Lucene search
K

28 matches found

Check Point Advisories
Check Point Advisories
added 2020/10/26 12:0 a.m.21 views

WordPress Loginizer Plugin SQL injection (CVE-2020-27615)

An SQL injection vulnerability exists in WordPress Loginizer Plugin. Successful exploitation of this vulnerability could result in the execution of arbitrary SQL statements on the affected system...

7.5CVSS3.2AI score0.53619EPSS
Exploits4
Veracode
Veracode
added 2020/02/25 5:4 a.m.25 views

SQL Injection

kylin-server-base is vulnerable to SQL injection. User input to some RESTful APIs is not validated and sanitized before being concatenated to SQL queries. This allows an attacker to inject and execute arbitrary SQL statements in the database...

8.8CVSS4.4AI score0.02667EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2020/01/15 4:9 p.m.23 views

CVE-2005-4891

Simple Machine Forum SMF versions 1.0.4 and earlier have an SQL injection vulnerability that allows remote attackers to inject arbitrary SQL statements...

9.8AI score0.01756EPSS
Exploits1References2
CNVD
CNVD
added 2018/06/13 12:0 a.m.2 views

Shipping System CMS SQL Injection Vulnerability

Shipping System CMS is a shipping management system. Shipping System CMS suffers from a SQL injection vulnerability. An attacker can exploit this vulnerability to execute arbitrary SQL statements...

8.4AI score
Exploits0References1
CNVD
CNVD
added 2017/07/19 12:0 a.m.2 views

DuomiCms 1.32 Command Execution Vulnerability in Frontend

DuomiCms is a specialized video-on-demand system. A command execution vulnerability exists in DuomiCms 1.32 frontend. An attacker can exploit this vulnerability to execute arbitrary php statements or system commands...

7.7AI score
Exploits0
Prion
Prion
added 2008/02/18 11:0 p.m.14 views

Design/Logic Flaw

MySQL Server 5.1.x before 5.1.23 and 6.0.x before 6.0.4 does not check the rights of the entity executing BINLOG, which allows remote authorized users to execute arbitrary BINLOG statements...

6.5CVSS7.5AI score0.01302EPSS
Exploits0References5Affected Software1
OpenVAS
OpenVAS
added 2005/11/03 12:0 a.m.19 views

WebCalendar SQL Injection (Nov 2005) - Active Check

The remote installation of WebCalendar may allow an attacker to cause an SQL Injection vulnerability in the program allowing an attacker to cause the program to execute arbitrary SQL statements. SPDX-FileCopyrightText: 2004 Noam Rathaus Some text descriptions might be excerpted from a referenced...

7.5CVSS8AI score0.01765EPSS
Exploits4References1
Tenable Nessus
Tenable Nessus
added 2004/09/28 12:0 a.m.40 views

PD9 MegaBBS Multiple Vulnerabilities

The remote host is running MegaBBS, a web-based bulletin board system written in ASP. The remote version of this software is vulnerable to a SQL injection attack due to a lack of sanitization of user-supplied input. An attacker may exploit this flaw to issue arbitrary statements in the remote...

6.1AI score
Exploits0
Rows per page
Query Builder