Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sql injection vulnerabilities and exploits
(subscribe to this query)
694
VMScore
CVE-2010-0148
Unspecified vulnerability in Cisco Security Agent 5.2 prior to 5.2.0.285, when running on Linux, allows remote malicious users to cause a denial of service (kernel panic) via "a series of TCP packets."
Cisco Security Agent 5.2
605
VMScore
CVE-2010-0146
Directory traversal vulnerability in the Management Center for Cisco Security Agents 6.0 allows remote authenticated users to read arbitrary files via unspecified vectors.
Cisco Security Agent 6.0
668
VMScore
CVE-2002-0645
SQL injection vulnerability in stored procedures for Microsoft SQL Server 2000 and Microsoft Desktop Engine (MSDE) 2000 may allow authenticated users to execute arbitrary commands.
Microsoft Data Engine 2000
Microsoft Sql Server 2000
578
VMScore
CVE-2010-0147
SQL injection vulnerability in the Management Center for Cisco Security Agents 5.1 prior to 5.1.0.117, 5.2 prior to 5.2.0.296, and 6.0 prior to 6.0.1.132 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Cisco Security Agent 6.0
Cisco Security Agent 5.1
Cisco Security Agent 5.2
578
VMScore
CVE-2012-0337
SQL injection vulnerability in the web component in Cisco Unified MeetingPlace 7.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCtx08939.
Cisco Unified Meetingplace 7.1
668
VMScore
CVE-2006-6354
Multiple SQL injection vulnerabilities in detail.asp in DuWare DuNews allow remote malicious users to execute arbitrary SQL commands via the (1) iNews, (2) iType, or (3) Action parameter. NOTE: the iType parameter in type.asp is covered by CVE-2005-3976.
Duware Duclassified 4.1
Duware Duclassified 4.2
Duware Dudownload 1.0
Duware Dudownload 1.1
Duware Dupaypal 3.0
Duware Dupaypal 3.1
Duware Duamazon 3.0
Duware Duamazon 3.1
Duware Dudirectory Pro 3.0
Duware Dudirectory Pro 3.1
Duware Dugallery 3.2
Duware Dugallery 3.3
Duware Dudirectory 3.0
Duware Dudirectory 3.1
Duware Dugallery 3.0
Duware Dugallery 3.1
Duware Dupaypal Pro 3.0
Duware Dupaypal Pro 3.1
Duware Duarticle 1.0
Duware Duarticle 1.1
Duware Duclassified 4.0
Duware Dudirectory Pro Sql 3.0
668
VMScore
CVE-2005-3976
SQL injection vulnerability in type.asp, as used in multiple DUware products including (1) DUamazon 3.1, (2) DUarticle 1.1, (3) DUclassified 4.2, (4) DUdirectory 3.1 and DUdirectory Pro 3.0 and 3.0 SQL, (5) DUdownload 1.1, (6) DUgallery 3.3, (7) DUnews 1.1, and (8) DUpaypal 3.1 a...
Duware Duarticle 1.1
Duware Duclassified 4.2
Duware Dupaypal 3.1
Duware Dupaypal Pro 3.0
Duware Dudirectory Pro Sql 3.0
Duware Dudownload 1.1
Duware Duamazon 3.1
Duware Dugallery 3.3
Duware Dunews 1.1
Duware Dudirectory 3.1
Duware Dudirectory Pro 3.0
694
VMScore
CVE-2012-5416
Buffer overflow in Cisco Unified MeetingPlace Web Conferencing prior to 7.1MR1 Patch 1, 8.0 prior to 8.0MR1 Patch 1, and 8.5 prior to 8.5MR3 allows remote malicious users to cause a denial of service (daemon hang) via unspecified parameters in a POST request, aka Bug ID CSCua6634...
Cisco Unified Meetingplace 7.1
Cisco Unified Meetingplace
Cisco Unified Meetingplace 8.0
Cisco Unified Meetingplace 8.5
Cisco Unified Meetingplace 7.0.2
Cisco Unified Meetingplace 7.0.3
Cisco Unified Meetingplace 8.5.3
Cisco Unified Meetingplace 8.5.4
Cisco Unified Meetingplace 7.0.1
Cisco Unified Meetingplace 8.5.1
Cisco Unified Meetingplace 8.5.2
Cisco Unified Meetingplace 7.0
755
VMScore
CVE-2015-6962
SQL injection vulnerability in the web application in Farol allows remote malicious users to execute arbitrary SQL commands via the email parameter to tkmonitor/estrutura/login/Login.actions.php.
Teiko Farol -
1 EDB exploit
775
VMScore
CVE-2005-2989
Multiple SQL injection vulnerabilities in DeluxeBB 1.0 and 1.0.5 allow remote malicious users to execute arbitrary SQL commands via the (1) tid parameter to topic.php, the uid parameter to (2) misc.php or (3) pm.php, or the fid parameter to (3) forums.php or (4) newpost.php.
Deluxebb Deluxebb 1.0
Deluxebb Deluxebb 1.05
5 EDB exploits
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »