Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
blind sql injection vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2006-0123
Multiple SQL injection vulnerabilities in ADN Forum 1.0b allow remote malicious users to execute arbitrary SQL commands via the (1) fid parameter in index.php and (2) pagid parameter in verpag.php, and possibly other vectors.
Adn Forum Adn Forum 1.0
Adn Forum Adn Forum 1.0b
1 EDB exploit
755
VMScore
CVE-2010-4983
SQL injection vulnerability in profile.php in iScripts CyberMatch 1.0 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Iscripts Cybermatch 1.0
1 EDB exploit
755
VMScore
CVE-2008-2425
SQL injection vulnerability in index.php in FicHive 1.0 allows remote malicious users to execute arbitrary SQL commands via the letter parameter in a Search action, a different vector than CVE-2008-2416. NOTE: the provenance of this information is unknown; the details are obtaine...
Fichive Fichive 1.0
1 EDB exploit
755
VMScore
CVE-2008-4494
SQL injection vulnerability in completed-advance.php in TorrentTrader Classic 1.08 and 1.04 and previous versions allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Torrenttrader Torrenttrader 1.04
Torrenttrader Torrenttrader
1 EDB exploit
755
VMScore
CVE-2008-4523
SQL injection vulnerability in login.php in IP Reg 0.4 and previous versions allows remote malicious users to execute arbitrary SQL commands via the user_name parameter.
Ip Reg Ip Reg 0.1
Ip Reg Ip Reg
Ip Reg Ip Reg 0.2
Ip Reg Ip Reg 0.3
1 EDB exploit
755
VMScore
CVE-2008-4524
SQL injection vulnerability in the "Check User" feature (includes/check_user.php) in AdaptCMS Lite and AdaptCMS Pro 1.3 allows remote malicious users to execute arbitrary SQL commands via the user_name parameter.
Adaptcms Adaptcms 1.3
1 EDB exploit
755
VMScore
CVE-2008-4628
SQL injection vulnerability in del.php in myWebland miniBloggie 1.0 allows remote malicious users to execute arbitrary SQL commands via the post_id parameter.
Mywebland Minibloggie 1.0
1 EDB exploit
755
VMScore
CVE-2009-1747
SQL injection vulnerability in index.php in 26th Avenue bSpeak 1.10 allows remote malicious users to execute arbitrary SQL commands via the forumid parameter in a post action.
26thavenue Bspeak 1.10
1 EDB exploit
755
VMScore
CVE-2009-1910
SQL injection vulnerability in index.php in RTWebalbum 1.0.462 allows remote malicious users to execute arbitrary SQL commands via the AlbumId parameter.
Rafal Kucharski Rtwebalbum 1.0.462
1 EDB exploit
685
VMScore
CVE-2009-1912
Directory traversal vulnerability in src/func/language.php in webSPELL 4.2.0e and previous versions allows remote malicious users to include and execute arbitrary local .php files via a .. (dot dot) in a language cookie. NOTE: this can be leveraged for SQL injection by including ...
Webspell Webspell
Webspell Webspell 4.1.2
Webspell Webspell 4.1.1
Webspell Webspell 4.2.0c
Webspell Webspell 4.2.0d
Webspell Webspell 4.0.2c
Webspell Webspell 4.0
Webspell Webspell 4.01.01
Webspell Webspell 4.01.00
Webspell Webspell 4.1
Webspell Webspell 4.01.02
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »