Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
blind sql injection vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2013-5917
SQL injection vulnerability in wp-comments-post.php in the NOSpam PTI plugin 2.1 for WordPress allows remote malicious users to execute arbitrary SQL commands via the comment_post_ID parameter.
Rodrigo Coimbra Nospam Pti 2.1
1 EDB exploit
755
VMScore
CVE-2016-7400
Multiple SQL injection vulnerabilities in Exponent CMS prior to 2.4.0 allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter in an activate_address address controller action, (2) title parameter in a show blog controller action, or (3) content_id ...
Exponentcms Exponent Cms
1 EDB exploit
655
VMScore
CVE-2014-3857
Multiple SQL injection vulnerabilities in Kerio Control Statistics in Kerio Control (formerly WinRoute Firewall) prior to 8.3.2 allow remote authenticated users to execute arbitrary SQL commands via the (1) x_16 or (2) x_17 parameter to print.php.
Kerio Control 8.3.0
Kerio Control
1 EDB exploit
765
VMScore
CVE-2008-5875
SQL injection vulnerability in the com_lowcosthotels component in the Hotel Booking Reservation System (aka HBS) for Joomla! allows remote malicious users to execute arbitrary SQL commands via the id parameter in a showhoteldetails action to index.php.
Joomlahbs Com Lowcosthotels Nil
Joomlahbs Hotel Booking Reservation System Nil
3 EDB exploits
765
VMScore
CVE-2008-5874
Multiple SQL injection vulnerabilities in the Hotel Booking Reservation System (aka HBS) for Joomla! allow remote malicious users to execute arbitrary SQL commands via the id parameter in a showhoteldetails action to index.php in the (1) com_allhotels or (2) com_5starhotels modul...
Joomlahbs Com Allhotels Nil
Joomlahbs Com 5starhotels Nil
Joomlahbs Hotel Booking Reservation System Nil
3 EDB exploits
755
VMScore
CVE-2013-5694
SQL injection vulnerability in status/service/acknowledge in Opsview prior to 4.4.1 allows remote malicious users to execute arbitrary SQL commands via the service_selection parameter.
Opsview Opsview 4.2
Opsview Opsview 4.1
Opsview Opsview 2.10
Opsview Opsview 2.8
Opsview Opsview 2.7
Opsview Opsview 3.10
Opsview Opsview 3.8
Opsview Opsview 3.6
Opsview Opsview 3.4
Opsview Opsview 3.2
Opsview Opsview
Opsview Opsview 4.3
Opsview Opsview 4.0
Opsview Opsview 3.14
Opsview Opsview 3.1
Opsview Opsview 2.14
Opsview Opsview 3.12
Opsview Opsview 3.0
Opsview Opsview 2.12
1 EDB exploit
755
VMScore
CVE-2014-1204
SQL injection vulnerability in Tableau Server 8.0.x prior to 8.0.7 and 8.1.x prior to 8.1.2 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors. NOTE: this can be exploited by unauthenticated remote attackers if the guest user is enabled.
Tableausoftware Tableau Server 8.0.2
Tableausoftware Tableau Server 8.0.3
Tableausoftware Tableau Server 8.0.6
Tableausoftware Tableau Server 8.1
Tableausoftware Tableau Server 8.0.4
Tableausoftware Tableau Server 8.0.5
Tableausoftware Tableau Server 8.0
Tableausoftware Tableau Server 8.0.1
Tableausoftware Tableau Server 8.1.1
1 EDB exploit
760
VMScore
CVE-2006-3262
SQL injection vulnerability in the Weblinks module (weblinks.php) in Mambo 4.6rc1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the title parameter.
Mambo Mambo
2 EDB exploits
760
VMScore
CVE-2008-7075
Multiple SQL injection vulnerabilities in Kalptaru Infotech Ltd. Star Articles 6.0 allow remote malicious users to inject arbitrary SQL commands via (1) the subcatid parameter to article.list.php; or the artid parameter to (2) article.print.php, (3) article.comments.php, (4) arti...
Kalptaru Infotech Stararticles 6.0
2 EDB exploits
755
VMScore
CVE-2008-6262
SQL injection vulnerability in lib/url/meta_url.php in SaturnCMS allows remote malicious users to execute arbitrary SQL commands via the URL to the translate function. NOTE: the provenance of this information is unknown; the details are obtained solely from third party informatio...
Infireal Saturncms -
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-28254
CVE-2024-32515
CVE-2024-21338
validation
CVE-2024-32522
dos
CVE-2024-2101
CVE-2024-21107
elevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »