Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mr.sql vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-3491
SQL injection vulnerability in go.php in Scripts24 iPost 1.0.1 and iTGP 1.0.4 allows remote malicious users to execute arbitrary SQL commands via the id parameter in a report action.
Scripts24 Ipost 1.0.1
Scripts24 Itgp 1.0.4
2 EDB exploits
NA
CVE-2008-3351
SQL injection vulnerability in atomPhotoBlog.php in Atom PhotoBlog 1.0.9.1 and 1.1.5b1 allows remote malicious users to execute arbitrary SQL commands via the photoId parameter in a show action.
Atomphotoblog Atomphotoblog 1.1.5
Atomphotoblog Atomphotoblog 1.0.9.1
2 EDB exploits
NA
CVE-2009-2924
Multiple SQL injection vulnerabilities in Videos Broadcast Yourself 2 allow remote malicious users to execute arbitrary SQL commands via the (1) UploadID parameter to videoint.php, and possibly the (2) cat_id parameter to catvideo.php and (3) uid parameter to cviewchannels.php.
Videosbroadcastyourself Videos Broadcast Yourself 2
1 EDB exploit
NA
CVE-2009-2926
Multiple SQL injection vulnerabilities in PHP Competition System BETA 0.84 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) day parameter to show_matchs.php and (2) pageno parameter to persons.php.
Phpcompet.free Php Competition System 0.84
1 EDB exploit
NA
CVE-2008-3387
SQL injection vulnerability in show.php in PHPFootball 1.6 allows remote malicious users to execute arbitrary SQL commands via the dbtable parameter.
Phpfootball Phpfootball 1.6
1 EDB exploit
NA
CVE-2008-3771
Cross-site scripting (XSS) vulnerability in members.php in Pars4u Videosharing 1 allows remote malicious users to inject arbitrary web script or HTML via the PageNo parameter.
Pars4u Videosharing 1
1 EDB exploit
NA
CVE-2008-3779
Cross-site scripting (XSS) vulnerability in search/index.php in Five Star Review Script allows remote malicious users to inject arbitrary web script or HTML via the words parameter in a search action.
Review-script Five Star Review Script
1 EDB exploit
NA
CVE-2008-4495
SQL injection vulnerability in view_cat.php in PHP Auto Dealer 2.7 allows remote malicious users to execute arbitrary SQL commands via the v_cat parameter.
Select Development Solutions Php Auto Dealer 2.7
1 EDB exploit
NA
CVE-2008-4496
SQL injection vulnerability in view_cat.php in PHP Realtor 1.5 allows remote malicious users to execute arbitrary SQL commands via the v_cat parameter.
Select Development Solutions Php Realtor 1.5
1 EDB exploit
NA
CVE-2008-4498
SQL injection vulnerability in searchresults.php in PHP Autos 2.9.1 allows remote malicious users to execute arbitrary SQL commands via the catid parameter.
Phpautos Phpautos 2.9.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »