13188 matches found
Sql injection
SQL injection vulnerability in category.php in Snow Hall Silurus System 1.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter...
CVE-2009-3118
SQL injection vulnerability in mod/poll/comment.php in the vote module in Danneo CMS 0.5.2 and earlier allows remote attackers to execute arbitrary SQL commands via the comtext parameter, in conjunction with crafted comname and comtitle parameters, in a poll action to index.php, related to...
Sql injection
SQL injection vulnerability in Jabode horoscope extension comjabode for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a sign task to index.php...
Sql injection
SQL injection vulnerability in index.php in Uiga Church Portal allows remote attackers to execute arbitrary SQL commands via the month parameter in a calendar action. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
Sql injection
SQL injection vulnerability in wcategory.php in Snow Hall Silurus System 1.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2009-3081
SQL injection vulnerability in index.php in Uiga Church Portal allows remote attackers to execute arbitrary SQL commands via the month parameter in a calendar action. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
CVE-2009-3081
CVE-2009-3081 affects the Uiga Church Portal (index.php). The vulnerability is a SQL injection in the calendar action, exploitable via the month parameter, enabling remote attackers to execute arbitrary SQL commands. Root cause and exact affected version details are not provided in the initial do...
CVE-2009-3082
The vulnerability CVE-2009-3082 affects Snow Hall Silurus System 1.0, specifically the wcategory.php component. The issue is described as a SQL injection via the ID parameter, enabling remote attackers to execute arbitrary SQL commands. The report does not provide details on affected versions bey...
Sql injection
SQL injection vulnerability in messagebox.php in OSI Codes PHP Live! 3.3 allows remote attackers to execute arbitrary SQL commands via the deptid parameter...
Sql injection
Multiple SQL injection vulnerabilities in Joker Board aka JBoard 2.0 and earlier allow remote attackers to execute arbitrary SQL commands via 1 core/select.php or 2 the city parameter to topadd.inc.php, reachable through sboard.php...
Sql injection
SQL injection vulnerability in lesson.php in Alqatari Q R Script 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: some of these details are obtained from third party information...
Sql injection
SQL injection vulnerability in the autoDetectRegion function in doceboCore/lib/lib.regset.php in Docebo 3.5.0.3 and earlier allows remote attackers to execute arbitrary SQL commands via the Accept-Language HTTP header. NOTE: this can be leveraged to execute arbitrary PHP code using the INTO...
Sql injection
SQL injection vulnerability in machine.php in Open Computer and Software OCS Inventory NG 1.02.1 allows remote attackers to execute arbitrary SQL commands via the systemid parameter, a different vector than CVE-2009-3040...
CVE-2009-3042
SQL injection vulnerability in machine.php in Open Computer and Software OCS Inventory NG 1.02.1 allows remote attackers to execute arbitrary SQL commands via the systemid parameter, a different vector than CVE-2009-3040...
CVE-2009-3042
SQL injection vulnerability in machine.php in Open Computer and Software OCS Inventory NG 1.02.1 allows remote attackers to execute arbitrary SQL commands via the systemid parameter, a different vector than CVE-2009-3040...
CVE-2008-7145
Multiple SQL injection vulnerabilities in index.php in CoronaMatrix phpAddressBook 2.0 allow remote attackers to execute arbitrary SQL commands via the 1 username or 2 parameters...
Sql injection
Multiple SQL injection vulnerabilities in index.php in CoronaMatrix phpAddressBook 2.0 allow remote attackers to execute arbitrary SQL commands via the 1 username or 2 parameters...
Sql injection
SQL injection vulnerability in memberssearch.php in iFusion Services iFdate 2.0.3 and earlier allows remote attackers to execute arbitrary SQL commands via the name field...
Sql injection
SQL injection vulnerability in item.php in WeBid auction script 0.5.4 allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2008-7119
SQL injection vulnerability in item.php in WeBid auction script 0.5.4 allows remote attackers to execute arbitrary SQL commands via the id parameter...