Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sql injection vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2010-0146
Directory traversal vulnerability in the Management Center for Cisco Security Agents 6.0 allows remote authenticated users to read arbitrary files via unspecified vectors.
Cisco Security Agent 6.0
7.8
CVSSv2
CVE-2010-0148
Unspecified vulnerability in Cisco Security Agent 5.2 prior to 5.2.0.285, when running on Linux, allows remote malicious users to cause a denial of service (kernel panic) via "a series of TCP packets."
Cisco Security Agent 5.2
7.5
CVSSv2
CVE-2002-0645
SQL injection vulnerability in stored procedures for Microsoft SQL Server 2000 and Microsoft Desktop Engine (MSDE) 2000 may allow authenticated users to execute arbitrary commands.
Microsoft Data Engine 2000
Microsoft Sql Server 2000
6.5
CVSSv2
CVE-2010-0147
SQL injection vulnerability in the Management Center for Cisco Security Agents 5.1 prior to 5.1.0.117, 5.2 prior to 5.2.0.296, and 6.0 prior to 6.0.1.132 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Cisco Security Agent 6.0
Cisco Security Agent 5.1
Cisco Security Agent 5.2
6.5
CVSSv2
CVE-2012-0337
SQL injection vulnerability in the web component in Cisco Unified MeetingPlace 7.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCtx08939.
Cisco Unified Meetingplace 7.1
7.5
CVSSv2
CVE-2006-6354
Multiple SQL injection vulnerabilities in detail.asp in DuWare DuNews allow remote malicious users to execute arbitrary SQL commands via the (1) iNews, (2) iType, or (3) Action parameter. NOTE: the iType parameter in type.asp is covered by CVE-2005-3976.
Duware Duclassified 4.1
Duware Duclassified 4.2
Duware Dudownload 1.0
Duware Dudownload 1.1
Duware Dupaypal 3.0
Duware Dupaypal 3.1
Duware Duamazon 3.0
Duware Duamazon 3.1
Duware Dudirectory Pro 3.0
Duware Dudirectory Pro 3.1
Duware Dugallery 3.2
Duware Dugallery 3.3
Duware Dudirectory 3.0
Duware Dudirectory 3.1
Duware Dugallery 3.0
Duware Dugallery 3.1
Duware Dupaypal Pro 3.0
Duware Dupaypal Pro 3.1
Duware Duarticle 1.0
Duware Duarticle 1.1
Duware Duclassified 4.0
Duware Dudirectory Pro Sql 3.0
7.5
CVSSv2
CVE-2005-3976
SQL injection vulnerability in type.asp, as used in multiple DUware products including (1) DUamazon 3.1, (2) DUarticle 1.1, (3) DUclassified 4.2, (4) DUdirectory 3.1 and DUdirectory Pro 3.0 and 3.0 SQL, (5) DUdownload 1.1, (6) DUgallery 3.3, (7) DUnews 1.1, and (8) DUpaypal 3.1 a...
Duware Duarticle 1.1
Duware Duclassified 4.2
Duware Dupaypal 3.1
Duware Dupaypal Pro 3.0
Duware Dudirectory Pro Sql 3.0
Duware Dudownload 1.1
Duware Duamazon 3.1
Duware Dugallery 3.3
Duware Dunews 1.1
Duware Dudirectory 3.1
Duware Dudirectory Pro 3.0
7.8
CVSSv2
CVE-2012-5416
Buffer overflow in Cisco Unified MeetingPlace Web Conferencing prior to 7.1MR1 Patch 1, 8.0 prior to 8.0MR1 Patch 1, and 8.5 prior to 8.5MR3 allows remote malicious users to cause a denial of service (daemon hang) via unspecified parameters in a POST request, aka Bug ID CSCua6634...
Cisco Unified Meetingplace 7.1
Cisco Unified Meetingplace
Cisco Unified Meetingplace 8.0
Cisco Unified Meetingplace 8.5
Cisco Unified Meetingplace 7.0.2
Cisco Unified Meetingplace 7.0.3
Cisco Unified Meetingplace 8.5.3
Cisco Unified Meetingplace 8.5.4
Cisco Unified Meetingplace 7.0.1
Cisco Unified Meetingplace 8.5.1
Cisco Unified Meetingplace 8.5.2
Cisco Unified Meetingplace 7.0
7.5
CVSSv2
CVE-2015-6962
SQL injection vulnerability in the web application in Farol allows remote malicious users to execute arbitrary SQL commands via the email parameter to tkmonitor/estrutura/login/Login.actions.php.
Teiko Farol -
1 EDB exploit
7.5
CVSSv2
CVE-2005-2989
Multiple SQL injection vulnerabilities in DeluxeBB 1.0 and 1.0.5 allow remote malicious users to execute arbitrary SQL commands via the (1) tid parameter to topic.php, the uid parameter to (2) misc.php or (3) pm.php, or the fid parameter to (3) forums.php or (4) newpost.php.
Deluxebb Deluxebb 1.0
Deluxebb Deluxebb 1.05
5 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2108
CVE-2024-31061
CVE-2024-25959
CVE-2023-45866
injection
IDOR
memory leak
CVE-2024-1086
CVE-2023-42931
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »