Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog Docs About Contact

sql injection vulnerabilities and exploits

(subscribe to this query)
7.5
CVSSv2

CVE-2006-6354

Multiple SQL injection vulnerabilities in detail.asp in DuWare DuNews allow remote malicious users to execute arbitrary SQL commands via the (1) iNews, (2) iType, or (3) Action parameter. NOTE: the iType parameter in type.asp is covered by CVE-2005-3976.
Duware Duamazon 3.0Duware Duamazon 3.1Duware Duarticle 1.0Duware Duarticle 1.1Duware Duclassified 4.0Duware Duclassified 4.1Duware Duclassified 4.2Duware Dudirectory 3.0Duware Dudirectory 3.1Duware Dudirectory Pro 3.0Duware Dudirectory Pro 3.1Duware Dudirectory Pro Sql 3.0
7.5
CVSSv2

CVE-2005-3976

SQL injection vulnerability in type.asp, as used in multiple DUware products including (1) DUamazon 3.1, (2) DUarticle 1.1, (3) DUclassified 4.2, (4) DUdirectory 3.1 and DUdirectory Pro 3.0 and 3.0 SQL, (5) DUdownload 1.1, (6) DUgallery 3.3, (7) DUnews 1.1, and (8) DUpaypal 3.1 a...
Duware Duamazon 3.1Duware Duarticle 1.1Duware Duclassified 4.2Duware Dudirectory 3.1Duware Dudirectory Pro 3.0Duware Dudirectory Pro Sql 3.0Duware Dudownload 1.1Duware Dugallery 3.3Duware Dunews 1.1Duware Dupaypal 3.1Duware Dupaypal Pro 3.0
7.8
CVSSv2

CVE-2012-5416

Buffer overflow in Cisco Unified MeetingPlace Web Conferencing prior to 7.1MR1 Patch 1, 8.0 prior to 8.0MR1 Patch 1, and 8.5 prior to 8.5MR3 allows remote malicious users to cause a denial of service (daemon hang) via unspecified parameters in a POST request, aka Bug ID CSCua6634...
Cisco Unified MeetingplaceCisco Unified Meetingplace 7.0Cisco Unified Meetingplace 7.0.1Cisco Unified Meetingplace 7.0.2Cisco Unified Meetingplace 7.0.3Cisco Unified Meetingplace 7.1Cisco Unified Meetingplace 8.0Cisco Unified Meetingplace 8.5Cisco Unified Meetingplace 8.5.1Cisco Unified Meetingplace 8.5.2Cisco Unified Meetingplace 8.5.3Cisco Unified Meetingplace 8.5.4
7.5
CVSSv2

CVE-2015-6962

SQL injection vulnerability in the web application in Farol allows remote malicious users to execute arbitrary SQL commands via the email parameter to tkmonitor/estrutura/login/Login.actions.php.
Teiko Farol -
7.5
CVSSv2

CVE-2005-2989

Multiple SQL injection vulnerabilities in DeluxeBB 1.0 and 1.0.5 allow remote malicious users to execute arbitrary SQL commands via the (1) tid parameter to topic.php, the uid parameter to (2) misc.php or (3) pm.php, or the fid parameter to (3) forums.php or (4) newpost.php.
Deluxebb Deluxebb 1.0Deluxebb Deluxebb 1.05
7.5
CVSSv2

CVE-2009-2439

Multiple SQL injection vulnerabilities in Web Development House Alibaba Clone allow remote malicious users to execute arbitrary SQL commands via the (1) IndustryID parameter to category.php and the (2) SellerID parameter to supplier/view_contact_details.php. NOTE: this is a produ...
Web Development House Alibaba Clone
6.8
CVSSv2

CVE-2006-5829

Multiple SQL injection vulnerabilities in All In One Control Panel (AIOCP) 1.3.007 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) choosed_language parameter to (a) cp_dpage.php, (b) cp_news.php, (c) cp_forum_view.php, (d) cp_edit_...
Aiocp AiocpAiocp Aiocp 1.3.000Aiocp Aiocp 1.3.001Aiocp Aiocp 1.3.002Aiocp Aiocp 1.3.003Aiocp Aiocp 1.3.004Aiocp Aiocp 1.3.005Aiocp Aiocp 1.3.006
7.5
CVSSv2

CVE-2013-7189

Multiple SQL injection vulnerabilities in iScripts AutoHoster, possibly 2.4, allow remote malicious users to execute arbitrary SQL commands via the cmbdomain parameter to (1) checktransferstatus.php, (2) checktransferstatusbck.php, or (3) additionalsettings.php; or (4) invno para...
Iscripts Autohoster 2.4
7.5
CVSSv2

CVE-2008-5781

SQL injection vulnerability in right.php in Cant Find A Gaming CMS (CFAGCMS) 1.0 Beta 1 allows remote malicious users to execute arbitrary SQL commands via the title parameter.
Cfagcms Cfagcms 1.0
7.5
CVSSv2

CVE-2008-4178

SQL injection vulnerability in tr.php in DownlineGoldmine Special Category Addon, Downline Builder Pro, New Addon, and Downline Goldmine Builder allows remote malicious users to execute arbitrary SQL commands via the id parameter. NOTE: some of these details are obtained from thi...
Downline Goldmine BuilderDownline Goldmine Builder Special Category AddonDownline Goldmine Builder UnknownDownline Goldmine New AddonDownline Goldmine New Addon Pro
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
injectCVE-2025-51381IDORnvidiaCVE-2025-4123CVE-2025-2783CVE-2025-30678remote attackersCVE-2025-48443kcm3100CVE-2025-6196tarteaucitron.ioadrian ladóearch icon">CVE-2023-33538
Home
/
Search Results
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook