Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
blind sql injection vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-6851
SQL injection vulnerability in page.php in PHP Link Directory (phpLD) 3.3, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the name parameter.
Php Link Directory Php Link Directory 3.3
1 EDB exploit
NA
CVE-2007-5644
Lussumo Vanilla 1.1.3 and previous versions does not require admin privileges for (1) ajax/sortcategories.php and (2) ajax/sortroles.php, which allows remote malicious users to conduct unauthorized sort operations and other activities.
Lussumo Vanilla
1 EDB exploit
NA
CVE-2008-5294
SQL injection vulnerability in index.php in WebStudio eCatalogue allows remote malicious users to execute arbitrary SQL commands via the pageid parameter.
Bdigital Web Solutions Webstudio Ecatalogue Nil
1 EDB exploit
NA
CVE-2008-5336
SQL injection vulnerability in index.php in WebStudio CMS allows remote malicious users to execute arbitrary SQL commands via the pageid parameter.
Bdigital Web Solutions Webstudio Cms Nil
1 EDB exploit
NA
CVE-2009-3208
Multiple SQL injection vulnerabilities in phpfreeBB 1.0 allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter to permalink.php and (2) year parameter to index.php.
Prakashatma Mishra Phpfreebb 1.0
1 EDB exploit
NA
CVE-2009-3321
SQL injection vulnerability in SaphpLesson 4.3, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the CLIENT_IP HTTP header.
Saphplesson Saphplesson 4.3
1 EDB exploit
NA
CVE-2008-0358
SQL injection vulnerability in index.php in Pixelpost 1.7 allows remote malicious users to execute arbitrary SQL commands via the parent_id parameter.
Pixelpost Pixelpost 1.7
1 EDB exploit
NA
CVE-2008-2815
SQL injection vulnerability in shopping/index.php in MyMarket 1.72 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Mymarket Mymarket 1.72
1 EDB exploit
NA
CVE-2008-2919
SQL injection vulnerability in listing.php in Gryphon gllcTS2 4.2.4 allows remote malicious users to execute arbitrary SQL commands via the sort parameter.
Gryphonllc Gryphon Gllcts2 4.2.4
1 EDB exploit
NA
CVE-2012-33501
Webmatic version 3.1.1 suffers from a remote blind SQL injection vulnerability.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »