CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2025/05/22 5:10 a.m.•5 views

CVE-2012-3881

Multiple SQL injection vulnerabilities in RTG 0.7.4 and RTG2 0.9.2 allow remote attackers to execute arbitrary SQL commands via unspecified parameters to 1 95.php, 2 view.php, or 3 rtg.php...

7.5CVSS9AI score0.00314EPSS

RedhatCVE•added 2025/05/22 5:8 a.m.•5 views

CVE-2010-4856

SQL injection vulnerability in arsiv.asp in xWeblog 2.2 allows remote attackers to execute arbitrary SQL commands via the tarih parameter...

7.5CVSS8.8AI score0.00272EPSS

RedhatCVE•added 2025/05/22 5:3 a.m.•6 views

CVE-2010-4505

Multiple SQL injection vulnerabilities in login.php in Injader 2.4.4, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the 1 un and 2 pw parameters...

6.8CVSS9AI score0.00348EPSS

RedhatCVE•added 2025/05/22 5:1 a.m.•5 views

CVE-2015-1372

SQL injection vulnerability in ferretCMS 1.0.4-alpha allows remote attackers to execute arbitrary SQL commands via the p parameter in an update action to admin.php...

7.5CVSS8.8AI score0.01845EPSS

RedhatCVE•added 2025/05/22 5:1 a.m.•6 views

CVE-2010-3484

SQL injection vulnerability in common.php in LightNEasy 3.2.1 allows remote attackers to execute arbitrary SQL commands via the handle parameter to LightNEasy.php, a different vector than CVE-2008-6593...

7.5CVSS8.2AI score0.00829EPSS

RedhatCVE•added 2025/05/22 5:1 a.m.•7 views

CVE-2010-2510

SQL injection vulnerability in customize.php in 2daybiz Web Template Software allows remote attackers to execute arbitrary SQL commands via the tid parameter...

7.5CVSS8.8AI score0.00253EPSS

RedhatCVE•added 2025/05/22 4:54 a.m.•6 views

CVE-2010-4735

SQL injection vulnerability in shoppingcart.asp in Ecommercemax Solutions Digital-goods seller DGS 1.5 allows remote attackers to execute arbitrary SQL commands via the d parameter...

7.5CVSS8.8AI score0.00243EPSS

RedhatCVE•added 2025/05/22 4:53 a.m.•5 views

CVE-2010-2095

SQL injection vulnerability in index.php in CMSQlite 1.2 and earlier allows remote attackers to execute arbitrary SQL commands via the c parameter...

7.5CVSS8.8AI score0.00466EPSS

RedhatCVE•added 2025/05/22 4:52 a.m.•4 views

CVE-2010-1859

SQL injection vulnerability in newpost.php in DeluxeBB 1.3 and earlier, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the membercookie cookie when adding a new thread...

6.8CVSS8.7AI score0.00233EPSS

RedhatCVE•added 2025/05/22 4:50 a.m.•4 views

CVE-2010-2699

SQL injection vulnerability in index.php in Edge PHP Clickbank Affiliate Marketplace Script CBQuick allows remote attackers to execute arbitrary SQL commands via the search parameter...

7.5CVSS8.9AI score0.00243EPSS

RedhatCVE•added 2025/05/22 4:49 a.m.•7 views

CVE-2010-2672

Multiple SQL injection vulnerabilities in eZ Publish 3.7.0 through 4.2.0 allow remote attackers to execute arbitrary SQL commands via the 1 SectionID and 2 SearchTimestamp parameters to the search feature and the 3 SearchContentClassAttributeID parameter to the advancedsearch feature...

7.5CVSS9AI score0.00836EPSS

RedhatCVE•added 2025/05/22 4:44 a.m.•6 views

CVE-2010-4517

SQL injection vulnerability in the JExtensions JE Auto comjeauto component 1.0 for Joomla!, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the char parameter in an item action to index.php...

6.8CVSS8.8AI score0.00196EPSS

RedhatCVE•added 2025/05/22 4:43 a.m.•10 views

CVE-2010-0710

SQL injection vulnerability in default.asp in ASPCode CMS 1.5.8, 2.0.0 Build 103, and possibly other versions, allows remote attackers to execute arbitrary SQL commands via the newsid parameter when the sec parameter is 26. NOTE: the provenance of this information is unknown; the details are...

7.5CVSS8.6AI score0.00366EPSS

RedhatCVE•added 2025/05/22 4:41 a.m.•6 views

CVE-2011-1903

SQL injection vulnerability in an unspecified function in Proofpoint Messaging Security Gateway 6.2.0.263:6.2.0.237 and earlier in Proofpoint Protection Server 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6.2.0 allows remote attackers to execute arbitrary SQL commands via unknown vectors...

7.5CVSS8.8AI score0.01729EPSS

RedhatCVE•added 2025/05/22 4:38 a.m.•7 views

CVE-2010-2516

Multiple SQL injection vulnerabilities in 2daybiz Multi Level Marketing MLM Software allow remote attackers to execute arbitrary SQL commands via the username parameter to 1 index.php and 2 admin/index.php. NOTE: the provenance of this information is unknown; the details are obtained solely from...

7.5CVSS8.7AI score0.00366EPSS

RedhatCVE•added 2025/05/22 4:38 a.m.•9 views

CVE-2010-2513

SQL injection vulnerability in the JE Ajax Event Calendar comjeajaxeventcalendar component 1.0.5 for Joomla! allows remote attackers to execute arbitrary SQL commands via the view parameter to index.php...

7.5CVSS8.8AI score0.00776EPSS

RedhatCVE•added 2025/05/22 4:37 a.m.•5 views

CVE-2010-3482

Multiple SQL injection vulnerabilities in cmswrite.php in Primitive CMS 1.0.9 allow remote authenticated administrators to execute arbitrary SQL commands via the 1 title and 2 menutitle parameters. NOTE: this can be leveraged with CVE-2010-3483 to conduct attacks without authentication...

7.5CVSS8.4AI score0.02006EPSS

RedhatCVE•added 2025/05/22 4:35 a.m.•4 views

CVE-2011-4803

SQL injection vulnerability in wptouch/ajax.php in the WPTouch plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS8.9AI score0.01241EPSS

RedhatCVE•added 2025/05/22 4:33 a.m.•7 views

CVE-2015-1477

SQL injection vulnerability in the CMSJunkie J-ClassifiedsManager component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a viewad task to classifieds/offerring-ads...

7.5CVSS8.8AI score0.00943EPSS