13186 matches found
CVE-2010-2845
SQL injection vulnerability in the QuickFAQ comquickfaq component 1.0.3 for Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter in a category action to index.php...
CVE-2009-4947
SQL injection vulnerability in frmLoginPwdReminderPopup.aspx in Q2 Solutions ConnX 4.0.20080606 allows remote attackers to execute arbitrary SQL commands via the txtEmail parameter...
Sql injection
SQL injection vulnerability in the Store Locator extension before 1.2.8 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
Sql injection
SQL injection vulnerability in the A21glossary Advanced Output a21glossaryadvancedoutput extension before 0.1.12 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
Sql injection
SQL injection vulnerability in the ultraCards thultracards extension before 0.5.1 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
Sql injection
SQL injection vulnerability in frmLoginPwdReminderPopup.aspx in Q2 Solutions ConnX 4.0.20080606 allows remote attackers to execute arbitrary SQL commands via the txtEmail parameter...
CVE-2009-4947
SQL injection vulnerability in frmLoginPwdReminderPopup.aspx in Q2 Solutions ConnX 4.0.20080606 allows remote attackers to execute arbitrary SQL commands via the txtEmail parameter...
CVE-2009-4936
Multiple SQL injection vulnerabilities in Small Pirate SPirate 2.1 allow remote attackers to execute arbitrary SQL commands via 1 the id parameter to the default URI in an rss .xml action, or the id parameter to 2 pag1.php, 3 pag1-guest.php, 4 rss-commentpost.php aka rss-comentpost.php, or 5...
Sql injection
SQL injection vulnerability in index.php in Zeus Cart 2.3 and earlier allows remote attackers to execute arbitrary SQL commands via the maincatid parameter in a showmaincatlanding action...
Sql injection
Multiple SQL injection vulnerabilities in Small Pirate SPirate 2.1 allow remote attackers to execute arbitrary SQL commands via 1 the id parameter to the default URI in an rss .xml action, or the id parameter to 2 pag1.php, 3 pag1-guest.php, 4 rss-commentpost.php aka rss-comentpost.php, or 5...
WordPress myLDlinker Plugin - SQL Injection Vulnerability
This myLDlinker plugin is prone to an SQL injection vulnerability. It allows remote attackers to execute arbitrary SQL commands via the URL parameter. Solution Update the plugin...
CVE-2010-2719
SQL injection vulnerability in show.php in phpaaCms 0.3.1 UTF-8, and possibly other versions, allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2010-2714
SQL injection vulnerability in photos/index.php in TCW PHP Album 1.0 allows remote attackers to execute arbitrary SQL commands via the album parameter...
Sql injection
Multiple SQL injection vulnerabilities in PsNews 1.3 allow remote attackers to execute arbitrary SQL commands via the id parameter to 1 ndetail.php and 2 print.php...
Sql injection
SQL injection vulnerability in index.php in RightInPoint Lyrics Script 3.0 allows remote attackers to execute arbitrary SQL commands via the artistid parameter in an addalbum action...
Sql injection
SQL injection vulnerability in list.php in phpaaCms 0.3.1 UTF-8, and possibly other versions, allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: some of these details are obtained from third party information...
Sql injection
SQL injection vulnerability in photos/index.php in TCW PHP Album 1.0 allows remote attackers to execute arbitrary SQL commands via the album parameter...
CVE-2010-2719
SQL injection vulnerability in show.php in phpaaCms 0.3.1 UTF-8, and possibly other versions, allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2010-2720
CVE-2010-2720 affects phpaaCMS up to version 0.3.1 UTF-8, with a vulnerability in the list.php that allows an attacker to pass the id parameter to trigger an unauthenticated SQL injection and execute arbitrary SQL commands. The CVE has a published base CVSS v2 score of 7.5 (HIGH). A related OpenV...
CVE-2010-2714
SQL injection vulnerability in photos/index.php in TCW PHP Album 1.0 allows remote attackers to execute arbitrary SQL commands via the album parameter...