Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
blind sql injection vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-1116
SQL injection vulnerability in Joomla! 1.7.x and 2.5.x prior to 2.5.2 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Joomla Joomla\\! 1.7.3
Joomla Joomla\\! 1.7.2
Joomla Joomla\\! 2.5.1
Joomla Joomla\\! 1.7.5
Joomla Joomla\\! 2.5.0
Joomla Joomla\\! 1.7.4
Joomla Joomla\\! 1.7.1
Joomla Joomla\\! 1.7.0
1 EDB exploit
NA
CVE-2014-5520
SQL injection vulnerability in XRMS CRM, possibly 1.99.2, allows remote malicious users to execute arbitrary SQL commands via the user_id parameter to plugins/webform/new-form.php, which is not properly handled by plugins/useradmin/fingeruser.php.
Xrms Crm Project Xrms Crm 1.99.2
1 EDB exploit
NA
CVE-2008-0129
SQL injection vulnerability in starnet/addons/slideshow_full.php in Site@School 2.3.10 and previous versions allows remote malicious users to execute arbitrary SQL commands via the album_name parameter.
Siteatschool Siteatschool
1 EDB exploit
NA
CVE-2015-1875
SQL injection vulnerability in a2billing/customer/iridium_threed.php in Elastix 2.5.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the transactionID parameter.
Palosanto Elastix
1 EDB exploit
NA
CVE-2007-1019
SQL injection vulnerability in news.php in webSPELL 4.01.02, when register_globals is enabled, allows remote malicious users to execute arbitrary SQL commands via the showonly parameter to index.php, a different vector than CVE-2006-5388.
Webspell Webspell 4.01.02
1 EDB exploit
NA
CVE-2006-0123
Multiple SQL injection vulnerabilities in ADN Forum 1.0b allow remote malicious users to execute arbitrary SQL commands via the (1) fid parameter in index.php and (2) pagid parameter in verpag.php, and possibly other vectors.
Adn Forum Adn Forum 1.0
Adn Forum Adn Forum 1.0b
1 EDB exploit
NA
CVE-2008-0253
SQL injection vulnerability in full_text.php in Binn SBuilder allows remote malicious users to execute arbitrary SQL commands via the nid parameter.
Binn Sbuilder
1 EDB exploit
NA
CVE-2006-3996
SQL injection vulnerability in links/index.php in ATutor 1.5.3.1 and previous versions allows remote authenticated users to execute arbitrary SQL commands via the (1) desc or (2) asc parameters.
Adaptive Technology Resource Centre Atutor
1 EDB exploit
NA
CVE-2008-1954
SQL injection vulnerability in one_day.php in Web Calendar Pro 4.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the user_id parameter.
Webcalendar Web Calendar Pro 4.0
Webcalendar Web Calendar Pro
1 EDB exploit
NA
CVE-2008-1316
SQL injection vulnerability in qtf_ind_search_ov.php in QT-cute QuickTalk Forum 1.6 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Qt-cute Quicktalk Forum 1.5.0.3
Qt-cute Quicktalk Forum 1.4
Qt-cute Quicktalk Forum
Qt-cute Quicktalk Forum 1.3
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2024-34413
CVE-2024-34089
CVE-2024-33408
local
SQL
CVE-2024-0402
CVE-2024-33910
CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »