Vulmon Recent Vulnerabilities Trends Blog About Contact

sql injection vulnerabilities and exploits

(subscribe to this query)

6.8
CVSSv2
CVE-2010-0146
Directory traversal vulnerability in the Management Center for Cisco Security Agents 6.0 allows remote authenticated users to read arbitrary files via unspecified vectors....
Cisco Security Agent 6.0
6.5
CVSSv2
CVE-2010-0147
SQL injection vulnerability in the Management Center for Cisco Security Agents 5.1 before 5.1.0.117, 5.2 before 5.2.0.296, and 6.0 before 6.0.1.132 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors....
Cisco Security Agent 5.1Cisco Security Agent 5.2Cisco Security Agent 6.0
7.8
CVSSv2
CVE-2010-0148
Unspecified vulnerability in Cisco Security Agent 5.2 before 5.2.0.285, when running on Linux, allows remote attackers to cause a denial of service (kernel panic) via "a series of TCP packets."...
Cisco Security Agent 5.2
6.5
CVSSv2
CVE-2008-4078
SQL injection vulnerability in the AR/AP transaction report in (1) LedgerSMB (LSMB) before 1.2.15 and (2) SQL-Ledger 2.8.17 and earlier allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors....
Dws Systems Inc. Sql-ledgerDws Systems Inc. Sql-ledger 2.2.0Dws Systems Inc. Sql-ledger 2.2.1Dws Systems Inc. Sql-ledger 2.2.2Dws Systems Inc. Sql-ledger 2.2.3Dws Systems Inc. Sql-ledger 2.2.4Dws Systems Inc. Sql-ledger 2.2.5Dws Systems Inc. Sql-ledger 2.2.6Dws Systems Inc. Sql-ledger 2.2.7Dws Systems Inc. Sql-ledger 2.4.0Dws Systems Inc. Sql-ledger 2.4.1Dws Systems Inc. Sql-ledger 2.4.2Dws Systems Inc. Sql-ledger 2.4.3Dws Systems Inc. Sql-ledger 2.4.4Dws Systems Inc. Sql-ledger 2.4.5Dws Systems Inc. Sql-ledger 2.4.6Dws Systems Inc. Sql-ledger 2.4.7Dws Systems Inc. Sql-ledger 2.4.8Dws Systems Inc. Sql-ledger 2.4.9Dws Systems Inc. Sql-ledger 2.4.10Dws Systems Inc. Sql-ledger 2.4.11Dws Systems Inc. Sql-ledger 2.4.12Dws Systems Inc. Sql-ledger 2.4.13Dws Systems Inc. Sql-ledger 2.4.14Dws Systems Inc. Sql-ledger 2.4.15Dws Systems Inc. Sql-ledger 2.4.16Dws Systems Inc. Sql-ledger 2.6.1Dws Systems Inc. Sql-ledger 2.6.2Dws Systems Inc. Sql-ledger 2.6.3Dws Systems Inc. Sql-ledger 2.6.4Dws Systems Inc. Sql-ledger 2.6.5Dws Systems Inc. Sql-ledger 2.6.6Dws Systems Inc. Sql-ledger 2.6.7Dws Systems Inc. Sql-ledger 2.6.8Dws Systems Inc. Sql-ledger 2.6.9Dws Systems Inc. Sql-ledger 2.6.10Dws Systems Inc. Sql-ledger 2.6.11Dws Systems Inc. Sql-ledger 2.6.12Dws Systems Inc. Sql-ledger 2.6.13Dws Systems Inc. Sql-ledger 2.6.14Dws Systems Inc. Sql-ledger 2.6.15Dws Systems Inc. Sql-ledger 2.6.16Dws Systems Inc. Sql-ledger 2.6.17Dws Systems Inc. Sql-ledger 2.6.18Dws Systems Inc. Sql-ledger 2.6.27Ledgersmb LedgersmbLedgersmb Ledgersmb 1.0.0Ledgersmb Ledgersmb 