Lucene search
K

13188 matches found

Cvelist
Cvelist
added 2011/04/27 12:0 a.m.16 views

CVE-2010-4800

SQL injection vulnerability in doadd.php in BaconMap 1.0 allows remote attackers to execute arbitrary SQL commands via the type parameter...

8.3AI score0.01189EPSS
Exploits1References7
CVE
CVE
added 2011/04/27 12:0 a.m.38 views

CVE-2010-4793

CVE-2010-4793 affects Site2Nite Auto e-Manager (Detail.asp) via the ID parameter. The root cause is an SQL injection vulnerability in the detail.asp page, allowing remote attackers to execute arbitrary SQL commands. Concretely, the vulnerability is triggered through the ID parameter without prope...

7.5CVSS8.7AI score0.01151EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2011/04/27 12:0 a.m.20 views

CVE-2010-4797

Multiple SQL injection vulnerabilities in the log-in form in Truworth Flex Timesheet allow remote attackers to execute arbitrary SQL commands via the 1 Username and 2 Password fields...

8.5AI score0.01151EPSS
Exploits1References6
NVD
NVD
added 2011/04/22 10:55 a.m.14 views

CVE-2011-1686

Multiple SQL injection vulnerabilities in Best Practical Solutions RT 2.0.0 through 3.6.10, 3.8.0 through 3.8.9, and 4.0.0rc through 4.0.0rc7 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors, as demonstrated by reading data...

6.5CVSS8AI score0.01342EPSS
Exploits0References10
ATTACKERKB
ATTACKERKB
added 2011/04/22 10:55 a.m.4 views

CVE-2011-1686

Multiple SQL injection vulnerabilities in Best Practical Solutions RT 2.0.0 through 3.6.10, 3.8.0 through 3.8.9, and 4.0.0rc through 4.0.0rc7 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors, as demonstrated by reading data...

6.5CVSS6.3AI score0.01342EPSS
Exploits0References11
Cvelist
Cvelist
added 2011/04/22 10:0 a.m.17 views

CVE-2011-1686

Multiple SQL injection vulnerabilities in Best Practical Solutions RT 2.0.0 through 3.6.10, 3.8.0 through 3.8.9, and 4.0.0rc through 4.0.0rc7 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors, as demonstrated by reading data...

7.9AI score0.01342EPSS
Exploits0References10
NVD
NVD
added 2011/04/19 7:55 p.m.11 views

CVE-2011-1722

Multiple SQL injection vulnerabilities in WEC Discussion Forum wecdiscussion extension 2.1.0 and earlier for TYPO3 allow remote attackers to execute arbitrary SQL commands via unspecified vectors, as exploited in the wild in April 2011...

7.5CVSS8.6AI score0.01299EPSS
Exploits0References7
htbridge
htbridge
added 2011/04/19 12:0 a.m.34 views

SQL Injection Vulnerability in Shutter

High-Tech Bridge SA Security Research Lab has discovered vulnerability in Shutter which could be exploited to perform SQL injection attacks. 1 SQL injection vulnerability in Shutter The vulnerability exists due to input sanitation errors in the "albumID" parameter in index.html. A remote attacker...

7.5CVSS8.5AI score
Exploits0Affected Software1
NVD
NVD
added 2011/04/18 3:0 p.m.16 views

CVE-2011-1653

Multiple SQL injection vulnerabilities in the Unified Network Control UNC Server in CA Total Defense TD r12 before SE2 allow remote attackers to execute arbitrary SQL commands via vectors involving the 1 UnAssignFunctionalRoles, 2 UnassignAdminRoles, 3 DeleteFilter, 4 NonAssignedUserList, 5...

10CVSS8AI score0.88655EPSS
Exploits12References22
Cvelist
Cvelist
added 2011/04/15 7:0 p.m.24 views

CVE-2011-1653

Multiple SQL injection vulnerabilities in the Unified Network Control UNC Server in CA Total Defense TD r12 before SE2 allow remote attackers to execute arbitrary SQL commands via vectors involving the 1 UnAssignFunctionalRoles, 2 UnassignAdminRoles, 3 DeleteFilter, 4 NonAssignedUserList, 5...

8AI score0.88655EPSS
Exploits12References22
NVD
NVD
added 2011/04/10 2:51 a.m.16 views

CVE-2011-1667

SQL injection vulnerability in index.php in Anzeigenmarkt 2011 allows remote attackers to execute arbitrary SQL commands via the q parameter in a list action...

7.5CVSS8.3AI score0.01356EPSS
Exploits1References7
NVD
NVD
added 2011/04/10 2:51 a.m.12 views

CVE-2011-1663

SQL injection vulnerability in the Translation Management module 6.x before 6.x-1.21 for Drupal allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

7.5CVSS8.4AI score0.01084EPSS
Exploits0References4
Prion
Prion
added 2011/04/10 2:51 a.m.16 views

Sql injection

SQL injection vulnerability in index.php in Anzeigenmarkt 2011 allows remote attackers to execute arbitrary SQL commands via the q parameter in a list action...

7.5CVSS9AI score0.01356EPSS
Exploits1References7Affected Software1
ATTACKERKB
ATTACKERKB
added 2011/04/10 2:51 a.m.3 views

CVE-2011-1663

SQL injection vulnerability in the Translation Management module 6.x before 6.x-1.21 for Drupal allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

7.5CVSS6.4AI score0.01084EPSS
Exploits0References5
Cvelist
Cvelist
added 2011/04/10 1:0 a.m.16 views

CVE-2011-1667

SQL injection vulnerability in index.php in Anzeigenmarkt 2011 allows remote attackers to execute arbitrary SQL commands via the q parameter in a list action...

8.3AI score0.01356EPSS
Exploits1References7
Cvelist
Cvelist
added 2011/04/10 1:0 a.m.17 views

CVE-2011-1663

SQL injection vulnerability in the Translation Management module 6.x before 6.x-1.21 for Drupal allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

8.4AI score0.01084EPSS
Exploits0References4
NVD
NVD
added 2011/04/07 2:23 p.m.18 views

CVE-2010-4784

Multiple SQL injection vulnerabilities in member.php in PHP Web Scripts Easy Banner Free 2009.05.18, when magicquotesgpc is disabled, allow remote attackers to execute arbitrary SQL commands via the 1 username and 2 password parameters...

6.8CVSS8.7AI score0.01117EPSS
Exploits1References7
Prion
Prion
added 2011/04/07 2:23 p.m.18 views

Sql injection

Multiple SQL injection vulnerabilities in list.asp in Softwebs Nepal aka Ananda Raj Pandey Ananda Real Estate 3.4 allow remote attackers to execute arbitrary SQL commands via the 1 city, 2 state, 3 country, 4 minprice, 5 maxprice, 6 bed, and 7 bath parameters, different vectors than CVE-2006-6807...

7.5CVSS9.2AI score0.0103EPSS
Exploits2References5Affected Software1
Prion
Prion
added 2011/04/04 12:27 p.m.19 views

Sql injection

SQL injection vulnerability in saa.php in Andy's PHP Knowledgebase Aphpkb 0.95.3 and earlier allows remote attackers to execute arbitrary SQL commands via the aid parameter, a different vulnerability than CVE-2011-1546. NOTE: some of these details are obtained from third party information...

6.8CVSS8.5AI score0.01746EPSS
Exploits6References3Affected Software1
Prion
Prion
added 2011/04/04 12:27 p.m.16 views

Sql injection

SQL injection vulnerability in ICloudCenter ICJobSite 1.1 allows remote attackers to execute arbitrary SQL commands via the pid parameter to an unspecified component, a different vulnerability than CVE-2011-1546. NOTE: the provenance of this information is unknown; the details are obtained solely...

7.5CVSS8.2AI score0.01746EPSS
Exploits7References1Affected Software1
Rows per page
Query Builder