CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

10439 matches found

OpenVAS•added 2009/03/21 12:0 a.m.•33 views

phpMyAdmin DB_Create.PHP Multiple Input Validation Vulnerabilities

phpMyAdmin is prone to multiple input-validation vulnerabilities, including a cross-site scripting and a SQL-injection issue. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Exploits0References1

exploitpack•added 2009/03/10 12:0 a.m.•11 views

Nenriki CMS 0.5 - ID Cookie SQL Injection

Nenriki CMS 0.5 - ID Cookie SQL Injection source: https://www.securityfocus.com/bid/34067/info Nenriki CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

OpenVAS•added 2009/03/06 12:0 a.m.•17 views

EZ-Blog 'public/view.php' SQL Injection Vulnerability

EZ-Blog is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying...

6.8CVSS0.7AI score0.00691EPSS

exploitpack•added 2009/03/06 12:0 a.m.•11 views

TinXCMS 3.5 - rss.php SQL Injection

TinXCMS 3.5 - rss.php SQL Injection source: https://www.securityfocus.com/bid/34021/info TinX CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise th...

Exploit DB•added 2009/03/06 12:0 a.m.•20 views

TinXCMS 3.5 - 'rss.php' SQL Injection

source: https://www.securityfocus.com/bid/34021/info TinX CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data...

exploitpack•added 2009/03/05 12:0 a.m.•11 views

Amoot Web Directory - Password Field SQL Injection

Amoot Web Directory - Password Field SQL Injection source: https://www.securityfocus.com/bid/34016/info Amoot Web Directory is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...

OpenVAS•added 2009/03/02 12:0 a.m.•30 views

A4Desk Event Calendar 'eventid' Parameter SQL Injection Vulnerability

A4Desk Event Calendar is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in t...

6.8CVSS0.3AI score0.00824EPSS

OpenVAS•added 2009/03/02 12:0 a.m.•25 views

Joomla! and Mambo JoomRadio Component 'id' Parameter SQL Injection Vulnerability

The JoomRadio component for Joomla! and Mambo is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit...

7.5CVSS0.5AI score0.00055EPSS

Exploit DB•added 2009/02/28 12:0 a.m.•16 views

CMSCart 1.04 - 'maindatafunctions.php' SQL Injection

source: https://www.securityfocus.com/bid/34017/info CMSCart is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data,...

exploitpack•added 2009/02/28 12:0 a.m.•10 views

CMSCart 1.04 - maindatafunctions.php SQL Injection

CMSCart 1.04 - maindatafunctions.php SQL Injection source: https://www.securityfocus.com/bid/34017/info CMSCart is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

Exploit DB•added 2009/02/26 12:0 a.m.•22 views

Parsi PHP CMS 2.0 - 'index.php' SQL Injection

source: https://www.securityfocus.com/bid/33914/info Parsi PHP CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...

exploitpack•added 2009/02/10 12:0 a.m.•8 views

Banking@Home 2.1 - login.asp Multiple SQL Injections

Banking@Home 2.1 - login.asp Multiple SQL Injections source: https://www.securityfocus.com/bid/33721/info Banking@Home is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could all...

Exploit DB•added 2009/02/06 12:0 a.m.•20 views

Ilch CMS 1.1 - 'HTTP_X_FORWARDED_FOR' SQL Injection

source: https://www.securityfocus.com/bid/33665/info Ilch CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data...

exploitpack•added 2009/01/15 12:0 a.m.•9 views

MKPortal 1.2.1 - modulesblogindex.php Home Template Textarea SQL Injection

MKPortal 1.2.1 - modulesblogindex.php Home Template Textarea SQL Injection source: https://www.securityfocus.com/bid/33300/info MKPortal is prone to multiple security vulnerabilities, including SQL-injection, HTML-injection, cross-site scripting, arbitrary-file-upload, and...

exploitpack•added 2009/01/15 12:0 a.m.•12 views

Active Bids - search SQL Injection

Active Bids - search SQL Injection source: https://www.securityfocus.com/bid/33306/info Active Auction House and Active Auction Pro are prone to SQL-injection and cross-site scripting vulnerabilities because they fail to sufficiently sanitize user-supplied data. Exploiting these issues could allo...

exploitpack•added 2009/01/15 12:0 a.m.•11 views

LinksPro - OrderDirection SQL Injection

LinksPro - OrderDirection SQL Injection source: https://www.securityfocus.com/bid/33305/info LinksPro is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromis...

Exploit DB•added 2009/01/15 12:0 a.m.•24 views

LinksPro - 'OrderDirection' SQL Injection

source: https://www.securityfocus.com/bid/33305/info LinksPro is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data...

exploitpack•added 2009/01/14 12:0 a.m.•12 views

Dark Age CMS 2.0 - login.php SQL Injection

Dark Age CMS 2.0 - login.php SQL Injection source: https://www.securityfocus.com/bid/33271/info Dark Age CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to...

Exploit DB•added 2009/01/12 12:0 a.m.•26 views

Visuplay CMS - Multiple SQL Injections

source: https://www.securityfocus.com/bid/33209/info Visuplay CMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to compromise the application, access ...

Exploit DB•added 2009/01/05 12:0 a.m.•26 views

SolucionXpressPro - 'main.php' SQL Injection

source: https://www.securityfocus.com/bid/33111/info SolucionXpressPro is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or...

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by