Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
injection vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-3661
Multiple SQL injection vulnerabilities in the DJ-Catalog (com_djcatalog) component for Joomla! allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter in a showItem action and (2) cid parameter in a show action to index.php.
Blueconstantmedia Com Djcatalog
1 EDB exploit
NA
CVE-2012-1673
SQL injection vulnerability in loginscript.php in e-ticketing allows remote malicious users to execute arbitrary SQL commands via the password parameter.
Ola Lasisi E-ticketing -
1 EDB exploit
9.8
CVSSv3
CVE-2014-9558
Multiple SQL injection vulnerabilities in SmartCMS v.2.
Smartcms Smartcms 2.0
1 EDB exploit
NA
CVE-2015-1517
SQL injection vulnerability in Piwigo prior to 2.7.4, when all filters are activated, allows remote authenticated users to execute arbitrary SQL commands via the filter_level parameter in a "Refresh photo set" action in the batch_manager page to admin.php.
Piwigo Piwigo
1 EDB exploit
NA
CVE-2014-8507
Multiple SQL injection vulnerabilities in the queryLastApp method in packages/WAPPushManager/src/com/android/smspush/WapPushManager.java in the WAPPushManager module in Android prior to 5.0.0 allow remote malicious users to execute arbitrary SQL commands, and consequently launch ...
Google Android 4.0.3
Google Android 4.0.2
Google Android 4.0.1
Google Android 4.0
Google Android 2.3.2
Google Android 2.3.1
Google Android 4.4
Google Android 4.3.1
Google Android 4.3
Google Android 4.2.2
Google Android 4.2.1
Google Android 3.2
Google Android 3.1
Google Android 3.0
Google Android 2.3.7
Google Android 2.1
Google Android 2.0.1
Google Android 2.0
Google Android 1.6
Google Android 2.3
Google Android 2.2.3
Google Android
1 EDB exploit
NA
CVE-2014-5097
Multiple SQL injection vulnerabilities in Free Reprintables ArticleFR 3.0.4 and previous versions allow remote malicious users to execute arbitrary SQL commands via the id parameter in a (1) get or (2) set action to rate.php.
Freereprintables Articlefr
1 EDB exploit
NA
CVE-2011-4026
SQL injection vulnerability in thanks.php in NexusPHP 1.5 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Xia Zuojie Nexusphp 1.5
1 EDB exploit
NA
CVE-2009-2178
Cross-site scripting (XSS) vulnerability in website.php in phpDatingClub 3.7 allows remote malicious users to inject arbitrary web script or HTML via the page parameter.
W2b Phpdatingclub 3.7
1 EDB exploit
NA
CVE-2009-2179
SQL injection vulnerability in search.php in phpDatingClub 3.7 allows remote malicious users to execute arbitrary SQL commands via the sform[day] parameter.
W2b Phpdatingclub 3.7
1 EDB exploit
NA
CVE-2010-4006
Multiple SQL injection vulnerabilities in search.php in WSN Links 5.0.x prior to 5.0.81, 5.1.x prior to 5.1.51, and 6.0.x prior to 6.0.1 allow remote malicious users to execute arbitrary SQL commands via the (1) namecondition or (2) namesearch parameter.
Wsnlinks Wsn Links 5.0.80
Wsnlinks Wsn Links 5.0.0
Wsnlinks Wsn Links 5.0.17
Wsnlinks Wsn Links 5.0.18
Wsnlinks Wsn Links 5.0.23
Wsnlinks Wsn Links 5.0.24
Wsnlinks Wsn Links 5.0.30
Wsnlinks Wsn Links 5.0.31
Wsnlinks Wsn Links 5.0.32
Wsnlinks Wsn Links 5.0.39
Wsnlinks Wsn Links 5.0.4
Wsnlinks Wsn Links 5.0.46
Wsnlinks Wsn Links 5.0.47
Wsnlinks Wsn Links 5.0.53
Wsnlinks Wsn Links 5.0.54
Wsnlinks Wsn Links 5.0.55
Wsnlinks Wsn Links 5.0.61
Wsnlinks Wsn Links 5.0.62
Wsnlinks Wsn Links 5.0.69
Wsnlinks Wsn Links 5.0.7
Wsnlinks Wsn Links 5.0.77
Wsnlinks Wsn Links 5.0.78
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »