CVE-2010-2689

SQL injection vulnerability in contform.php in Internet DM WebDM CMS allows remote attackers to execute arbitrary SQL commands via the cfid parameter...

CVE-2012-3032

SQL injection vulnerability in WebNavigator in Siemens WinCC 7.0 SP3 and earlier, as used in SIMATIC PCS7 and other products, allows remote attackers to execute arbitrary SQL commands via a crafted SOAP message...

CVE-2011-5071

Multiple SQL injection vulnerabilities in Support Incident Tracker aka SiT! before 3.64 allow remote attackers to execute arbitrary SQL commands via the 1 exc parameter to reportmarketing.php, 2 selected parameter to tasks.php, 3 sites parameter to billableincidents.php, or 4 searchstring paramet...

CVE-2010-2342

SQL injection vulnerability in onlinenotebookmanager.asp in DMXReady Online Notebook Manager 1.0 allows remote attackers to execute arbitrary SQL commands via the ItemID parameter...

CVE-2010-2319

SQL injection vulnerability in index.php in IDevSpot TextAds 2.08 allows remote attackers to execute arbitrary SQL commands via the page parameter...

CVE-2005-1673

Multiple SQL injection vulnerabilities in Help Center Live allow remote attackers to execute arbitrary SQL commands via the 1 id parameter to index.php, 2 tid parameter to view.php, fid parameter to 3 download.php or 4 chatdownload.php, 5 status parameter to icon.php, TICKETtid parameter to 6...

CVE-2005-4821

Multiple SQL injection vulnerabilities in Land Down Under LDU v801 and earlier allow remote attackers to execute arbitrary SQL commands via parameters including 1 the m parameter in auth.php, 2 the f parameter in events.php, or 3 the e parameter in plug.php...

CVE-2005-4669

SQL injection vulnerability in RT Internet Solutions RTIS WebAdmin allows remote attackers to execute arbitrary SQL commands via the 1 username and 2 password fields...

CVE-2005-4768

SQL injection vulnerability in manageaccount.php in Tux Racer TuxBank 0.7x and 0.8 allows remote attackers to execute arbitrary SQL commands via the id parameter in a manageaccount action to index.php...

CVE-2009-3804

Multiple SQL injection vulnerabilities in modules/forum/post.php in RunCMS 2M1 allow remote authenticated users to execute arbitrary SQL commands via 1 the pid parameter, which is not properly handled by the store function in modules/forum/class/class.forumposts.php, or 2 the topicid parameter...

CVE-2009-2345

Multiple SQL injection vulnerabilities in ClanSphere before 2009.0.1 allow remote attackers to execute arbitrary SQL commands via unknown parameters to the gbook module and unspecified other components...

CVE-2007-3652

SQL injection vulnerability in class/page.php in Farsi Script aka FaScript FaName 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: this might be the same issue as CVE-2008-0328...

CVE-2005-1788

SQL injection vulnerability in resellerresources.asp in Hosting Controller 6.1 Hotfix 2.0 allows remote attackers to execute arbitrary SQL commands via the jresourceid parameter...

CVE-2008-0936

SQL injection vulnerability in index.php in the Prayer List prayerlist 1.04 module for XOOPS allows remote attackers to execute arbitrary SQL commands via the cid parameter in a view action...

CVE-2006-0464

Multiple SQL injection vulnerabilities in index.php in IdeoContent Manager allow remote attackers to execute arbitrary SQL commands via the 1 gotoid or 2 mid parameter...

CVE-2005-2031

Multiple SQL injection vulnerabilities in socialMPN allow remote attackers to execute arbitrary SQL commands via 1 the sid parameter to article.php, 2 uname parameter to user.php, 3 siteid parameter to viewforum.php, 4 username parameter to newtopic.php, the 5 secid or 6 artid parameter to...

CVE-2006-2132

SQL injection vulnerability in detail.asp in DUclassified allows remote attackers to execute arbitrary SQL commands via the iPro parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

CVE-2009-3495

SQL injection vulnerability in viewmag.php in Vastal I-Tech DVD Zone allows remote attackers to execute arbitrary SQL commands via the magid parameter, a different vector than CVE-2008-4465...

CVE-2009-3644

SQL injection vulnerability in the Soundset comsoundset component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.php...

CVE-2009-3498

SQL injection vulnerability in php/updatearticlehits.php in HBcms 1.7 allows remote attackers to execute arbitrary SQL commands via the articleid parameter...