Total
9311 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2008-2029 | 1 Minibb | 1 Minibb | 2017-09-28 | 6.8 MEDIUM | N/A |
Multiple SQL injection vulnerabilities in (1) setup_mysql.php and (2) setup_options.php in miniBB 2.2 and possibly earlier, when register_globals is enabled, allow remote attackers to execute arbitrary SQL commands via the xtr parameter in a userinfo action to index.php. | |||||
CVE-2008-2047 | 1 Aspindir | 1 Angelo-emlak | 2017-09-28 | 7.5 HIGH | N/A |
Multiple SQL injection vulnerabilities in Angelo-Emlak 1.0 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) hpz/profil.asp and (2) hpz/prodetail.asp. | |||||
CVE-2008-2063 | 1 Joovili | 1 Joovili | 2017-09-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in browse.videos.php in Joovili 3.1 allows remote attackers to execute arbitrary SQL commands via the category parameter. | |||||
CVE-2008-2065 | 1 Yourfreeworld | 1 Jokes Site Script | 2017-09-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in jokes.php in YourFreeWorld Jokes Site Script allows remote attackers to execute arbitrary SQL commands via the catagorie parameter. | |||||
CVE-2007-6575 | 1 Brand039 | 1 Mmslamp | 2017-09-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in default.php in MMSLamp allows remote attackers to execute arbitrary SQL commands via the idpro parameter in a prodotti_dettaglio action. | |||||
CVE-2007-6576 | 1 Adultscript | 1 Adultscript | 2017-09-28 | 7.5 HIGH | N/A |
Multiple SQL injection vulnerabilities in Adult Script 1.6.5 and earlier allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) videolink_count.php or (2) links.php. | |||||
CVE-2007-6577 | 1 Zsuite | 1 Zblog | 2017-09-28 | 7.5 HIGH | N/A |
Multiple SQL injection vulnerabilities in index.php in zBlog 1.2 allow remote attackers to execute arbitrary SQL commands via (1) the categ parameter in a categ action or (2) the article parameter in an articles action. | |||||
CVE-2007-6578 | 1 Zeak.net | 1 Php Zlink | 2017-09-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in go.php in PHP ZLink 0.3 allows remote attackers to execute arbitrary SQL commands via the id parameter. | |||||
CVE-2007-6579 | 1 Ip Reg | 1 Ip Reg | 2017-09-28 | 7.5 HIGH | N/A |
Multiple SQL injection vulnerabilities in Ip Reg 0.3 allow remote attackers to execute arbitrary SQL commands via the vlan_id parameter to (1) vlanview.php, (2) vlanedit.php, and (3) vlandel.php; the (4) assetclassgroup_id parameter to assetclassgroupview.php; the (5) subnet_id parameter to nodelist.php; and unspecified other vectors. NOTE: it was later reported that the vlanview.php and vlandel.php vectors are also in 0.4. | |||||
CVE-2007-6580 | 1 Wallpaper | 1 Wallpaper Complete Website | 2017-09-28 | 7.5 HIGH | N/A |
Multiple SQL injection vulnerabilities in Wallpaper Site 1.0.09 allow remote attackers to execute arbitrary SQL commands via (1) the catid parameter to category.php or (2) the groupid parameter to editadgroup.php. | |||||
CVE-2007-6583 | 1 1024 Cms | 1 1024 Cms | 2017-09-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in admin/ops/findip/ajax/search.php in 1024 CMS 1.3.1 allows remote attackers to execute arbitrary SQL commands via the ip parameter. | |||||
CVE-2007-6586 | 1 Niclor | 1 Niclor | 2017-09-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in sezione_news.php in nicLOR-CMS allows remote attackers to execute arbitrary SQL commands via the id parameter in a sezione page action to index.php. | |||||
CVE-2007-6602 | 1 Noserub | 1 Noserub | 2017-09-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in app/models/identity.php in NoseRub 0.5.2 and earlier allows remote attackers to execute arbitrary SQL commands via the username field to the login script. | |||||
CVE-2007-6622 | 1 Zeuscms | 1 Zeuscms | 2017-09-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in security.php in ZeusCMS 0.3 and earlier allows remote attackers to execute arbitrary SQL commands via the Referer HTTP header. | |||||
CVE-2007-6639 | 1 Iptbb Team | 1 Iptbb | 2017-09-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in index.php in IPTBB 0.5.4 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter in a viewdir action. | |||||
CVE-2007-6647 | 1 W-agora | 1 W-agora | 2017-09-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in index.php in w-Agora 4.2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the cat parameter. | |||||
CVE-2007-6656 | 1 Cmsmadesimple | 1 Cms Made Simple | 2017-09-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in content_css.php in the TinyMCE module for CMS Made Simple 1.2.2 and earlier allows remote attackers to execute arbitrary SQL commands via the templateid parameter. | |||||
CVE-2007-6663 | 2 Joomla, Pragmatic Utopia | 2 Joomla, Pu Arcade | 2017-09-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in (1) Puarcade.php and (2) PUarcade.html.php in Pragmatic Utopia PU Arcade (com_puarcade) 2.0.3, 2.1.2, and 2.1.3 Beta component for Joomla! allows remote attackers to execute arbitrary SQL commands via the fid parameter to index.php. | |||||
CVE-2007-6664 | 1 Webportal | 1 Webportal Cms | 2017-09-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in index.php in WebPortal CMS 0.6.0 and earlier allows remote attackers to execute arbitrary SQL commands via the m parameter. | |||||
CVE-2007-6665 | 1 Netchemia | 1 Oneschool | 2017-09-28 | 7.5 HIGH | N/A |
SQL injection vulnerability in admin/login.asp in Netchemia oneSCHOOL allows remote attackers to execute arbitrary SQL commands via the txtLoginID parameter. |