7.5 HIGH | 9.8 CRITICAL |
| DomainSale PHP Script 1.0 has SQL Injection via the domain.php id parameter. | |||||
| CVE-2017-17567 | 1 Scubez | 1 Posty Readymade Classifieds | 2017-12-22 | 5.0 MEDIUM | 7.5 HIGH |
| Scubez Posty Readymade Classifieds has SQL Injection via the admin/user_activate_submit.php ID parameter. | |||||
| CVE-2012-2574 | 1 Symantec | 1 Web Gateway | 2017-12-21 | 7.5 HIGH | N/A |
| SQL injection vulnerability in the management console in Symantec Web Gateway 5.0.x before 5.0.3.18 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, related to a "blind SQL injection" issue. | |||||
| CVE-2012-2961 | 1 Symantec | 1 Web Gateway | 2017-12-21 | 7.5 HIGH | N/A |
| SQL injection vulnerability in the management console in Symantec Web Gateway 5.0.x before 5.0.3.18 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. | |||||
| CVE-2017-17591 | 1 Realestate Crowdfunding Script Project | 1 Realestate Crowdfunding Script | 2017-12-21 | 7.5 HIGH | 9.8 CRITICAL |
| Realestate Crowdfunding Script 2.7.2 has SQL Injection via the single-cause.php pid parameter. | |||||
| CVE-2017-17592 | 1 Website Auction Marketplace Project | 1 Website Auction Marketplace | 2017-12-21 | 7.5 HIGH | 9.8 CRITICAL |
| Website Auction Marketplace 2.0.5 has SQL Injection via the search.php cat_id parameter. | |||||
| CVE-2017-17695 | 1 Techno - Portfolio Management Panel Project | 1 Techno - Portfolio Management Panel | 2017-12-21 | 6.5 MEDIUM | 8.8 HIGH |
| Techno - Portfolio Management Panel through 2017-11-16 allows SQL Injection via the panel/search.php s parameter. | |||||