Lucene search
K

13188 matches found

ATTACKERKB
ATTACKERKB
added 2015/10/28 10:59 a.m.2 views

CVE-2015-7903

SQL injection vulnerability in Infinite Automation Mango Automation 2.5.x and 2.6.x before 2.6.0 build 430 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors...

6.5CVSS6.4AI score0.0129EPSS
Exploits1References2
Check Point Advisories
Check Point Advisories
added 2015/10/28 12:0 a.m.1 views

ManageEngine Applications Manager CommonAPIUtil moveSubGroup haid tohaid SQL Injection

An SQL injection vulnerability exists in ManageEngine Applications Manager. This vulnerability is due to insufficient validation of the haid and tohaid parameters when processing requests using the moveSubGroup method of the CommonAPIUtil class. By sending crafted request messages, a remote...

2.3AI score
Exploits0
Prion
Prion
added 2015/10/21 11:59 p.m.27 views

Sql injection

Unspecified vulnerability in the Oracle Applications Manager component in Oracle E-Business Suite 11.5.10.2, 12.0.6, 12.1.3, 12.2.3, and 12.2.4 allows remote authenticated users to affect confidentiality and integrity via vectors related to SQL Extensions. NOTE: the previous information is from t...

3.6CVSS7.1AI score0.01804EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2015/10/16 8:0 p.m.33 views

CVE-2015-7682

Multiple SQL injection vulnerabilities in pie-register/pie-register.php in the Pie Register plugin before 2.0.19 for WordPress allow remote administrators to execute arbitrary SQL commands via the 1 selectinvitaioncodebulkoption or 2 invidelid parameter in the pie-invitation-codes page to...

8.5AI score0.01383EPSS
Exploits3References4
Prion
Prion
added 2015/10/15 8:59 p.m.19 views

Sql injection

Multiple SQL injection vulnerabilities in the Web-based Development Workbench in SAP HANA DB 1.00.091.00.1418659308 allow remote authenticated users to execute arbitrary SQL commands via the 1 remoteSourceName in the dropCredentials function or unspecified vectors in the 2 setTraceLevelsForXsApps...

6.5CVSS8.9AI score0.01735EPSS
Exploits0References13Affected Software1
Prion
Prion
added 2015/10/12 10:59 a.m.18 views

Sql injection

SQL injection vulnerability in the web framework in Cisco Prime Collaboration Assurance 10.51 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCus39887...

6.5CVSS8.5AI score0.01592EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2015/10/12 10:59 a.m.14 views

Sql injection

SQL injection vulnerability in Cisco Prime Collaboration Provisioning 10.6 and 11.0 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCut64074...

6.5CVSS8.5AI score0.01592EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2015/10/12 10:0 a.m.17 views

CVE-2015-6331

SQL injection vulnerability in the web framework in Cisco Prime Collaboration Assurance 10.51 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCus39887...

7.9AI score0.01592EPSS
Exploits0References2
NVD
NVD
added 2015/10/11 1:59 a.m.12 views

CVE-2015-5659

SQL injection vulnerability in Network Applied Communication Laboratory Pref Shimane CMS 2.x before 2.0.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors...

6.5CVSS7.9AI score0.01711EPSS
Exploits0References6
Prion
Prion
added 2015/10/11 1:59 a.m.7 views

Sql injection

SQL injection vulnerability in Network Applied Communication Laboratory Pref Shimane CMS 2.x before 2.0.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors...

6.5CVSS8.5AI score0.01711EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2015/10/11 1:0 a.m.19 views

CVE-2015-5659

SQL injection vulnerability in Network Applied Communication Laboratory Pref Shimane CMS 2.x before 2.0.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors...

7.9AI score0.01711EPSS
Exploits0References6
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2015/10/09 12:0 a.m.25 views

JVN#84982142: Pref Shimane CMS vulnerable to SQL injection

Pref Shimane CMS is an open-source Contents Management System CMS. Pref Shimane CMS contains an SQL injection vulnerability. Impact A logged in attacker may execute arbitrary SQL statements. Solution Update the Software Update to the latest version according to the information provided by the...

6.5CVSS7.6AI score0.01711EPSS
Exploits0
CNVD
CNVD
added 2015/10/08 12:0 a.m.2 views

SQL Injection Vulnerability in Multiple IBM Products

IBM Maximo Asset Management is a suite of IT asset management solutions from IBM USA. A SQL injection vulnerability exists in multiple IBM products that allows a remote, authenticated user to execute arbitrary SQL commands via unspecified vectors...

6.5CVSS8.3AI score0.00991EPSS
Exploits0References1
Check Point Advisories
Check Point Advisories
added 2015/10/07 12:0 a.m.0 views

ManageEngine OpManager APMAlertOperationsServlet source SQL Injection

An SQL injection vulnerability exists in ManageEngine OpManager. This vulnerability is due to insufficient validation of the source parameter when processing requests sent to APMAlertOperationsServlet servlet. A remote attacker can exploit this vulnerability to inject and execute arbitrary SQL co...

3.7AI score
Exploits0
NVD
NVD
added 2015/10/06 1:59 a.m.11 views

CVE-2015-5642

Multiple SQL injection vulnerabilities in ICZ MATCHA INVOICE before 2.5.7 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors...

6.5CVSS8.1AI score0.01049EPSS
Exploits0References3
Prion
Prion
added 2015/10/06 1:59 a.m.13 views

Sql injection

SQL injection vulnerability in baserCMS before 3.0.8 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors...

6.5CVSS8.5AI score0.01566EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2015/10/06 1:59 a.m.11 views

Sql injection

Multiple SQL injection vulnerabilities in ICZ MATCHA INVOICE before 2.5.7 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors...

6.5CVSS8.7AI score0.01049EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2015/10/06 1:59 a.m.13 views

Sql injection

SQL injection vulnerability in IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5.0.8 IFIX004, and 7.6.0 before 7.6.0.1 IFIX002; Maximo Asset Management 7.5.x before 7.5.0.8 IFIX004 and 7.6.0 before 7.6.0.1 IFIX002 for SmartCloud Control Desk; and Maximo Asset Management 7.1 throu...

6.5CVSS8.3AI score0.00991EPSS
Exploits0References1Affected Software13
Cvelist
Cvelist
added 2015/10/05 10:0 a.m.21 views

CVE-2015-4967

SQL injection vulnerability in IBM Maximo Asset Management 7.1 through 7.1.1.13, 7.5.0 before 7.5.0.8 IFIX004, and 7.6.0 before 7.6.0.1 IFIX002; Maximo Asset Management 7.5.x before 7.5.0.8 IFIX004 and 7.6.0 before 7.6.0.1 IFIX002 for SmartCloud Control Desk; and Maximo Asset Management 7.1 throu...

7.7AI score0.00991EPSS
Exploits0References1
Cvelist
Cvelist
added 2015/10/03 10:0 a.m.20 views

CVE-2015-5641

SQL injection vulnerability in baserCMS before 3.0.8 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors...

7.9AI score0.01566EPSS
Exploits0References3
Rows per page
Query Builder