Lucene search
K

13188 matches found

Prion
Prion
added 2009/09/18 8:30 p.m.11 views

Sql injection

SQL injection vulnerability in spnews.php in MyBuxScript PTC-BUX allows remote attackers to execute arbitrary SQL commands via the id parameter in an spnews action to the default URI. NOTE: some of these details are obtained from third party information...

7.5CVSS9AI score0.00993EPSS
Exploits1References4
Prion
Prion
added 2009/09/18 8:30 p.m.14 views

Sql injection

Multiple SQL injection vulnerabilities in news.php in Rock Band CMS 0.10 allow remote attackers to execute arbitrary SQL commands via the 1 year and 2 id parameters...

7.5CVSS9.3AI score0.01019EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2009/09/18 8:30 p.m.12 views

Sql injection

SQL injection vulnerability in RASH Quote Management System RQMS 1.2.2 and earlier, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the user parameter in an admin action to the default URI...

6.8CVSS9.1AI score0.01127EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2009/09/18 8:30 p.m.14 views

CVE-2009-3255

SQL injection vulnerability in RASH Quote Management System RQMS 1.2.2 and earlier, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the user parameter in an admin action to the default URI...

6.8CVSS8.4AI score0.01127EPSS
Exploits1References5
Cvelist
Cvelist
added 2009/09/18 8:0 p.m.18 views

CVE-2009-3252

Multiple SQL injection vulnerabilities in news.php in Rock Band CMS 0.10 allow remote attackers to execute arbitrary SQL commands via the 1 year and 2 id parameters...

8.5AI score0.01019EPSS
Exploits0References4
Cvelist
Cvelist
added 2009/09/18 8:0 p.m.25 views

CVE-2009-3246

SQL injection vulnerability in spnews.php in MyBuxScript PTC-BUX allows remote attackers to execute arbitrary SQL commands via the id parameter in an spnews action to the default URI. NOTE: some of these details are obtained from third party information...

8.4AI score0.00993EPSS
Exploits1References4
Prion
Prion
added 2009/09/16 7:30 p.m.11 views

Sql injection

SQL injection vulnerability in IXXO Cart Standalone before 3.9.6.1, and the IXXO Cart component for Joomla! 1.0.x, allows remote attackers to execute arbitrary SQL commands via the parent parameter...

7.5CVSS9.1AI score0.01061EPSS
Exploits1References5Affected Software1
Prion
Prion
added 2009/09/16 7:30 p.m.15 views

Sql injection

SQL injection vulnerability in control/login.php in AR Web Content Manager AWCM 2.1, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the username parameter...

6.8CVSS9.1AI score0.01975EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2009/09/16 7:30 p.m.10 views

Sql injection

SQL injection vulnerability in the admin module in iWiccle 1.01 allows remote attackers to execute arbitrary SQL commands via the memberid parameter in an edituser action to index.php...

7.5CVSS9.1AI score0.00947EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2009/09/16 5:30 p.m.9 views

CVE-2009-3205

SQL injection vulnerability in main.php in CBAuthority allows remote attackers to execute arbitrary SQL commands via the id parameter in a viewproduct action...

7.5CVSS8.3AI score0.00993EPSS
Exploits1References4
Prion
Prion
added 2009/09/16 5:30 p.m.9 views

Sql injection

Multiple SQL injection vulnerabilities in phpfreeBB 1.0 allow remote attackers to execute arbitrary SQL commands via the 1 id parameter to permalink.php and 2 year parameter to index.php...

7.5CVSS9.3AI score0.0095EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2009/09/16 5:30 p.m.16 views

CVE-2009-3208

Multiple SQL injection vulnerabilities in phpfreeBB 1.0 allow remote attackers to execute arbitrary SQL commands via the 1 id parameter to permalink.php and 2 year parameter to index.php...

7.5CVSS8.5AI score0.0095EPSS
Exploits1References2
NVD
NVD
added 2009/09/16 5:30 p.m.10 views

CVE-2009-3212

SQL injection vulnerability in VivaPrograms Infinity Script 2.x.x, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the username field...

6.8CVSS8.3AI score0.01019EPSS
Exploits1References2
Prion
Prion
added 2009/09/16 5:30 p.m.16 views

Sql injection

SQL injection vulnerability in VivaPrograms Infinity Script 2.x.x, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the username field...

6.8CVSS9.1AI score0.01019EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2009/09/16 5:0 p.m.25 views

CVE-2009-3203

SQL injection vulnerability in store.php in AJ Auction Pro OOPD 2.x allows remote attackers to execute arbitrary SQL commands via the id parameter...

8.4AI score0.00993EPSS
Exploits1References4
Cvelist
Cvelist
added 2009/09/16 5:0 p.m.23 views

CVE-2009-3209

SQL injection vulnerability in remove.php in PHP eMail Manager 3.3.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter...

8.4AI score0.00993EPSS
Exploits1References4
Cvelist
Cvelist
added 2009/09/16 5:0 p.m.19 views

CVE-2009-3212

SQL injection vulnerability in VivaPrograms Infinity Script 2.x.x, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the username field...

8.3AI score0.01019EPSS
Exploits1References2
Prion
Prion
added 2009/09/15 10:30 p.m.20 views

Sql injection

SQL injection vulnerability in the Bug.create WebService function in Bugzilla 2.23.4 through 3.0.8, 3.1.1 through 3.2.4, and 3.3.1 through 3.4.1 allows remote attackers to execute arbitrary SQL commands via unspecified parameters...

7.5CVSS8.6AI score0.01393EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2009/09/15 10:30 p.m.15 views

CVE-2009-3165

SQL injection vulnerability in the Bug.create WebService function in Bugzilla 2.23.4 through 3.0.8, 3.1.1 through 3.2.4, and 3.3.1 through 3.4.1 allows remote attackers to execute arbitrary SQL commands via unspecified parameters...

7.5CVSS8.2AI score0.01393EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2009/09/15 10:30 p.m.22 views

CVE-2009-3125

SQL injection vulnerability in the Bug.search WebService function in Bugzilla 3.3.2 through 3.4.1, and 3.5, allows remote attackers to execute arbitrary SQL commands via unspecified parameters...

7.5CVSS6AI score0.01393EPSS
Exploits1References1
Rows per page
Query Builder