Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
injection vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-42804
Pandora FMS versions 3.1 and below suffer from authentication bypass, os command injection, remote SQL injection, remote file inclusion and path traversal vulnerabilities.
NA
CVE-2010-42805
Pandora FMS versions 3.1 and below suffer from authentication bypass, os command injection, remote SQL injection, remote file inclusion and path traversal vulnerabilities.
9.8
CVSSv3
CVE-2017-6089
SQL injection vulnerability in PhpCollab 2.5.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the (1) project or id parameters to topics/deletetopics.php; the (2) id parameter to bookmarks/deletebookmarks.php; or the (3) id parameter to ...
Phpcollab Phpcollab
1 EDB exploit
NA
CVE-2009-3661
Multiple SQL injection vulnerabilities in the DJ-Catalog (com_djcatalog) component for Joomla! allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter in a showItem action and (2) cid parameter in a show action to index.php.
Blueconstantmedia Com Djcatalog
1 EDB exploit
NA
CVE-2011-4026
SQL injection vulnerability in thanks.php in NexusPHP 1.5 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Xia Zuojie Nexusphp 1.5
1 EDB exploit
NA
CVE-2010-4963
SQL injection vulnerability in folder/list in Hulihan BXR 0.6.8 allows remote malicious users to execute arbitrary SQL commands via the order_by parameter.
Hulihanapplications Hulihan Bxr 0.6.8
1 EDB exploit
NA
CVE-2013-4789
SQL injection vulnerability in modules/rss/rss.php in Cotonti prior to 0.9.14 allows remote malicious users to execute arbitrary SQL commands via the "c" parameter to index.php.
Cotonti Cotonti Siena 0.9.7
Cotonti Cotonti Siena 0.9.8
Cotonti Cotonti Siena 0.9.9
Cotonti Cotonti Siena 0.9.0
Cotonti Cotonti Siena 0.9.10
Cotonti Cotonti Siena 0.9.3
Cotonti Cotonti Siena 0.9.5
Cotonti Cotonti Siena 0.9.11
Cotonti Cotonti Siena 0.9.12
Cotonti Cotonti Siena
Cotonti Cotonti Siena 0.9.2
Cotonti Cotonti Siena 0.9.1
Cotonti Cotonti Siena 0.9.4
Cotonti Cotonti Siena 0.9.6
1 EDB exploit
NA
CVE-2009-2178
Cross-site scripting (XSS) vulnerability in website.php in phpDatingClub 3.7 allows remote malicious users to inject arbitrary web script or HTML via the page parameter.
W2b Phpdatingclub 3.7
1 EDB exploit
NA
CVE-2009-2179
SQL injection vulnerability in search.php in phpDatingClub 3.7 allows remote malicious users to execute arbitrary SQL commands via the sform[day] parameter.
W2b Phpdatingclub 3.7
1 EDB exploit
NA
CVE-2012-1673
SQL injection vulnerability in loginscript.php in e-ticketing allows remote malicious users to execute arbitrary SQL commands via the password parameter.
Ola Lasisi E-ticketing -
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »