13188 matches found
CVE-2009-2915
SQL injection vulnerability in 2flygift.php in 2FLY Gift Delivery System 6.0 allows remote attackers to execute arbitrary SQL commands via the gameid parameter in a content action...
CVE-2009-2921
Multiple SQL injection vulnerabilities in login.php in MOC Designs PHP News 1.1 allow remote attackers to execute arbitrary SQL commands via the 1 newsuser parameter User field and 2 newspassword parameter Password field...
CVE-2009-2885
SQL injection vulnerability in bios.php in PHP Scripts Now World's Tallest Buildings allows remote attackers to execute arbitrary SQL commands via the rank parameter...
CVE-2009-2883
SQL injection vulnerability in admin/login.php in SaphpLesson 4.0, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the cpusername parameter, related to an error in the CleanVar function in includes/functions.php...
CVE-2009-2881
Multiple SQL injection vulnerabilities in Basilic 1.5.13 allow remote attackers to execute arbitrary SQL commands via the idAuthor parameter to 1 index.php and possibly 2 allpubs.php in publications/...
Sql injection
Multiple SQL injection vulnerabilities in Ebay Clone 2009 allow remote attackers to execute arbitrary SQL commands via the 1 id parameter to productdesc.php, and the cid parameter to 2 showcategory.php and 3 gallery.php...
Sql injection
SQL injection vulnerability in list.php in PHP Scripts Now Riddles allows remote attackers to execute arbitrary SQL commands via the catid parameter...
Sql injection
Multiple SQL injection vulnerabilities in Basilic 1.5.13 allow remote attackers to execute arbitrary SQL commands via the idAuthor parameter to 1 index.php and possibly 2 allpubs.php in publications/...
Sql injection
SQL injection vulnerability in bios.php in PHP Scripts Now World's Tallest Buildings allows remote attackers to execute arbitrary SQL commands via the rank parameter...
Sql injection
SQL injection vulnerability in index.php in PHP Scripts Now Hangman allows remote attackers to execute arbitrary SQL commands via the n parameter...
Sql injection
SQL injection vulnerability in admin/login.php in SaphpLesson 4.0, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the cpusername parameter, related to an error in the CleanVar function in includes/functions.php...
Sql injection
Multiple SQL injection vulnerabilities in header.php in Scripteen Free Image Hosting Script 2.3 allow remote attackers to execute arbitrary SQL commands via a 1 cookid or 2 cookgid cookie...
CVE-2009-2881
Multiple SQL injection vulnerabilities in Basilic 1.5.13 allow remote attackers to execute arbitrary SQL commands via the idAuthor parameter to 1 index.php and possibly 2 allpubs.php in publications/...
CVE-2009-2892
Multiple SQL injection vulnerabilities in header.php in Scripteen Free Image Hosting Script 2.3 allow remote attackers to execute arbitrary SQL commands via a 1 cookid or 2 cookgid cookie...
CVE-2009-2883
SQL injection vulnerability in admin/login.php in SaphpLesson 4.0, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the cpusername parameter, related to an error in the CleanVar function in includes/functions.php...
CVE-2009-2892
CVE-2009-2892 affects Scripteen Free Image Hosting Script 2.3, where header.php is vulnerable to SQL injection via the cookid or cookgid cookies. Remote attackers could potentially execute arbitrary SQL commands. The NVD entry lists a base score of 7.5 (HIGH) with network attack vector and no aut...
CVE-2009-2891
SQL injection vulnerability in list.php in PHP Scripts Now Riddles allows remote attackers to execute arbitrary SQL commands via the catid parameter...
CVE-2008-6989
SQL injection vulnerability in gallery.php in Easy Photo Gallery aka Ezphotogallery 2.1 allows remote attackers to execute arbitrary SQL commands via the username parameter...
CVE-2008-6991
SQL injection vulnerability in public/page.php in Websens CMSbright allows remote attackers to execute arbitrary SQL commands via the idrubpage parameter...
Sql injection
Multiple SQL injection vulnerabilities in login.php in The Rat CMS Alpha 2 allow remote attackers to execute arbitrary SQL commands via the 1 userid and 2 password parameter...