Lucene search
K

13188 matches found

NVD
NVD
added 2009/09/24 4:30 p.m.17 views

CVE-2009-3349

SQL injection vulnerability in Datavore Gyro 5.0 allows remote attackers to execute arbitrary SQL commands via the cid parameter in a cat action to the home component...

7.5CVSS8.3AI score0.01839EPSS
Exploits0References2
NVD
NVD
added 2009/09/24 4:30 p.m.25 views

CVE-2009-3337

SQL injection vulnerability in the Freetag serendipityeventfreetag plugin before 3.09 for Serendipity S9Y allows remote attackers to execute arbitrary SQL commands via an unspecified parameter associated with Meta keywords in a blog entry...

7.5CVSS8.4AI score0.01404EPSS
Exploits0References3
NVD
NVD
added 2009/09/24 4:30 p.m.18 views

CVE-2009-3335

SQL injection vulnerability in the TurtuShout component 0.11 for Joomla! allows remote attackers to execute arbitrary SQL commands via the Name field...

7.5CVSS8.4AI score0.00928EPSS
Exploits0References2
NVD
NVD
added 2009/09/24 4:30 p.m.15 views

CVE-2009-3336

SQL injection vulnerability in auctiondetails.php in PHP Pro Bid allows remote attackers to execute arbitrary SQL commands via the auctionid parameter...

7.5CVSS8.4AI score0.00961EPSS
Exploits1References3
Prion
Prion
added 2009/09/24 4:30 p.m.20 views

Sql injection

Multiple SQL injection vulnerabilities in the Hotel Booking Reservation System aka HBS or comhbssearch component for Joomla! allow remote attackers to execute arbitrary SQL commands via the 1 hid, 2 id, and 3 rid parameters to longDesc.php, and the hid parameter to 4 detail.php, 5 detail1.php, 6...

7.5CVSS8.9AI score0.01024EPSS
Exploits4References5
Prion
Prion
added 2009/09/24 4:30 p.m.16 views

Sql injection

SQL injection vulnerability in Datavore Gyro 5.0 allows remote attackers to execute arbitrary SQL commands via the cid parameter in a cat action to the home component...

7.5CVSS9.1AI score0.01839EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2009/09/24 4:30 p.m.16 views

Sql injection

SQL injection vulnerability in details.asp in HotWeb Rentals allows remote attackers to execute arbitrary SQL commands via the PropId parameter...

7.5CVSS9.1AI score0.00928EPSS
Exploits0References2
Prion
Prion
added 2009/09/24 4:30 p.m.14 views

Sql injection

SQL injection vulnerability in index.php in Image voting 1.0 allows remote attackers to execute arbitrary SQL commands via the show parameter...

7.5CVSS9.1AI score0.00999EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2009/09/24 4:30 p.m.15 views

Sql injection

SQL injection vulnerability in frontend/assets/ajax/checkusername.php in the AlphaUserPoints comalphauserpoints component 1.5.2 for Joomla! allows remote attackers to execute arbitrary SQL commands via the username2points parameter...

7.5CVSS9.1AI score0.00993EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2009/09/24 4:30 p.m.13 views

Sql injection

SQL injection vulnerability in index.php in PHP-IPNMonitor allows remote attackers to execute arbitrary SQL commands via the maincatid parameter...

7.5CVSS9.1AI score0.00923EPSS
Exploits0References1
Prion
Prion
added 2009/09/24 4:30 p.m.11 views

Sql injection

SQL injection vulnerability in auctiondetails.php in PHP Pro Bid allows remote attackers to execute arbitrary SQL commands via the auctionid parameter...

7.5CVSS9.2AI score0.00961EPSS
Exploits1References3
Prion
Prion
added 2009/09/24 4:30 p.m.14 views

Sql injection

SQL injection vulnerability in the Freetag serendipityeventfreetag plugin before 3.09 for Serendipity S9Y allows remote attackers to execute arbitrary SQL commands via an unspecified parameter associated with Meta keywords in a blog entry...

7.5CVSS9.1AI score0.01404EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2009/09/24 4:0 p.m.45 views

CVE-2009-3356

The CVE-2009-3356 entry describes a SQL injection in Image voting 1.0, affecting index.php via the show parameter, enabling remote execution of arbitrary SQL commands. The vulnerability details provided are limited to the input parameter and the affected file/module; no remediation guidance or ex...

7.5CVSS8.4AI score0.00999EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2009/09/24 4:0 p.m.20 views

CVE-2009-3356

SQL injection vulnerability in index.php in Image voting 1.0 allows remote attackers to execute arbitrary SQL commands via the show parameter...

8.4AI score0.00999EPSS
Exploits0References3
CVE
CVE
added 2009/09/24 4:0 p.m.50 views

CVE-2009-3343

CVE-2009-3343 : A SQL injection vulnerability in details.asp of HotWeb Rentals allows remote attackers to inject via the PropId parameter and execute arbitrary SQL commands. This is a remote, unsanitized-input issue; exploitation is mentioned in Exploit-DB (exploit ID 9675), but detailed exploit ...

7.5CVSS8.4AI score0.00928EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2009/09/24 4:0 p.m.21 views

CVE-2009-3336

SQL injection vulnerability in auctiondetails.php in PHP Pro Bid allows remote attackers to execute arbitrary SQL commands via the auctionid parameter...

8.4AI score0.00961EPSS
Exploits1References3
NVD
NVD
added 2009/09/23 12:8 p.m.15 views

CVE-2009-3326

SQL injection vulnerability in index.php in CMScontrol Content Management System 7.x allows remote attackers to execute arbitrary SQL commands via the idmenu parameter...

7.5CVSS8.4AI score0.00923EPSS
Exploits0References1
NVD
NVD
added 2009/09/23 12:8 p.m.13 views

CVE-2009-3313

Multiple SQL injection vulnerabilities in FMyClone 2.3 allow remote attackers to execute arbitrary SQL commands via the comp parameter to 1 index.php and 2 editComments.php, and 3 allow remote authenticated administrators to execute arbitrary SQL commands via the id parameter in a comment action ...

6.5CVSS8.2AI score0.01084EPSS
Exploits0References7
NVD
NVD
added 2009/09/23 12:8 p.m.15 views

CVE-2009-3327

Multiple SQL injection vulnerabilities in WX-Guestbook 1.1.208 allow remote attackers to execute arbitrary SQL commands via the 1 QUERY parameter to search.php and 2 USERNAME parameter to login.php. NOTE: some of these details are obtained from third party information...

7.5CVSS8.5AI score0.00928EPSS
Exploits0References2
NVD
NVD
added 2009/09/23 12:8 p.m.19 views

CVE-2009-3308

SQL injection vulnerability in show-cat.php in FanUpdate 2.2.1 allows remote attackers to execute arbitrary SQL commands via the listingid parameter...

7.5CVSS8.4AI score0.01011EPSS
Exploits0References3
Rows per page
Query Builder