Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mr.sql vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-2924
Multiple SQL injection vulnerabilities in Videos Broadcast Yourself 2 allow remote malicious users to execute arbitrary SQL commands via the (1) UploadID parameter to videoint.php, and possibly the (2) cat_id parameter to catvideo.php and (3) uid parameter to cviewchannels.php.
Videosbroadcastyourself Videos Broadcast Yourself 2
1 EDB exploit
NA
CVE-2009-2926
Multiple SQL injection vulnerabilities in PHP Competition System BETA 0.84 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) day parameter to show_matchs.php and (2) pageno parameter to persons.php.
Phpcompet.free Php Competition System 0.84
1 EDB exploit
NA
CVE-2009-3116
SQL injection vulnerability in index.php in Uiga Church Portal allows remote malicious users to execute arbitrary SQL commands via the year parameter in a calendar action.
Uiga Church Portal
1 EDB exploit
NA
CVE-2009-3117
SQL injection vulnerability in category.php in Snow Hall Silurus System 1.0 allows remote malicious users to execute arbitrary SQL commands via the ID parameter.
Snowhall Silurus System 1.0
1 EDB exploit
NA
CVE-2009-3191
Multiple cross-site scripting (XSS) vulnerabilities in PAD Site Scripts 3.6 allow remote malicious users to inject arbitrary web script or HTML via the cat parameter to (1) rss.php and (2) opml.php.
Pad-site-scripts Pad Site Scripts 3.6
1 EDB exploit
NA
CVE-2008-2505
Cross-site scripting (XSS) vulnerability in result.php in Simpel Side Weblosning 1 through 4 allows remote malicious users to inject arbitrary web script or HTML via the search parameter.
Simpel Side Weblosninger 3
Simpel Side Weblosninger 4
Simpel Side Weblosninger 1
Simpel Side Weblosninger 2
1 EDB exploit
NA
CVE-2008-4496
SQL injection vulnerability in view_cat.php in PHP Realtor 1.5 allows remote malicious users to execute arbitrary SQL commands via the v_cat parameter.
Select Development Solutions Php Realtor 1.5
1 EDB exploit
NA
CVE-2008-7085
Multiple SQL injection vulnerabilities in TheHockeyStop HockeySTATS Online 2.0 Basic and Advanced allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter in the viewpage action to the default URI, probably index.php, or (2) divid parameter in the s...
Thehockeystop Hockeystats Online 2.0
1 EDB exploit
NA
CVE-2008-5815
SQL injection vulnerability in Acomment.php in phpAlumni allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Phpalumni Phpalumni Nil
1 EDB exploit
NA
CVE-2009-4615
SQL injection vulnerability in review.php in MYRE Holiday Rental Manager allows remote malicious users to execute arbitrary SQL commands via the link_id parameter in a show_review action.
Myrephp Myre Holiday Rental Manager
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »