Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
blind sql injection vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2010-3485
SQL injection vulnerability in common.php in LightNEasy 3.2.1 allows remote malicious users to execute arbitrary SQL commands via the userhandle cookie to LightNEasy.php, a different vector than CVE-2008-6593. NOTE: the provenance of this information is unknown; the details are o...
Lightneasy Lightneasy 3.2.1
1 EDB exploit
7.5
CVSSv2
CVE-2009-1345
SQL injection vulnerability in document.php in cpCommerce 1.2.8 allows remote malicious users to execute arbitrary SQL commands via the id_document parameter.
Cpcommerce Cpcommerce 1.2.8
1 EDB exploit
6.8
CVSSv2
CVE-2009-1661
SQL injection vulnerability in admin/utopic.php in uTopic 1.0, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the rating parameter to index.php.
Anoldman Utopic 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2009-4576
SQL injection vulnerability in the BeeHeard (com_beeheard) component 1.x for Joomla! allows remote malicious users to execute arbitrary SQL commands via the category_id parameter in a suggestions action to index.php.
Cmstactics Com Beeheard 1.0
Cmstactics Com Beeheard 1.1
Cmstactics Com Beeheard 1.2
Cmstactics Com Beeheard 1.3
Cmstactics Com Beeheard 1.4
Cmstactics Com Beeheard 1.4.2
1 EDB exploit
7.5
CVSSv2
CVE-2010-0981
SQL injection vulnerability in the TPJobs (com_tpjobs) component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the id_c[] parameter in a resadvsearch action to index.php.
Templateplazza Com Tpjobs
1 EDB exploit
6.8
CVSSv2
CVE-2010-1093
SQL injection vulnerability in rss.php in 1024 CMS 2.1.1, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the id parameter in a vp action.
1024cms 1024 Cms 2.1.1
1 EDB exploit
6.5
CVSSv2
CVE-2014-5521
plugins/useradmin/fingeruser.php in XRMS CRM, possibly 1.99.2, allows remote authenticated users to execute arbitrary code via shell metacharacters in the username parameter.
Xrms Crm Project Xrms Crm 1.99.2
1 EDB exploit
7.5
CVSSv2
CVE-2010-4991
SQL injection vulnerability in the NinjaMonials (com_ninjamonials) component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the Itemid parameter in a display action to index.php.
Ninjaforge Ninjamonials
1 EDB exploit
NA
CVE-2007-5125
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2007-1171. Reason: This candidate is a duplicate of CVE-2007-1171. Notes: All CVE users should reference CVE-2007-1171 instead of this candidate. All references and descriptions in this candidate have been removed...
1 EDB exploit
7.5
CVSSv2
CVE-2011-0510
SQL injection vulnerability in cart.php in Advanced Webhost Billing System (AWBS) 2.9.2 and possibly earlier allows remote malicious users to execute arbitrary SQL commands via the oid parameter in an add_other action.
Awbs Advanced Webhost Billing System 2.7.5
Awbs Advanced Webhost Billing System 2.0.4
Awbs Advanced Webhost Billing System 2.1.0
Awbs Advanced Webhost Billing System
Awbs Advanced Webhost Billing System 2.7.4
Awbs Advanced Webhost Billing System 2.8.2
Awbs Advanced Webhost Billing System 2.1.1
Awbs Advanced Webhost Billing System 2.7
Awbs Advanced Webhost Billing System 2.3.1
Awbs Advanced Webhost Billing System 2.6.1
Awbs Advanced Webhost Billing System 2.5.1
Awbs Advanced Webhost Billing System 2.7.1
Awbs Advanced Webhost Billing System 2.2.0
Awbs Advanced Webhost Billing System 2.0.5
Awbs Advanced Webhost Billing System 2.2.1
Awbs Advanced Webhost Billing System 2.0.6
Awbs Advanced Webhost Billing System 2.0
Awbs Advanced Webhost Billing System 2.8.5
Awbs Advanced Webhost Billing System 2.3.0
Awbs Advanced Webhost Billing System 2.9.1
Awbs Advanced Webhost Billing System 2.0.3
Awbs Advanced Webhost Billing System 2.8.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30065
CVE-2024-5843
CVE-2024-30080
code execution
CVE-2024-4577
CVE-2024-26169
wireless
remote code execution
CVE-2024-36103
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
7
8
9
10
NEXT »