13188 matches found
CVE-2009-2590
SQL injection vulnerability in showcategory.php in Hutscripts PHP Website Script allows remote attackers to execute arbitrary SQL commands via the cid parameter...
CVE-2009-2592
SQL injection vulnerability in guestbook.php in PHPJunkYard GBook 1.6 allows remote attackers to execute arbitrary SQL commands via the mesid parameter...
Sql injection
SQL injection vulnerability in showcategory.php in Hutscripts PHP Website Script allows remote attackers to execute arbitrary SQL commands via the cid parameter...
Sql injection
SQL injection vulnerability in the MyAnnonces module for E-Xoopport 3.1 allows remote attackers to execute arbitrary SQL commands via the lid parameter in a viewannonces action to index.php...
CVE-2009-2590
SQL injection vulnerability in showcategory.php in Hutscripts PHP Website Script allows remote attackers to execute arbitrary SQL commands via the cid parameter...
CVE-2009-2592
SQL injection vulnerability in guestbook.php in PHPJunkYard GBook 1.6 allows remote attackers to execute arbitrary SQL commands via the mesid parameter...
CVE-2008-6875
SQL injection vulnerability in default.asp in ASP Product Catalog allows remote attackers to execute arbitrary SQL commands via the cid parameter, a different vector than CVE-2007-5220...
CVE-2009-2585
SQL injection vulnerability in index.php in Mlffat 2.2 allows remote attackers to execute arbitrary SQL commands via a member cookie in an account editprofile action, a different vector than CVE-2009-1731...
CVE-2009-2593
SQL injection vulnerability in censura.php in Censura 1.16.04 allows remote attackers to execute arbitrary SQL commands via the itemid parameter in a details action...
Sql injection
SQL injection vulnerability in Active Web Mail 4.0 allows remote attackers to execute arbitrary SQL commands via the TabOpenQuickTab1 parameter to 1 popaccounts.aspx, 2 addressbook.aspx, and 3 emails.aspx...
CVE-2009-2554
SQL injection vulnerability in the search method in jobline.class.php in Jobline comjobline 1.1.2.2, 1.3.1, and possibly earlier versions, a component for Joomla!, allows remote attackers to execute arbitrary SQL commands via the search parameter in a results action to index.php, which invokes th...
CVE-2009-2545
SQL injection vulnerability in Advanced Electron Forum AEF 1.x, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the filename in an uploaded attachment. NOTE: the provenance of this information is unknown; the details are obtained solely from third...
CVE-2009-2545
SQL injection vulnerability in Advanced Electron Forum AEF 1.x, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the filename in an uploaded attachment. NOTE: the provenance of this information is unknown; the details are obtained solely from third...
NullLogic Groupware <= 1.2.7 Multiple Vulnerabilities
NullLogic Groupware is prone to multiple vulnerabilities. Copyright C 2009 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you...
Sql injection
SQL injection vulnerability in modules.php in the CurrentIssue module for PHP-Nuke allows remote attackers to execute arbitrary SQL commands via the id parameter in a summary action...
Sql injection
SQL injection vulnerability in content.php in Scripts For Sites SFS EZ Career allows remote attackers to execute arbitrary SQL commands via the topic parameter...
CVE-2008-6867
SQL injection vulnerability in content.php in Scripts For Sites SFS EZ Career allows remote attackers to execute arbitrary SQL commands via the topic parameter...
CVE-2008-6867
SQL injection vulnerability in content.php in Scripts For Sites SFS EZ Career allows remote attackers to execute arbitrary SQL commands via the topic parameter...
CVE-2009-2439
Multiple SQL injection vulnerabilities in Web Development House Alibaba Clone allow remote attackers to execute arbitrary SQL commands via the 1 IndustryID parameter to category.php and the 2 SellerID parameter to supplier/viewcontactdetails.php. NOTE: this is a product that was developed by a...
Sql injection
SQL injection vulnerability in page.php in Online Dating Software MyPHPDating 1.0 allows remote attackers to execute arbitrary SQL commands via the pageid parameter...