Lucene search
K

13187 matches found

NVD
NVD
added 2010/02/25 8:30 p.m.19 views

CVE-2010-0710

SQL injection vulnerability in default.asp in ASPCode CMS 1.5.8, 2.0.0 Build 103, and possibly other versions, allows remote attackers to execute arbitrary SQL commands via the newsid parameter when the sec parameter is 26. NOTE: the provenance of this information is unknown; the details are...

7.5CVSS8.1AI score0.01001EPSS
Exploits0References2
Prion
Prion
added 2010/02/25 8:30 p.m.20 views

Sql injection

SQL injection vulnerability in default.asp in ASPCode CMS 1.5.8, 2.0.0 Build 103, and possibly other versions, allows remote attackers to execute arbitrary SQL commands via the newsid parameter when the sec parameter is 26. NOTE: the provenance of this information is unknown; the details are...

7.5CVSS8.8AI score0.01001EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2010/02/25 8:0 p.m.25 views

CVE-2010-0710

SQL injection vulnerability in default.asp in ASPCode CMS 1.5.8, 2.0.0 Build 103, and possibly other versions, allows remote attackers to execute arbitrary SQL commands via the newsid parameter when the sec parameter is 26. NOTE: the provenance of this information is unknown; the details are...

8.1AI score0.01001EPSS
Exploits0References2
NVD
NVD
added 2010/02/23 8:30 p.m.17 views

CVE-2010-0702

SQL injection vulnerability in cisco/services/PhonecDirectory.php in Fonality Trixbox 2.2.4 allows remote attackers to execute arbitrary SQL commands via the ID parameter...

7.5CVSS8.4AI score0.04095EPSS
Exploits1References4
Prion
Prion
added 2010/02/23 8:30 p.m.16 views

Sql injection

SQL injection vulnerability in the Management Center for Cisco Security Agents 5.1 before 5.1.0.117, 5.2 before 5.2.0.296, and 6.0 before 6.0.1.132 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors...

6.5CVSS8.5AI score0.01614EPSS
Exploits0References7Affected Software1
Prion
Prion
added 2010/02/23 8:30 p.m.10 views

Sql injection

SQL injection vulnerability in ForceChangePassword.jsp in Newgen Software OmniDocs allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

7.5CVSS9.1AI score0.01161EPSS
Exploits1References6
Prion
Prion
added 2010/02/23 8:30 p.m.12 views

Sql injection

SQL injection vulnerability in cisco/services/PhonecDirectory.php in Fonality Trixbox 2.2.4 allows remote attackers to execute arbitrary SQL commands via the ID parameter...

7.5CVSS9AI score0.04095EPSS
Exploits1References4Affected Software1
Prion
Prion
added 2010/02/23 8:30 p.m.15 views

Sql injection

SQL injection vulnerability in backoffice/login.asp in Dynamicsoft WSC CMS 2.2 allows remote attackers to execute arbitrary SQL commands via the Password parameter. NOTE: some of these details are obtained from third party information...

7.5CVSS9AI score0.01011EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2010/02/23 8:0 p.m.44 views

CVE-2010-0698

CVE-2010-0698 affects Dynamicsoft WSC CMS 2.2. The vulnerability is an SQL injection in backoffice/login.asp, exploitable by remote attackers via the Password parameter. Impact is partial confidentiality, integrity, and availability. The provided documents do not specify a patch or remediation; n...

7.5CVSS8.7AI score0.01011EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2010/02/23 8:0 p.m.19 views

CVE-2010-0702

SQL injection vulnerability in cisco/services/PhonecDirectory.php in Fonality Trixbox 2.2.4 allows remote attackers to execute arbitrary SQL commands via the ID parameter...

8.4AI score0.04095EPSS
Exploits1References4
Prion
Prion
added 2010/02/23 6:30 p.m.11 views

Sql injection

SQL injection vulnerability in products.php in CommodityRentals Trade Manager Script allows remote attackers to execute arbitrary SQL commands via the cid parameter...

7.5CVSS9.1AI score0.01003EPSS
Exploits1References5
NVD
NVD
added 2010/02/23 6:30 p.m.18 views

CVE-2010-0690

SQL injection vulnerability in index.php in CommodityRentals Video Games Rentals allows remote attackers to execute arbitrary SQL commands via the pfid parameter in a catalog action...

7.5CVSS8.3AI score0.01003EPSS
Exploits1References5
NVD
NVD
added 2010/02/23 6:30 p.m.17 views

CVE-2010-0693

SQL injection vulnerability in products.php in CommodityRentals Trade Manager Script allows remote attackers to execute arbitrary SQL commands via the cid parameter...

7.5CVSS8.4AI score0.01003EPSS
Exploits1References5
NVD
NVD
added 2010/02/23 6:30 p.m.16 views

CVE-2010-0694

SQL injection vulnerability in the PerchaGallery comperchagallery component before 1.5b for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in an editunidad action to index.php...

7.5CVSS8.4AI score0.00997EPSS
Exploits1References5
Prion
Prion
added 2010/02/23 6:30 p.m.11 views

Sql injection

SQL injection vulnerability in the PerchaGallery comperchagallery component before 1.5b for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in an editunidad action to index.php...

7.5CVSS9.1AI score0.00997EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2010/02/23 6:0 p.m.41 views

CVE-2010-0691

The vulnerability CVE-2010-0691 affects JTL-Shop 2, specifically the parameter s in the script druckansicht.php, where a SQL injection flaw allows remote attackers to execute arbitrary SQL commands. Root cause: unsafely interpolated input in the database query leads to injection. Impact per CVSS:...

7.5CVSS8.7AI score0.00961EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2010/02/22 9:30 p.m.19 views

CVE-2010-0677

SQL injection vulnerability in index.php in Katalog Stron Hurricane 1.3.5, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the get parameter...

7.5CVSS8.4AI score0.00973EPSS
Exploits1References4
Prion
Prion
added 2010/02/22 9:30 p.m.16 views

Sql injection

SQL injection vulnerability in index.php in Katalog Stron Hurricane 1.3.5, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the get parameter...

7.5CVSS9.2AI score0.00973EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2010/02/22 9:0 p.m.25 views

CVE-2010-0677

SQL injection vulnerability in index.php in Katalog Stron Hurricane 1.3.5, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the get parameter...

8.4AI score0.00973EPSS
Exploits1References4
NVD
NVD
added 2010/02/22 8:30 p.m.14 views

CVE-2010-0672

SQL injection vulnerability in index.php in WSN Guest 1.02 allows remote attackers to execute arbitrary SQL commands via the orderlinks parameter...

7.5CVSS8.4AI score0.00975EPSS
Exploits1References4
Rows per page
Query Builder