13187 matches found
Sql injection
SQL injection vulnerability in login.php in Allomani Movies Library Movies & Clips 2.7.0 allows remote attackers to execute arbitrary SQL commands via the username parameter in a login action...
Sql injection
SQL injection vulnerability in checkuser.php in SimpleLoginSys 0.5, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the username parameter. NOTE: some of these details are obtained from third party information...
CVE-2009-4719
SQL injection vulnerability in index.php in Discloser 0.0.4 rc2 allows remote attackers to execute arbitrary SQL commands via the more parameter...
Sql injection
SQL injection vulnerability in shop.htm in PaymentProcessorScript.net PPScript allows remote attackers to execute arbitrary SQL commands via the cid parameter...
CVE-2009-4720
SQL injection vulnerability in cgi-bin/gnudip.cgi in GnuDIP 2.1.1 allows remote attackers to execute arbitrary SQL commands via the username parameter. NOTE: some of these details are obtained from third party information...
Sql injection
SQL injection vulnerability in the CheckLogin function in includes/functions.php in Limny 1.01, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the username parameter...
CVE-2009-4722
SQL injection vulnerability in the CheckLogin function in includes/functions.php in Limny 1.01, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the username parameter...
CVE-2009-4721
Multiple SQL injection vulnerabilities in Admin/index.asp in Andrews-Web A-W BannerAd 1.0 allow remote attackers to execute arbitrary SQL commands via the 1 User and 2 Password parameters. NOTE: some of these details are obtained from third party information...
Sql injection
SQL injection vulnerability in report.php in x10 Adult Media Script 1.7 allows remote attackers to execute arbitrary SQL commands via the id parameter...
Sql injection
SQL injection vulnerability in login.php in Allomani Audio & Video Library Songs & Clips version 2.7.0 allows remote attackers to execute arbitrary SQL commands via the username parameter in a login action...
Sql injection
SQL injection vulnerability in index.php in Discloser 0.0.4 rc2 allows remote attackers to execute arbitrary SQL commands via the more parameter...
CVE-2009-4731
SQL injection vulnerability in photos.php in Model Agency Manager PRO formerly Modeling Agency Content Management Script allows remote attackers to execute arbitrary SQL commands via the album parameter...
CVE-2009-4734
SQL injection vulnerability in login.php in Allomani Movies Library Movies & Clips 2.7.0 allows remote attackers to execute arbitrary SQL commands via the username parameter in a login action...
CVE-2009-4724
SQL injection vulnerability in shop.htm in PaymentProcessorScript.net PPScript allows remote attackers to execute arbitrary SQL commands via the cid parameter...
CVE-2009-4719
SQL injection vulnerability in index.php in Discloser 0.0.4 rc2 allows remote attackers to execute arbitrary SQL commands via the more parameter...
CVE-2009-4731
CVE-2009-4731 is a SQL injection vulnerability affecting the Photos.php component of Model Agency Manager PRO (previously Modeling Agency Content Management Script). The underlying issue is improper handling of the album parameter, allowing remote attackers to manipulate SQL queries and potential...
CVE-2009-4728
CVE-2009-4728 affects the administrative interface of the application “Questions Answered 1.3.” The vulnerability is a SQL injection via the username parameter that could allow an attacker to execute arbitrary SQL commands on the database. Documents do not specify exact vulnerable versions beyond...
CVE-2009-4730
SQL injection vulnerability in report.php in x10 Adult Media Script 1.7 allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2009-4721
CVE-2009-4721 affects Andrews-Web (A-W) BannerAd 1.0, with multiple SQL injection vulnerabilities in Admin/index.asp that allow remote attackers to execute arbitrary SQL commands via the (1) User and (2) Password parameters. The root cause is unsafely constructed SQL queries in that page, enablin...
Manage Engine Service Desk Plus 7.6 woID SQL Injection Vulnerability
Exploit for jsp platform in category web applications ==================================================================== Manage Engine Service Desk Plus 7.6 woID SQL Injection Vulnerability ==================================================================== Advisory Name: SQL injection in Mana...