Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
blind sql injection vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2009-3430
SQL injection vulnerability in login.php in Allomani Mobile 2.5 allows remote malicious users to execute arbitrary SQL commands via the username parameter in a login action.
Allomani Mobile 2.5
1 EDB exploit
6.8
CVSSv2
CVE-2007-1019
SQL injection vulnerability in news.php in webSPELL 4.01.02, when register_globals is enabled, allows remote malicious users to execute arbitrary SQL commands via the showonly parameter to index.php, a different vector than CVE-2006-5388.
Webspell Webspell 4.01.02
1 EDB exploit
6
CVSSv2
CVE-2010-4751
SQL injection vulnerability in LightNEasy.php in LightNEasy 3.2.1, when magic_quotes_gpc is disabled, allows remote authenticated users to execute arbitrary SQL commands via the id parameter in an edituser action, a different vector than CVE-2008-6593, CVE-2010-3484, and CVE-2010...
Lightneasy Lightneasy 3.2.1
1 EDB exploit
6.8
CVSSv2
CVE-2010-4752
SQL injection vulnerability in LightNEasy.php in LightNEasy 3.2.1, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the page parameter, a different vector than CVE-2008-6593, CVE-2010-3484, and CVE-2010-3485. NOTE: the provena...
Lightneasy Lightneasy 3.2.1
1 EDB exploit
7.5
CVSSv2
CVE-2010-4991
SQL injection vulnerability in the NinjaMonials (com_ninjamonials) component for Joomla! allows remote malicious users to execute arbitrary SQL commands via the Itemid parameter in a display action to index.php.
Ninjaforge Ninjamonials
1 EDB exploit
7.5
CVSSv2
CVE-2008-6352
SQL injection vulnerability in home.html in Xpoze Pro 4.10 allows remote malicious users to execute arbitrary SQL commands via the menu parameter.
Xpoze Xpoze Pro 4.10
1 EDB exploit
7.5
CVSSv2
CVE-2008-6889
SQL injection vulnerability in Merchantsadd.asp in ASPReferral 5.3 allows remote malicious users to execute arbitrary SQL commands via the AccountID parameter.
Activewebsoftwares Aspreferral 5.3
1 EDB exploit
7.5
CVSSv2
CVE-2008-2755
SQL injection vulnerability in index.php in JAMM CMS allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Jamm-media Jamm Cms
1 EDB exploit
7.5
CVSSv2
CVE-2008-2425
SQL injection vulnerability in index.php in FicHive 1.0 allows remote malicious users to execute arbitrary SQL commands via the letter parameter in a Search action, a different vector than CVE-2008-2416. NOTE: the provenance of this information is unknown; the details are obtaine...
Fichive Fichive 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2012-0980
SQL injection vulnerability in download.php in phux Download Manager allows remote malicious users to execute arbitrary SQL commands via the file parameter.
Phux Download Manager
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »