13186 matches found
CVE-2009-4797
SQL injection vulnerability in browse.php in JobHut 1.2 and earlier allows remote attackers to execute arbitrary SQL commands via the pk parameter...
CVE-2009-4798
Multiple SQL injection vulnerabilities in Diskos CMS 6.x allow remote attackers to execute arbitrary SQL commands via the 1 kat parameter to side.asp, and the 2 brugerid and 3 password fields to the administration login feature...
CVE-2009-4794
Multiple SQL injection vulnerabilities in Community CMS 0.5 allow remote attackers to execute arbitrary SQL commands via the 1 articleid parameter to view.php and the 2 a parameter in an event action to calendar.php, reachable through index.php...
Sql injection
Multiple SQL injection vulnerabilities in the ExecuteQueries function in private/system/classes/listfactory.class.php in glFusion 1.1.2 and earlier allow remote attackers to execute arbitrary SQL commands via the 1 order and 2 direction parameters to search.php...
Sql injection
SQL injection vulnerability in includes/content/membercontent.php in BandSite CMS 1.1.4 allows remote attackers to execute arbitrary SQL commands via the memid parameter to members.php...
Sql injection
Multiple SQL injection vulnerabilities in Xlight FTP Server before 3.2.1, when ODBC authentication is enabled, allow remote attackers to execute arbitrary SQL commands via the 1 USER aka username or 2 PASS aka password command...
CVE-2009-4791
Multiple SQL injection vulnerabilities in Family Connections aka FCMS before 1.8.2 allow remote attackers to execute arbitrary SQL commands via the 1 letter parameter to addressbook.php, 2 id parameter to recipes.php, 3 year parameter to register.php, 4 pollid parameter to home.php, and 5 email...
CVE-2009-4792
SQL injection vulnerability in includes/content/membercontent.php in BandSite CMS 1.1.4 allows remote attackers to execute arbitrary SQL commands via the memid parameter to members.php...
CVE-2009-4794
CVE-2009-4794 concerns vulnerable installations of Community CMS 0.5 . The issue comprises multiple SQL injection vulnerabilities exploitable via the (1) article_id parameter to view.php and (2) a parameter in an event action to calendar.php (accessible through index.php). Remote attackers could ...
CVE-2009-4794
Multiple SQL injection vulnerabilities in Community CMS 0.5 allow remote attackers to execute arbitrary SQL commands via the 1 articleid parameter to view.php and the 2 a parameter in an event action to calendar.php, reachable through index.php...
Sql injection
SQL injection vulnerability in the Joaktree comjoaktree component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the treeId parameter to index.php...
CVE-2009-4784
SQL injection vulnerability in the Joaktree comjoaktree component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the treeId parameter to index.php...
CVE-2009-4785
SQL injection vulnerability in the Quick News comquicknews component for Joomla! allows remote attackers to execute arbitrary SQL commands via the newsid parameter in a viewitem action to index.php...
CVE-2009-4783
The CVE-2009-4783 item concerns multiple SQL injection vulnerabilities in Theeta CMS (version unclear). The affected entry points are the start parameter in three PHP scripts: community/forum.php, community/thread.php, and blog/index.php, where user-supplied input may be concatenated into SQL que...
Sql injection
SQL injection vulnerability in the Multi-Venue Restaurant Menu Manager aka MVRMM or commvrestaurantmenumanager component 1.5.2 Stable Update 3 and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the mid parameter in a menudisplay action to index.php...
Sql injection
SQL injection vulnerability in MODx Evolution before 1.0.3 allows remote attackers to execute arbitrary SQL commands via unknown vectors related to WebLogin...
CVE-2010-1426
SQL injection vulnerability in MODx Evolution before 1.0.3 allows remote attackers to execute arbitrary SQL commands via unknown vectors related to WebLogin...
Sql injection
SQL injection vulnerability in index.php in Uiga Personal Portal, as downloaded on 20100301, allows remote attackers to execute arbitrary SQL commands via the id parameter in a photos action. NOTE: some of these details are obtained from third party information...
Sql injection
SQL injection vulnerability in index.php in GameScript GS 3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter in a category action...
Sql injection
SQL injection vulnerability in detailad.asp in Pre Classified Listings ASP allows remote attackers to execute arbitrary SQL commands via the siteid parameter...