Results for

sql injection

NA
CVE-2018-19281

Centreon 3.4.x allows SNMP trap SQL Injection.

NA
CVE-2018-19271

Centreon 3.4.x allows SQL Injection via the main.php searchH parameter.

NA
CVE-2018-16850

postgresql before versions 11.1, 10.6 is vulnerable to a to SQL injection in pg_upgrade and pg_dump via CREATE TRIGGER ... REFERENCING. Using a purpose-crafted trigger definition, an attacker can cause arbitrary SQL statements to run, with superuser privileges.

7.5
HIGH
CVE-2018-19221

An issue was discovered in LAOBANCMS 2.0. It allows SQL Injection via the admin/login.php guanliyuan parameter.

7.5
HIGH
CVE-2018-19061

DedeCMS 5.7 SP2 has SQL Injection via the dede\co_do.php ids parameter.

7.5
HIGH
CVE-2018-18963

Busca.aspx.cs in Degrau Publicidade e Internet Plataforma de E-commerce allows SQL Injection via the busca/ URI.

7.5
HIGH
CVE-2018-18949

Zoho ManageEngine OpManager 12.3 before 123222 has SQL Injection via Mail Server settings.

7.5
HIGH
CVE-2018-18887

S-CMS PHP 1.0 has SQL injection in member/member_news.php via the type parameter (aka the $N_type field).

7.5
HIGH
CVE-2018-18832

admin/check.asp in DKCMS 9.4 allows SQL Injection via an ASPSESSIONID cookie to admin/admin.asp.

NA
CVE-2018-18822

Grapixel New Media v2.0 allows SQL Injection via the pages.aspx pageref parameter.