Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
blind sql injection vulnerabilities and exploits
(subscribe to this query)
515
VMScore
CVE-2008-6851
SQL injection vulnerability in page.php in PHP Link Directory (phpLD) 3.3, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the name parameter.
Php Link Directory Php Link Directory 3.3
1 EDB exploit
755
VMScore
CVE-2007-5644
Lussumo Vanilla 1.1.3 and previous versions does not require admin privileges for (1) ajax/sortcategories.php and (2) ajax/sortroles.php, which allows remote malicious users to conduct unauthorized sort operations and other activities.
Lussumo Vanilla
1 EDB exploit
755
VMScore
CVE-2008-5294
SQL injection vulnerability in index.php in WebStudio eCatalogue allows remote malicious users to execute arbitrary SQL commands via the pageid parameter.
Bdigital Web Solutions Webstudio Ecatalogue Nil
1 EDB exploit
755
VMScore
CVE-2008-5336
SQL injection vulnerability in index.php in WebStudio CMS allows remote malicious users to execute arbitrary SQL commands via the pageid parameter.
Bdigital Web Solutions Webstudio Cms Nil
1 EDB exploit
755
VMScore
CVE-2009-3208
Multiple SQL injection vulnerabilities in phpfreeBB 1.0 allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter to permalink.php and (2) year parameter to index.php.
Prakashatma Mishra Phpfreebb 1.0
1 EDB exploit
685
VMScore
CVE-2009-3321
SQL injection vulnerability in SaphpLesson 4.3, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the CLIENT_IP HTTP header.
Saphplesson Saphplesson 4.3
1 EDB exploit
685
VMScore
CVE-2008-0358
SQL injection vulnerability in index.php in Pixelpost 1.7 allows remote malicious users to execute arbitrary SQL commands via the parent_id parameter.
Pixelpost Pixelpost 1.7
1 EDB exploit
755
VMScore
CVE-2008-2815
SQL injection vulnerability in shopping/index.php in MyMarket 1.72 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Mymarket Mymarket 1.72
1 EDB exploit
685
VMScore
CVE-2008-2919
SQL injection vulnerability in listing.php in Gryphon gllcTS2 4.2.4 allows remote malicious users to execute arbitrary SQL commands via the sort parameter.
Gryphonllc Gryphon Gllcts2 4.2.4
1 EDB exploit
NA
CVE-2012-33501
Webmatic version 3.1.1 suffers from a remote blind SQL injection vulnerability.
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »