Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
blind sql injection vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-6117
SQL injection vulnerability in homepage.php in PG Job Site Pro allows remote malicious users to execute arbitrary SQL commands via the poll_view_id parameter in a results action.
Pilotgroup Pg Job Site Pro -
1 EDB exploit
NA
CVE-2010-4752
SQL injection vulnerability in LightNEasy.php in LightNEasy 3.2.1, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the page parameter, a different vector than CVE-2008-6593, CVE-2010-3484, and CVE-2010-3485. NOTE: the provena...
Lightneasy Lightneasy 3.2.1
1 EDB exploit
NA
CVE-2010-4991
SQL injection vulnerability in the NinjaMonials (com_ninjamonials) component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the Itemid parameter in a display action to index.php.
Ninjaforge Ninjamonials
1 EDB exploit
NA
CVE-2009-0295
SQL injection vulnerability in index.php in Information Technology Light Poll Information (ITLPoll) 2.7 Stable 2, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Itlpoll Itpoll 2.7
1 EDB exploit
NA
CVE-2009-0333
SQL injection vulnerability in the WebAmoeba (WA) Ticket System (com_waticketsystem) component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the catid parameter in a category action to index.php.
Joomla Com Waticketsystem
1 EDB exploit
NA
CVE-2009-0379
SQL injection vulnerability in the Prince Clan Chess Club (com_pcchess) component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the game_id parameter in a showgame action to index.php, a different vector than CVE-2008-0761.
Joomla Com Pcchess
1 EDB exploit
NA
CVE-2009-0446
SQL injection vulnerability in photo.php in WEBalbum 2.4b allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Web-album Webalbum 2.4b
1 EDB exploit
NA
CVE-2008-0129
SQL injection vulnerability in starnet/addons/slideshow_full.php in Site@School 2.3.10 and previous versions allows remote malicious users to execute arbitrary SQL commands via the album_name parameter.
Siteatschool Siteatschool
1 EDB exploit
NA
CVE-2011-0646
SQL injection vulnerability in viewfaqs.php in PHP LOW BIDS allows remote malicious users to execute arbitrary SQL commands via the cat parameter.
Anserv Php Low Bids
1 EDB exploit
NA
CVE-2007-0502
SQL injection vulnerability in gallery.php in webSPELL 4.01.02 allows remote malicious users to execute arbitrary SQL commands via the picID parameter, a different vector than CVE-2007-0492.
Webspell Webspell 4.01.02
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »