Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
blind sql injection vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2009-0121
SQL injection vulnerability in frontpage.php in Goople CMS 1.8.2 allows remote malicious users to execute arbitrary SQL commands via the password parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Goople Cms Goople Cms 1.8.2
1 EDB exploit
7.5
CVSSv2
CVE-2009-0279
SQL injection vulnerability in comentar.php in Pardal CMS 0.2.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Pardalcms Pardalcms 0.1.2
Pardalcms Pardalcms 0.1.1
Pardalcms Pardalcms
Pardalcms Pardalcms 0.1.3
Pardalcms Pardalcms 0.01b
Pardalcms Pardalcms 0.1a
Pardalcms Pardalcms 0.01c
1 EDB exploit
7.5
CVSSv2
CVE-2009-0768
SQL injection vulnerability in forumhop.php in YapBB 1.2 and previous versions allows remote malicious users to execute arbitrary SQL commands via the forumID parameter in a next action.
Yapbb Yapbb
Yapbb Yapbb 1.1
Yapbb Yapbb 1.2
1 EDB exploit
6
CVSSv2
CVE-2010-4751
SQL injection vulnerability in LightNEasy.php in LightNEasy 3.2.1, when magic_quotes_gpc is disabled, allows remote authenticated users to execute arbitrary SQL commands via the id parameter in an edituser action, a different vector than CVE-2008-6593, CVE-2010-3484, and CVE-2010...
Lightneasy Lightneasy 3.2.1
1 EDB exploit
7.5
CVSSv2
CVE-2011-1055
SQL injection vulnerability in api/ice_media.cfc in Lingxia I.C.E CMS 1.0 allows remote malicious users to execute arbitrary SQL commands via the session.user_id parameter to media.cfm.
Lingxia273 Lingxia I.c.e Cms 1.0
1 EDB exploit
6.8
CVSSv2
CVE-2008-1513
SQL injection vulnerability in index.php in Danneo CMS 0.5.1 and previous versions, when the Referers statistics option is enabled, allows remote malicious users to execute arbitrary SQL commands via the HTTP Referer header.
Danneo Cms
1 EDB exploit
7.5
CVSSv2
CVE-2007-1171
SQL injection vulnerability in includes/nsbypass.php in NukeSentinel 2.5.05, 2.5.11, and other versions prior to 2.5.12 allows remote malicious users to execute arbitrary SQL commands via an admin cookie.
Nukescripts Nukesentinel
1 EDB exploit
7.5
CVSSv2
CVE-2009-3968
Multiple SQL injection vulnerabilities in ITechBids 8.0 allow remote malicious users to execute arbitrary SQL commands via the (1) user_id parameter to feedback.php, (2) cate_id parameter to category.php, (3) id parameter to news.php, and (4) productid parameter to itechd.php. NO...
Itechscripts Itechbids 8.0
1 EDB exploit
7.5
CVSSv2
CVE-2008-2755
SQL injection vulnerability in index.php in JAMM CMS allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Jamm-media Jamm Cms
1 EDB exploit
7.5
CVSSv2
CVE-2010-4983
SQL injection vulnerability in profile.php in iScripts CyberMatch 1.0 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Iscripts Cybermatch 1.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »