13186 matches found
CVE-2010-1918
SQL injection vulnerability in askchat.php in eFront 3.6.2 and earlier allows remote attackers to execute arbitrary SQL commands via the chatroomsID parameter...
CVE-2010-1876
SQL injection vulnerability in index.php in AJ Shopping Cart 1.0 allows remote attackers to execute arbitrary SQL commands via the maincatid parameter in a showmaincatlanding action...
Sql injection
SQL injection vulnerability in index.php in AJ Shopping Cart 1.0 allows remote attackers to execute arbitrary SQL commands via the maincatid parameter in a showmaincatlanding action...
Sql injection
SQL injection vulnerability in the JTM Reseller comjtm component 1.9 Beta for Joomla! allows remote attackers to execute arbitrary SQL commands via the author parameter in a search action to index.php...
CVE-2010-1877
SQL injection vulnerability in the JTM Reseller comjtm component 1.9 Beta for Joomla! allows remote attackers to execute arbitrary SQL commands via the author parameter in a search action to index.php...
CVE-2010-1876
SQL injection vulnerability in index.php in AJ Shopping Cart 1.0 allows remote attackers to execute arbitrary SQL commands via the maincatid parameter in a showmaincatlanding action...
CVE-2010-1876
The CVE-2010-1876 entry describes an SQL injection in AJ Shopping Cart 1.0, affecting index.php via the maincatid parameter in the showmaincatlanding action. Root cause appears to be insufficient input validation leading to arbitrary SQL execution by remote attackers; exploitation status is not d...
CVE-2009-4871
SQL injection vulnerability in globepersonnelforum.asp in Logoshows BBS 2.0 allows remote attackers to execute arbitrary SQL commands via the forumid parameter...
CVE-2009-4862
Multiple SQL injection vulnerabilities in Alwasel 1.5 allow remote attackers to execute arbitrary SQL commands via the id parameter to 1 show.php and 2 xml.php...
Sql injection
SQL injection vulnerability in globepersonnelforum.asp in Logoshows BBS 2.0 allows remote attackers to execute arbitrary SQL commands via the forumid parameter...
Sql injection
Multiple SQL injection vulnerabilities in escortssearch.php in I-Escorts Directory Script and Agency Script, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the 1 searchname and 2 languages parameters. NOTE: some of these details are obtained from thi...
Sql injection
Multiple SQL injection vulnerabilities in login.php in PHPCityPortal allow remote attackers to execute arbitrary SQL commands via the 1 requsername aka Username and 2 reqpassword aka Password parameters. NOTE: some of these details are obtained from third party information...
Sql injection
SQL injection vulnerability in demo.php in Typing Pal 1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the idTableProduit parameter...
Sql injection
Multiple SQL injection vulnerabilities in globepersonnellogin.asp in Logoshows BBS 2.0 allow remote attackers to execute arbitrary SQL commands via the 1 username and 2 password fields...
Sql injection
Multiple SQL injection vulnerabilities in Alwasel 1.5 allow remote attackers to execute arbitrary SQL commands via the id parameter to 1 show.php and 2 xml.php...
CVE-2009-4860
SQL injection vulnerability in demo.php in Typing Pal 1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the idTableProduit parameter...
CVE-2009-4865
Multiple SQL injection vulnerabilities in escortssearch.php in I-Escorts Directory Script and Agency Script, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the 1 searchname and 2 languages parameters. NOTE: some of these details are obtained from thi...
CVE-2009-4870
Multiple SQL injection vulnerabilities in login.php in PHPCityPortal allow remote attackers to execute arbitrary SQL commands via the 1 requsername aka Username and 2 reqpassword aka Password parameters. NOTE: some of these details are obtained from third party information...
CVE-2009-4872
Multiple SQL injection vulnerabilities in globepersonnellogin.asp in Logoshows BBS 2.0 allow remote attackers to execute arbitrary SQL commands via the 1 username and 2 password fields...
Sql injection
SQL injection vulnerability in the shoutbox module modules/shoutbox.php in ClanTiger 1.1.3 and earlier allows remote attackers to execute arbitrary SQL commands via the semail parameter...