13188 matches found
CVE-2009-3514
Multiple SQL injection vulnerabilities in d.net CMS allow remote attackers to execute arbitrary SQL commands via 1 the page parameter to index.php; and allow remote authenticated administrators to execute arbitrary SQL commands via the 2 editid and 3 p parameter in a news action to...
Sql injection
Multiple SQL injection vulnerabilities in d.net CMS allow remote attackers to execute arbitrary SQL commands via 1 the page parameter to index.php; and allow remote authenticated administrators to execute arbitrary SQL commands via the 2 editid and 3 p parameter in a news action to...
Sql injection
SQL injection vulnerability in viewListing.php in linkSpheric 0.74 Beta 6 allows remote attackers to execute arbitrary SQL commands via the listID parameter...
CVE-2009-3514
Multiple SQL injection vulnerabilities in d.net CMS allow remote attackers to execute arbitrary SQL commands via 1 the page parameter to index.php; and allow remote authenticated administrators to execute arbitrary SQL commands via the 2 editid and 3 p parameter in a news action to...
CVE-2009-3510
SQL injection vulnerability in viewListing.php in linkSpheric 0.74 Beta 6 allows remote attackers to execute arbitrary SQL commands via the listID parameter...
Sql injection
SQL injection vulnerability in music.php in BPowerHouse BPMusic 1.0 allows remote attackers to execute arbitrary SQL commands via the musicid parameter...
Sql injection
SQL injection vulnerability in offersbuy.php in Alibaba Clone 3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter...
Sql injection
Multiple SQL injection vulnerabilities in index.php in T-HTB Manager 0.5, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via 1 the id parameter in a deletecategory action, 2 the name parameter in an updatecategory action, and other vectors...
Sql injection
SQL injection vulnerability in php/updatearticlehits.php in HBcms 1.7 allows remote attackers to execute arbitrary SQL commands via the articleid parameter...
Sql injection
SQL injection vulnerability in viewlisting.php in Vastal I-Tech Agent Zone aka The Real Estate Script allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2009-3498
SQL injection vulnerability in php/updatearticlehits.php in HBcms 1.7 allows remote attackers to execute arbitrary SQL commands via the articleid parameter...
CVE-2009-3504
SQL injection vulnerability in offersbuy.php in Alibaba Clone 3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter...
Sql injection
SQL injection vulnerability in the Kinfusion SportFusion comsportfusion component 0.2.2 through 0.2.3 for Joomla! allows remote attackers to execute arbitrary SQL commands via the cid0 parameter in a teamdetail action to index.php...
Sql injection
SQL injection vulnerability in employee.aspx in BPowerHouse BPLawyerCaseDocuments 1.0 allows remote attackers to execute arbitrary SQL commands via the cat parameter...
Sql injection
SQL injection vulnerability in viewmag.php in Vastal I-Tech DVD Zone allows remote attackers to execute arbitrary SQL commands via the magid parameter, a different vector than CVE-2008-4465...
Sql injection
SQL injection vulnerability in students.php in BPowerHouse BPStudents 1.0 allows remote attackers to execute arbitrary SQL commands via the test parameter in a preview action...
Sql injection
Multiple SQL injection vulnerabilities in search.aspx in BPowerHouse BPHolidayLettings 1.0 allow remote attackers to execute arbitrary SQL commands via the 1 rid and 2 tid parameters...
Sql injection
SQL injection vulnerability in viewnews.php in Vastal I-Tech MMORPG Zone allows remote attackers to execute arbitrary SQL commands via the newsid parameter. NOTE: the gameid vector is already covered by CVE-2008-4460...
CVE-2009-3498
SQL injection vulnerability in php/updatearticlehits.php in HBcms 1.7 allows remote attackers to execute arbitrary SQL commands via the articleid parameter...
CVE-2009-3504
SQL injection vulnerability in offersbuy.php in Alibaba Clone 3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter...