Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
blind sql injection vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-6263
SQL injection vulnerability in lib/user/t_user.php in SaturnCMS allows remote malicious users to execute arbitrary SQL commands via the username parameter to the _userLoggedIn function. NOTE: some of these details are obtained from third party information.
Infireal Saturncms -
1 EDB exploit
7.5
CVSSv2
CVE-2008-6323
SQL injection vulnerability in forummessages.cfm in CFMSource CF_Auction allows remote malicious users to execute arbitrary SQL commands via the categorynbr parameter.
Cfmsource Cf Auction -
1 EDB exploit
7.5
CVSSv2
CVE-2008-5003
SQL injection vulnerability in ndetail.php in Shahrood allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Shahrood Shahrood
1 EDB exploit
7.5
CVSSv2
CVE-2008-3267
SQL injection vulnerability in mojoJobs.cgi in MojoJobs allows remote malicious users to execute arbitrary SQL commands via the cat_a parameter.
Mojoscripts Mojojobs
1 EDB exploit
7.5
CVSSv2
CVE-2008-3383
SQL injection vulnerability in mojoAuto.cgi in MojoAuto allows remote malicious users to execute arbitrary SQL commands via the cat_a parameter in a browse action.
Mojoscripts Mojoauto
1 EDB exploit
7.5
CVSSv2
CVE-2008-3403
SQL injection vulnerability in mojoClassified.cgi in MojoPersonals allows remote malicious users to execute arbitrary SQL commands via the cat parameter.
Mojoscripts Mojopersonals
1 EDB exploit
7.5
CVSSv2
CVE-2012-3477
SQL injection vulnerability in signup_check.php in NeoInvoice allows remote malicious users to execute arbitrary SQL commands via the value parameter in a username action.
Thomas Hunter Neoinvoice -
7.5
CVSSv2
CVE-2008-6324
SQL injection vulnerability in forummessages.cfm in CF_Forum allows remote malicious users to execute arbitrary SQL commands via the categorynbr parameter.
Cfmsource Cf Forum -
1 EDB exploit
7.5
CVSSv2
CVE-2014-2736
Multiple SQL injection vulnerabilities in MODX Revolution prior to 2.2.14 allow remote malicious users to execute arbitrary SQL commands via the (1) session ID (PHPSESSID) to index.php or remote authenticated users to execute arbitrary SQL commands via the (2) user parameter to c...
Modx Modx Revolution 2.0.0
Modx Modx Revolution 2.1.5
Modx Modx Revolution 2.2.0
Modx Modx Revolution 2.2.1
Modx Modx Revolution 2.2.10
Modx Modx Revolution 2.0.5
Modx Modx Revolution 2.0.6
Modx Modx Revolution 2.0.7
Modx Modx Revolution 2.0.8
Modx Modx Revolution 2.1.0
Modx Modx Revolution 2.2.3
Modx Modx Revolution 2.2.4
Modx Modx Revolution 2.2.5
Modx Modx Revolution 2.2.6
Modx Modx Revolution 2.0.4
Modx Modx Revolution 2.1.2
Modx Modx Revolution 2.1.4
Modx Modx Revolution 2.2.11
Modx Modx Revolution
Modx Modx Revolution 2.2.8
Modx Modx Revolution 2.0.1
Modx Modx Revolution 2.0.3
6.8
CVSSv2
CVE-2009-3661
Multiple SQL injection vulnerabilities in the DJ-Catalog (com_djcatalog) component for Joomla! allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter in a showItem action and (2) cid parameter in a show action to index.php.
Blueconstantmedia Com Djcatalog
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-28254
CVE-2024-32515
CVE-2024-21338
validation
CVE-2024-32522
dos
CVE-2024-2101
CVE-2024-21107
elevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »