Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sql injection vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2018-5977
SQL Injection exists in Affiligator Affiliate Webshop Management System 2.1.0 via a search/?q=&price_type=range&price= request.
Getaffiligator Affiligator 2.1.0
1 EDB exploit
7.5
CVSSv2
CVE-2018-5978
SQL Injection exists in Facebook Style Php Ajax Chat Zechat 1.5 via the login.php User field.
Zechat Project Zechat 1.5
1 EDB exploit
7.5
CVSSv2
CVE-2018-5979
SQL Injection exists in Wchat Fully Responsive PHP AJAX Chat Script 1.5 via the login.php User field.
Wchat Project Wchat 1.5
1 EDB exploit
7.5
CVSSv2
CVE-2018-5984
SQL Injection exists in the Tumder (An Arcade Games Platform) 2.1 component for Joomla! via the PATH_INFO to the category/ URI.
Tumder Project Tumder 2.1
1 EDB exploit
7.5
CVSSv2
CVE-2013-4789
SQL injection vulnerability in modules/rss/rss.php in Cotonti prior to 0.9.14 allows remote malicious users to execute arbitrary SQL commands via the "c" parameter to index.php.
Cotonti Cotonti Siena 0.9.10
Cotonti Cotonti Siena 0.9.8
Cotonti Cotonti Siena 0.9.1
Cotonti Cotonti Siena 0.9.2
Cotonti Cotonti Siena 0.9.3
Cotonti Cotonti Siena 0.9.6
Cotonti Cotonti Siena 0.9.0
Cotonti Cotonti Siena 0.9.9
Cotonti Cotonti Siena
Cotonti Cotonti Siena 0.9.5
Cotonti Cotonti Siena 0.9.12
Cotonti Cotonti Siena 0.9.4
Cotonti Cotonti Siena 0.9.11
Cotonti Cotonti Siena 0.9.7
1 EDB exploit
6.8
CVSSv2
CVE-2009-3661
Multiple SQL injection vulnerabilities in the DJ-Catalog (com_djcatalog) component for Joomla! allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter in a showItem action and (2) cid parameter in a show action to index.php.
Blueconstantmedia Com Djcatalog
1 EDB exploit
7.5
CVSSv2
CVE-2017-9730
SQL injection vulnerability in rdr.php in nuevoMailer version 6.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the "r" parameter.
Dfsol Nuevomailer
1 EDB exploit
7.5
CVSSv2
CVE-2010-4006
Multiple SQL injection vulnerabilities in search.php in WSN Links 5.0.x prior to 5.0.81, 5.1.x prior to 5.1.51, and 6.0.x prior to 6.0.1 allow remote malicious users to execute arbitrary SQL commands via the (1) namecondition or (2) namesearch parameter.
Wsnlinks Wsn Links 5.0.72
Wsnlinks Wsn Links 5.0.58
Wsnlinks Wsn Links 5.0.25
Wsnlinks Wsn Links 5.0.34
Wsnlinks Wsn Links 5.0.70
Wsn Wsn Links 5.1.38
Wsn Wsn Links 5.1.4
Wsn Links 5.1.25
Wsnlinks Wsn Links 5.0.51
Wsnlinks Wsn Links 5.0.49
Wsn Wsn Links 5.1.48
Wsn Wsn Links 5.1.45
Wsnlinks Wsn Links 5.0.13
Wsn Wsn Links 5.1.14
Wsnlinks Wsn Links 5.0.11
Wsn Wsn Links 5.1.37
Wsnlinks Wsn Links 5.0.77
Wsn Links 5.1.34
Wsnlinks Wsn Links 5.0.44
Wsnlinks Wsn Links 5.0.31
Wsn Wsn Links 5.1.35
Wsnlinks Wsn Links 5.0.21
1 EDB exploit
7.5
CVSSv2
CVE-2017-7997
Multiple SQL injection vulnerabilities in Gespage prior to 7.4.9 allow remote malicious users to execute arbitrary SQL commands via the (1) show_prn parameter to webapp/users/prnow.jsp or show_month parameter to (2) webapp/users/blhistory.jsp or (3) webapp/users/prhistory.jsp.
Gespage Gespage
1 EDB exploit
7.5
CVSSv2
CVE-2017-17970
Multiple SQL injection vulnerabilities in Muviko 1.1 allow remote malicious users to execute arbitrary SQL commands via the (1) email parameter to login.php; the (2) season_id parameter to themes/flixer/ajax/load_season.php; the (3) movie_id parameter to themes/flixer/ajax/get_ra...
Muvikoscript Muviko 1.1
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »