CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13185 matches found

Prion•added 2011/09/27 10:55 a.m.•10 views

Sql injection

SQL injection vulnerability in content.php in MH Products Easy Online Shop allows remote attackers to execute arbitrary SQL commands via the kat parameter...

7.5CVSS9.1AI score0.01179EPSS

Exploits1References6

Prion•added 2011/09/27 10:55 a.m.•14 views

Sql injection

Multiple SQL injection vulnerabilities in Eclime 1.1.2b allow remote attackers to execute arbitrary SQL commands via the 1 ref or 2 pollid parameter to index.php, or the 3 country parameter to createaccount.php...

7.5CVSS9.2AI score0.02382EPSS

Exploits1References7Affected Software1

Prion•added 2011/09/27 10:55 a.m.•11 views

Sql injection

SQL injection vulnerability in website-page.php in PHP Web Scripts Ad Manager Pro 3.0 allows remote attackers to execute arbitrary SQL commands via the pageId parameter...

7.5CVSS9.1AI score0.01041EPSS

Exploits1References5Affected Software1

Prion•added 2011/09/27 10:55 a.m.•17 views

Sql injection

SQL injection vulnerability in countrydetails.php in Alibaba Clone B2B 3.4 allows remote attackers to execute arbitrary SQL commands via the esid parameter...

7.5CVSS9.1AI score0.00929EPSS

Exploits1References2Affected Software1

Prion•added 2011/09/27 10:55 a.m.•12 views

Sql injection

Multiple SQL injection vulnerabilities in MH Products Projekt Shop allow remote attackers to execute arbitrary SQL commands via the 1 ts parameter to details.php and possibly the 2 ilceler parameter to index.php...

7.5CVSS9.3AI score0.01014EPSS

Exploits1References4

Prion•added 2011/09/27 10:55 a.m.•14 views

Sql injection

SQL injection vulnerability in admin/login.php in MHP DownloadScript aka MH Products Download Center 2.2 allows remote attackers to execute arbitrary SQL commands via the Name parameter. NOTE: some of these details are obtained from third party information...

7.5CVSS9AI score0.01003EPSS

Exploits1References3Affected Software1

Cvelist•added 2011/09/27 10:0 a.m.•22 views

CVE-2010-4842

8.3AI score0.01003EPSS

Exploits1References3

Cvelist•added 2011/09/27 10:0 a.m.•21 views

CVE-2010-4844

SQL injection vulnerability in content.php in MH Products Easy Online Shop allows remote attackers to execute arbitrary SQL commands via the kat parameter...

8.3AI score0.01179EPSS

Exploits1References6

Cvelist•added 2011/09/27 10:0 a.m.•25 views

CVE-2010-4849

SQL injection vulnerability in countrydetails.php in Alibaba Clone B2B 3.4 allows remote attackers to execute arbitrary SQL commands via the esid parameter...

8.4AI score0.00929EPSS

Exploits1References2

Prion•added 2011/09/22 10:55 a.m.•11 views

Sql injection

SQL injection vulnerability in the login form in the web interface in Mercator SENTINEL 2.0 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

7.5CVSS9AI score0.01591EPSS

Exploits0References6Affected Software1

Cvelist•added 2011/09/22 10:0 a.m.•14 views

CVE-2011-1913

SQL injection vulnerability in the login form in the web interface in Mercator SENTINEL 2.0 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

8.3AI score0.01591EPSS

Exploits0References6

NVD•added 2011/09/15 5:58 p.m.•14 views

CVE-2011-3394

SQL injection vulnerability in findagent.php in MYRE Real Estate Software allows remote attackers to execute arbitrary SQL commands via the page parameter...

7.5CVSS8.4AI score0.01087EPSS

Exploits1References2

Prion•added 2011/09/15 5:58 p.m.•9 views

Sql injection

SQL injection vulnerability in findagent.php in MYRE Real Estate Software allows remote attackers to execute arbitrary SQL commands via the page parameter...

7.5CVSS9AI score0.01087EPSS

Exploits1References2

Cvelist•added 2011/09/15 3:0 p.m.•27 views

CVE-2011-3394

SQL injection vulnerability in findagent.php in MYRE Real Estate Software allows remote attackers to execute arbitrary SQL commands via the page parameter...

8.4AI score0.01087EPSS

Exploits1References2

NVD•added 2011/09/14 2:56 a.m.•19 views

CVE-2010-4834

Multiple SQL injection vulnerabilities in index.php in OneOrZero AIMS 2.6.0 Members Edition and 2.7.0 Trial Edition allow remote authenticated users to execute arbitrary SQL commands via the 1 id parameter in a savedsearch action and 2 itemtypes parameter in a showitemsearch action in the...

6.5CVSS8AI score0.00921EPSS

Exploits1References5

Prion•added 2011/09/14 2:56 a.m.•12 views

Sql injection

6.5CVSS8.8AI score0.00921EPSS

Exploits1References5Affected Software1

CVE•added 2011/09/13 9:0 p.m.•36 views

CVE-2010-4834

The CVE-2010-4834 entry describes multiple SQL injection flaws in index.php for OneOrZero AIMS 2.6.0 Members Edition and 2.7.0 Trial Edition. The vulnerabilities reside in the search_management_manage subcontroller, where remote authenticated users can manipulate the (1) id parameter in a saved_s...

6.5CVSS8.3AI score0.00921EPSS

Exploits1References5Affected Software1

NVD•added 2011/09/12 12:40 p.m.•21 views

CVE-2009-5090

SQL injection vulnerability in editcomments.php in Bloggeruniverse Beta 2, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the id parameter and possibly other unspecified vectors...

6.8CVSS8.4AI score0.02015EPSS

Exploits1References3

Prion•added 2011/09/12 12:40 p.m.•19 views

Sql injection

SQL injection vulnerability in secure/index.php in IdeaCart 0.02 allows remote attackers to execute arbitrary SQL commands via the cID parameter...

7.5CVSS9.1AI score0.01003EPSS

Exploits1References3Affected Software1

Prion•added 2011/09/12 12:40 p.m.•14 views

Sql injection

SQL injection vulnerability in page.php in Vlinks 1.0.3 and 1.1.6 allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS9.1AI score0.01014EPSS

Exploits1References4Affected Software1