Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
blind sql injection vulnerabilities and exploits
(subscribe to this query)
505
VMScore
CVE-2006-6755
Ixprim 1.2 allows remote malicious users to obtain sensitive information via a direct request for kernel/plugins/fckeditor2/ixprim_api.php, which reveals the path in an error message.
Ixprim Ixprim Cms 1.2
1 EDB exploit
755
VMScore
CVE-2008-6889
SQL injection vulnerability in Merchantsadd.asp in ASPReferral 5.3 allows remote malicious users to execute arbitrary SQL commands via the AccountID parameter.
Activewebsoftwares Aspreferral 5.3
1 EDB exploit
755
VMScore
CVE-2008-6787
SQL injection vulnerability in administrator/index.php in Lizardware CMS 0.6.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the user.
Jeremy Powers Lizardware Cms
Jeremy Powers Lizardware Cms 0.6.0
1 EDB exploit
755
VMScore
CVE-2007-0502
SQL injection vulnerability in gallery.php in webSPELL 4.01.02 allows remote malicious users to execute arbitrary SQL commands via the picID parameter, a different vector than CVE-2007-0492.
Webspell Webspell 4.01.02
1 EDB exploit
755
VMScore
CVE-2010-0945
SQL injection vulnerability in the HotBrackets Tournament Brackets (com_hotbrackets) component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter to index.php.
Hotbrackets Com Hotbrackets
1 EDB exploit
755
VMScore
CVE-2009-3968
Multiple SQL injection vulnerabilities in ITechBids 8.0 allow remote malicious users to execute arbitrary SQL commands via the (1) user_id parameter to feedback.php, (2) cate_id parameter to category.php, (3) id parameter to news.php, and (4) productid parameter to itechd.php. NO...
Itechscripts Itechbids 8.0
1 EDB exploit
605
VMScore
CVE-2010-4751
SQL injection vulnerability in LightNEasy.php in LightNEasy 3.2.1, when magic_quotes_gpc is disabled, allows remote authenticated users to execute arbitrary SQL commands via the id parameter in an edituser action, a different vector than CVE-2008-6593, CVE-2010-3484, and CVE-2010...
Lightneasy Lightneasy 3.2.1
1 EDB exploit
755
VMScore
CVE-2010-4991
SQL injection vulnerability in the NinjaMonials (com_ninjamonials) component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the Itemid parameter in a display action to index.php.
Ninjaforge Ninjamonials
1 EDB exploit
755
VMScore
CVE-2006-3727
Multiple SQL injection vulnerabilities in Eskolar CMS 0.9.0.0 allow remote malicious users to execute arbitrary SQL commands via the (1) gr_1_id, (2) gr_2_id, (3) gr_3_id, and (4) doc_id parameters in (a) index.php; the (5) uid and (6) pwd parameters in (b) php/esa.php; and possi...
Eskolar Cms Eskolar Cms 0.9.0.0
1 EDB exploit
755
VMScore
CVE-2008-4886
SQL injection vulnerability in index.php in YourFreeWorld Shopping Cart Script allows remote malicious users to execute arbitrary SQL commands via the c parameter.
Yourfreeworld Shopping Cart Script
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »