EUVD-2022-54225

Malicious code in bioql PyPI...

CVE-2025-44608

CloudClassroom-PHP Project v1.0 was discovered to contain a SQL injection vulnerability via the viewid parameter...

CVE-2025-44608

CloudClassroom-PHP Project v1.0 was discovered to contain a SQL injection vulnerability via the viewid parameter...

CVE-2025-44608

CVE-2025-44608 affects CloudClassroom-PHP Project version 1.0, with a SQL injection vulnerability injectable via the viewid parameter. Root cause: unvalidated input in viewid leads to SQL injection. Practical impact stated in connected docs includes potential remote code execution (RCE) demonstra...

CVE-2015-10097

A vulnerability was found in grinnellplans-php up to 3.0. It has been declared as critical. Affected by this vulnerability is the function interfacedisppage/interfacedisppage of the file read.php. The manipulation leads to sql injection. The attack can be launched remotely. The identifier of the...

CVE-2024-13204

A vulnerability was found in kurniaramadhan E-Commerce-PHP 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /blog-details.php. The manipulation of the argument blogid leads to sql injection. The attack can be launched remotely. The...

CVE-2024-13205

A vulnerability was found in kurniaramadhan E-Commerce-PHP 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /admin/createproduct.php of the component Create Product Page. The manipulation of the argument Name leads to cross site scripting. Th...

CVE-2024-13205

CVE-2024-13205 affects kurniaramadhan E-Commerce-PHP v1.0. The /admin/create_product.php Create Product Page vulnerable to XSS via manipulation of the Name parameter. Exploitable remotely; exploit disclosed publicly; vendor did not respond. A publicly stated workaround from PT-Security recommends...

CVE-2024-13205 kurniaramadhan E-Commerce-PHP Create Product Page create_product.php cross site scripting

A vulnerability was found in kurniaramadhan E-Commerce-PHP 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /admin/createproduct.php of the component Create Product Page. The manipulation of the argument Name leads to cross site scripting. Th...

CVE-2019-10708

S-CMS PHP v1.0 has SQL injection via the 4/js/scms.php?action=unlike id parameter...

DataLife Engine <= 4.1 - Remote SQL Injection Exploit (php)

No description provided by source. ?php errorreporting EERROR; inisetmaxexecutiontime,0; echo ' +========================================+ | RST/GHC Datalife SQL injection exploit | +========================================+ Lite Version for DLE =4.1 '; if $argc 2 print Usage: . $argv0 . host use...

Coppermine Photo Gallery <= 1.4.10 Remote SQL Injection Exploit

No description provided by source. !/usr/bin/php ?php if$argc 4 print \n---------------------------------------------------------; print \nAffected.scr..: Coppermine Photo Gallery = 1.4.10; print \nPoc.ID........: 19070104; print \nType..........: SQL Injection; print \nRisk.level....: Medium;...

XMB <= 1.9.6 (u2uid) Remote SQL Injection Exploit (mq=off)

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo XMB = 1.9.6 'u2uid' SQL injection / admin credentials disclosure\n; echo by rgod [email protected]\n; echo site: http://retrogod.altervista.org\n; echo dork: \Powered by XMB\n\n; / works with magicquotes=off Mysql = 4....

phpscripte24 Shop System SQL Injection Vulnerability Exploit

No description provided by source...

Shift E-Business Blind SQL Injection

======================================================= Shift E-Business - Blind SQL Injection Vulnerabilities ======================================================= 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=1 3 3 3 3 7 /' \ /'\ /'\ /\ \ /\ /\ \ 7 1 /, /\L\ \ /\L...

Ero Auktion 2.0 - news.php SQL Injection

Ero Auktion 2.0 - news.php SQL Injection ----------------------------Information---------------------------------------- +Autor : Easy Laster +Date : 21.10.2010 +Script : Ero Auktion V.2.0 SQL Injection news.php +Download : ----- +Price : 34,90€ +Language :PHP +Discovered by Easy Laster +Security...

SFS Ez Forum - SQL Injection

================================================================================== SFS Forum forum.php id Remote SQL Injection Vulnerability ================================================================================== / / / / / / / // / / / / / / / / / / / / // / / / / / // / // //,//...

CVE-2006-3318

SQL injection vulnerability in register.php for phpRaid 3.0.6 and possibly other versions, when the authorization type is phpraid, allows remote attackers to execute arbitrary SQL commands via the 1 username and 2 email parameters...