Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
blind sql injection vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-6652
SQL injection vulnerability in asd.php in OneCMS 2.5 allows remote malicious users to execute arbitrary SQL commands via the sitename parameter.
Insanevisions Onecms 2.5
1 EDB exploit
5.1
CVSSv2
CVE-2008-6851
SQL injection vulnerability in page.php in PHP Link Directory (phpLD) 3.3, when register_globals is enabled and magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the name parameter.
Php Link Directory Php Link Directory 3.3
1 EDB exploit
7.5
CVSSv2
CVE-2008-3382
SQL injection vulnerability in mojoClassified.cgi in MojoClassifieds 2.0 allows remote malicious users to execute arbitrary SQL commands via the cat_a parameter.
Mojoscripts Mojoclassifieds 2.0
1 EDB exploit
7.5
CVSSv2
CVE-2009-2585
SQL injection vulnerability in index.php in Mlffat 2.2 allows remote malicious users to execute arbitrary SQL commands via a member cookie in an account editprofile action, a different vector than CVE-2009-1731.
Mlffat Mlffat 2.2
1 EDB exploit
6.5
CVSSv2
CVE-2014-9258
SQL injection vulnerability in ajax/getDropdownValue.php in GLPI prior to 0.85.1 allows remote authenticated users to execute arbitrary SQL commands via the condition parameter.
Glpi-project Glpi
1 EDB exploit
7.5
CVSSv2
CVE-2010-1740
SQL injection vulnerability in newsletter.php in GuppY 4.5.18 allows remote malicious users to execute arbitrary SQL commands via the lng parameter.
Freeguppy Guppy 4.5.18
1 EDB exploit
7.5
CVSSv2
CVE-2009-2439
Multiple SQL injection vulnerabilities in Web Development House Alibaba Clone allow remote malicious users to execute arbitrary SQL commands via the (1) IndustryID parameter to category.php and the (2) SellerID parameter to supplier/view_contact_details.php. NOTE: this is a produ...
Web Development House Alibaba Clone
2 EDB exploits
7.5
CVSSv2
CVE-2014-8681
SQL injection vulnerability in the GetIssues function in models/issue.go in Gogs (aka Go Git Service) 0.3.1-9 up to and including 0.5.6.x prior to 0.5.6.1025 Beta allows remote malicious users to execute arbitrary SQL commands via the label parameter to user/repos/issues.
Gogits Gogs 0.4.1
Gogits Gogs 0.4.2
Gogits Gogs 0.5.0
Gogits Gogs 0.5.2
Gogits Gogs
Gogits Gogs 0.3.1-9
1 EDB exploit
7.5
CVSSv2
CVE-2006-1327
SQL injection vulnerability in reg.php in SoftBB 0.1 allows remote malicious users to execute arbitrary SQL commands via the mail parameter.
Softbb Softbb 0.1
1 EDB exploit
7.5
CVSSv2
CVE-2009-3336
SQL injection vulnerability in auction_details.php in PHP Pro Bid allows remote malicious users to execute arbitrary SQL commands via the auction_id parameter.
Phpprobid Php Pro Bid
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »