13185 matches found
Sql injection
SQL injection vulnerability in artykulprint.php in CreateVision CMS allows remote attackers to execute arbitrary SQL commands via the id parameter...
Sql injection
SQL injection vulnerability in MyJobList 0.1.3 allows remote attackers to execute arbitrary SQL commands via the eid parameter in a profile action to index.php...
CVE-2012-1784
This CVE concerns SQL injection in MyJobList 0.1.3. The vulnerability is triggered via the eid parameter in the profile action to index.php, allowing remote attackers to execute arbitrary SQL commands. The root cause is unsanitized input in the affected parameter, leading to potentially partial t...
CVE-2012-0293
Multiple SQL injection vulnerabilities in Symantec Altiris WISE Package Studio before 8.0MR1 allow remote attackers to execute arbitrary SQL commands via unspecified vectors...
CVE-2012-1557
SQL injection vulnerability in admin/plib/api-rpc/Agent.php in Parallels Plesk Panel 7.x and 8.x before 8.6 MU2, 9.x before 9.5 MU11, 10.0.x before MU13, 10.1.x before MU22, 10.2.x before MU16, and 10.3.x before MU5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
Sql injection
SQL injection vulnerability in admin/plib/api-rpc/Agent.php in Parallels Plesk Panel 7.x and 8.x before 8.6 MU2, 9.x before 9.5 MU11, 10.0.x before MU13, 10.1.x before MU22, 10.2.x before MU16, and 10.3.x before MU5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
CVE-2012-1557
SQL injection vulnerability in admin/plib/api-rpc/Agent.php in Parallels Plesk Panel 7.x and 8.x before 8.6 MU2, 9.x before 9.5 MU11, 10.0.x before MU13, 10.1.x before MU22, 10.2.x before MU16, and 10.3.x before MU5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
Joomla com_x-shop 'idd' Parameter SQL Injection Vulnerability
This host is running Joomla x-shop component and is prone to SQL injection vulnerability. OpenVAS Vulnerability Test $Id: gbjoomlacomxshopsqlinjvuln.nasl 5888 2017-04-07 09:01:53Z teissa $ Joomla comx-shop 'idd' Parameter SQL Injection Vulnerability Authors: Madhuri D Copyright: Copyright c 2012...
Mandriva Update for postgresql8.3 MDVSA-2012:027 (postgresql8.3)
Check for the Version of postgresql8.3 OpenVAS Vulnerability Test Mandriva Update for postgresql8.3 MDVSA-2012:027 postgresql8.3 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...
SA-CONTRIB-2012-031 - Multiple Modules Unsupported - UC PayDutchGroup - Information leakage and Multisite Search sql injection
CVE: CVE-2012-1655 UC PayDutchGroup / WeDeal payment integrates the PayDutchGroup / WeDeal payment gateway with Ubercart. The module exposes account credentials for the store's PayDutchGroup account under certain circumstances allowing a malicious user to login to the PayDutchGroup site as the...
Sql injection
Multiple SQL injection vulnerabilities in IBM Tivoli Provisioning Manager Express for Software Distribution 4.1.1 allow remote attackers to execute arbitrary SQL commands via 1 a SOAP message to the Printer.getPrinterAgentKey function in the SoapServlet servlet, 2 the User.updateUserValue functio...
CVE-2011-4487
SQL injection vulnerability in Cisco Unified Communications Manager CUCM with software 6.x and 7.x before 7.15bsu5, 8.0 before 8.03asu3, and 8.5 and 8.6 before 8.62asu1 and Cisco Business Edition 3000 with software before 8.6.3 and 5000 and 6000 with software before 8.62asu1 allows remote attacke...
CVE-2011-4487
SQL injection vulnerability in Cisco Unified Communications Manager CUCM with software 6.x and 7.x before 7.15bsu5, 8.0 before 8.03asu3, and 8.5 and 8.6 before 8.62asu1 and Cisco Business Edition 3000 with software before 8.6.3 and 5000 and 6000 with software before 8.62asu1 allows remote attacke...
Mandriva Linux Security Advisory : postgresql (MDVSA-2012:026)
Multiple vulnerabilities has been discovered and corrected in postgresql : Permissions on a function called by a trigger are not properly checked CVE-2012-0866. SSL certificate name checks are truncated to 32 characters, allowing connection spoofing under some circumstances when using third-party...
CVE-2012-1210
SQL injection vulnerability in pfile/file.php in Powie pFile 1.02 allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2012-0999
SQL injection vulnerability in modules/news/rss.php in LEPTON before 1.1.4 allows remote attackers to execute arbitrary SQL commands via the groupid parameter...
Sql injection
SQL injection vulnerability in modules/news/rss.php in LEPTON before 1.1.4 allows remote attackers to execute arbitrary SQL commands via the groupid parameter...
Sql injection
SQL injection vulnerability in pfile/file.php in Powie pFile 1.02 allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2012-1294
SQL injection vulnerability in CONTIMEX Impulsio CMS allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php...
CVE-2012-1294
SQL injection vulnerability in CONTIMEX Impulsio CMS allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php...