Lucene search
K

13188 matches found

CVE
CVE
added 2009/09/15 10:0 p.m.67 views

CVE-2009-3165

CVE-2009-3165 is a SQL injection vulnerability affecting Bugzilla 2.23.4–3.0.8, 3.1.1–3.2.4, and 3.3.1–3.4.1 via Bug.create WebService parameters, enabling remote arbitrary SQL execution. Connected advisories confirm impact and remediation guidance, notably Gentoo GLSA 2010-06-19 recommending upg...

7.5CVSS8AI score0.01393EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2009/09/15 9:30 p.m.18 views

CVE-2009-3184

Multiple SQL injection vulnerabilities in index.php in Pirates of The Caribbean in the E-Gold Game Series allow remote attackers to execute arbitrary SQL commands via the 1 x and 2 y parameters...

7.5CVSS8.5AI score0.01133EPSS
Exploits1References3
NVD
NVD
added 2009/09/15 9:30 p.m.22 views

CVE-2009-3190

Multiple SQL injection vulnerabilities in PAD Site Scripts 3.6 allow remote attackers to execute arbitrary SQL commands via the 1 search parameter to list.php and 2 cat parameter to rss.php...

7.5CVSS8.5AI score0.00928EPSS
Exploits0References2
Prion
Prion
added 2009/09/15 9:30 p.m.13 views

Sql injection

Multiple SQL injection vulnerabilities in index.php in Pirates of The Caribbean in the E-Gold Game Series allow remote attackers to execute arbitrary SQL commands via the 1 x and 2 y parameters...

7.5CVSS9.2AI score0.01133EPSS
Exploits1References3
Prion
Prion
added 2009/09/15 9:30 p.m.13 views

Sql injection

Multiple SQL injection vulnerabilities in PAD Site Scripts 3.6 allow remote attackers to execute arbitrary SQL commands via the 1 search parameter to list.php and 2 cat parameter to rss.php...

7.5CVSS9.3AI score0.00928EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2009/09/15 9:30 p.m.10 views

Sql injection

SQL injection vulnerability in the DigiFolio comdigifolio component 1.52 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a project action to index.php...

7.5CVSS9AI score0.00923EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2009/09/15 9:0 p.m.25 views

CVE-2009-3190

Multiple SQL injection vulnerabilities in PAD Site Scripts 3.6 allow remote attackers to execute arbitrary SQL commands via the 1 search parameter to list.php and 2 cat parameter to rss.php...

8.5AI score0.00928EPSS
Exploits0References2
CVE
CVE
added 2009/09/15 9:0 p.m.50 views

CVE-2009-3184

CVE-2009-3184 describes multiple SQL injection vulnerabilities in the Pirates of The Caribbean component of the E-Gold Game Series, exploitable via the (1) x and (2) y parameters in index.php. The Red Hat and NVD/NVD-derived records confirm remote SQL command execution possibilities, with no publ...

7.5CVSS8.5AI score0.01133EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2009/09/15 9:0 p.m.24 views

CVE-2009-3184

Multiple SQL injection vulnerabilities in index.php in Pirates of The Caribbean in the E-Gold Game Series allow remote attackers to execute arbitrary SQL commands via the 1 x and 2 y parameters...

8.5AI score0.01133EPSS
Exploits1References3
Prion
Prion
added 2009/09/11 8:30 p.m.9 views

Sql injection

Multiple SQL injection vulnerabilities in Model Agency Manager PRO formerly Modeling Agency Content Management Script allow remote attackers to execute arbitrary SQL commands via the userid parameter to 1 view.php, 2 photos.php, and 3 motm.php; and the 4 id parameter to forummessage.php...

7.5CVSS9.3AI score0.00923EPSS
Exploits0References1
CVE
CVE
added 2009/09/11 8:0 p.m.40 views

CVE-2009-3175

Model Agency Manager PRO (formerly Modeling Agency Content Management Script) has multiple SQL injection vulnerabilities. The flaws allow remote attackers to execute arbitrary SQL via the user_id parameter to view.php, photos.php, and motm.php, and via the id parameter to forum_message.php. Root ...

7.5CVSS8.8AI score0.00923EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2009/09/11 4:30 p.m.11 views

Sql injection

Multiple SQL injection vulnerabilities in OneCMS 2.4, and possibly earlier, allow remote attackers to execute arbitrary SQL commands via the 1 username parameter $usernameb variable to alogin.php or 2 user parameter to staff.php...

6.8CVSS9.3AI score0.01768EPSS
Exploits1References10Affected Software1
Prion
Prion
added 2009/09/10 6:30 p.m.14 views

Sql injection

SQL injection vulnerability in index.php in Multi Website 1.5 allows remote attackers to execute arbitrary SQL commands via the Browse parameter in a vote action...

7.5CVSS9.1AI score0.00999EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2009/09/10 6:30 p.m.18 views

CVE-2009-3150

SQL injection vulnerability in index.php in Multi Website 1.5 allows remote attackers to execute arbitrary SQL commands via the Browse parameter in a vote action...

7.5CVSS8.3AI score0.00999EPSS
Exploits0References3
NVD
NVD
added 2009/09/10 6:30 p.m.12 views

CVE-2009-3148

Multiple SQL injection vulnerabilities in PortalXP Teacher Edition 1.2 allow remote attackers to execute arbitrary SQL commands via the id parameter to 1 calendar.php, 2 news.php, and 3 links.php; and the 4 assignmentid parameter to assignments.php...

7.5CVSS8.5AI score0.00947EPSS
Exploits0References1
Prion
Prion
added 2009/09/09 10:30 p.m.19 views

Sql injection

SQL injection vulnerability in screen.php in the Download System mSF dsmsf module for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the viewid parameter...

7.5CVSS9.1AI score0.00993EPSS
Exploits1References3
Prion
Prion
added 2009/09/09 10:30 p.m.14 views

Sql injection

SQL injection vulnerability in mod/poll/comment.php in the vote module in Danneo CMS 0.5.2 and earlier allows remote attackers to execute arbitrary SQL commands via the comtext parameter, in conjunction with crafted comname and comtitle parameters, in a poll action to index.php, related to...

7.5CVSS9AI score0.01163EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2009/09/09 10:30 p.m.14 views

CVE-2009-3116

SQL injection vulnerability in index.php in Uiga Church Portal allows remote attackers to execute arbitrary SQL commands via the year parameter in a calendar action...

7.5CVSS8.3AI score0.01002EPSS
Exploits1References5
NVD
NVD
added 2009/09/09 10:30 p.m.10 views

CVE-2009-3118

SQL injection vulnerability in mod/poll/comment.php in the vote module in Danneo CMS 0.5.2 and earlier allows remote attackers to execute arbitrary SQL commands via the comtext parameter, in conjunction with crafted comname and comtitle parameters, in a poll action to index.php, related to...

7.5CVSS8.3AI score0.01163EPSS
Exploits1References3
Prion
Prion
added 2009/09/09 10:30 p.m.11 views

Sql injection

SQL injection vulnerability in index.php in Uiga Church Portal allows remote attackers to execute arbitrary SQL commands via the year parameter in a calendar action...

7.5CVSS9.1AI score0.01002EPSS
Exploits1References5
Rows per page
Query Builder