1.1.0Ledgersmb Ledgersmb 1.1.1Ledgersmb Ledgersmb 1.1.5Ledgersmb Ledgersmb 1.1.8Ledgersmb Ledgersmb 1.2.0Ledgersmb Ledgersmb 1.2.1Ledgersmb Ledgersmb 1.2.2Ledgersmb Ledgersmb 1.2.3Ledgersmb Ledgersmb 1.2.4Ledgersmb Ledgersmb 1.2.5Ledgersmb Ledgersmb 1.2.6Ledgersmb Ledgersmb 1.2.7Ledgersmb Ledgersmb 1.2.8Ledgersmb Ledgersmb 1.2.9Ledgersmb Ledgersmb 1.2.10Ledgersmb Ledgersmb 1.2.11Ledgersmb Ledgersmb 1.2.12Ledgersmb Ledgersmb 1.2.13Sql-ledger Sql-ledgerSql-ledger Sql-ledger 2.4.4Sql-ledger Sql-ledger 2.4.5Sql-ledger Sql-ledger 2.4.6Sql-ledger Sql-ledger 2.4.7Sql-ledger Sql-ledger 2.4.8Sql-ledger Sql-ledger 2.4.9Sql-ledger Sql-ledger 2.4.10Sql-ledger Sql-ledger 2.4.11Sql-ledger Sql-ledger 2.4.12Sql-ledger Sql-ledger 2.4.13Sql-ledger Sql-ledger 2.4.14Sql-ledger Sql-ledger 2.4.15Sql-ledger Sql-ledger 2.4.16Sql-ledger Sql-ledger 2.6.0Sql-ledger Sql-ledger 2.6.1Sql-ledger Sql-ledger 2.6.2Sql-ledger Sql-ledger 2.6.3Sql-ledger Sql-ledger 2.6.4Sql-ledger Sql-ledger 2.6.5Sql-ledger Sql-ledger 2.6.6Sql-ledger Sql-ledger 2.6.7Sql-ledger Sql-ledger 2.6.8Sql-ledger Sql-ledger 2.6.9Sql-ledger Sql-ledger 2.6.10Sql-ledger Sql-ledger 2.6.11Sql-ledger Sql-ledger 2.6.12Sql-ledger Sql-ledger 2.6.13Sql-ledger Sql-ledger 2.6.14Sql-ledger Sql-ledger 2.6.15Sql-ledger Sql-ledger 2.6.16Sql-ledger Sql-ledger 2.6.17Sql-ledger Sql-ledger 2.6.18Sql-ledger Sql-ledger 2.6.19Sql-ledger Sql-ledger 2.6.20Sql-ledger Sql-ledger 2.6.21Sql-ledger Sql-ledger 2.6.22Sql-ledger Sql-ledger 2.6.23Sql-ledger Sql-ledger 2.6.24Sql-ledger Sql-ledger 2.6.25Sql-ledger Sql-ledger 2.6.26Sql-ledger Sql-ledger 2.6.27Sql-ledger Sql-ledger 2.8.0Sql-ledger Sql-ledger 2.8.1Sql-ledger Sql-ledger 2.8.2Sql-ledger Sql-ledger 2.8.3Sql-ledger Sql-ledger 2.8.4Sql-ledger Sql-ledger 2.8.5Sql-ledger Sql-ledger 2.8.6Sql-ledger Sql-ledger 2.8.7Sql-ledger Sql-ledger 2.8.8Sql-ledger Sql-ledger 2.8.9Sql-ledger Sql-ledger 2.8.10Sql-ledger Sql-ledger 2.8.11Sql-ledger Sql-ledger 2.8.12Sql-ledger Sql-ledger 2.8.13Sql-ledger Sql-ledger 2.8.14Sql-ledger Sql-ledger 2.8.15Sql-ledger Sql-ledger 2.8.16
7.5
CVSSv2
CVE-2008-3053
SQL injection vulnerability in the SQL Frontend (mh_omsqlio) extension 1.0.11 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors....
Typo3 Sql Frontend Extension 1.0.0Typo3 Sql Frontend Extension 1.0.1Typo3 Sql Frontend Extension 1.0.2Typo3 Sql Frontend Extension 1.0.3Typo3 Sql Frontend Extension 1.0.4Typo3 Sql Frontend Extension 1.0.5Typo3 Sql Frontend Extension 1.0.6Typo3 Sql Frontend Extension 1.0.7Typo3 Sql Frontend Extension 1.0.8Typo3 Sql Frontend Extension 1.0.9Typo3 Sql Frontend Extension 1.0.10Typo3 Sql Frontend Extension
10
CVSSv2
CVE-2007-5372
Multiple SQL injection vulnerabilities in (a) LedgerSMB 1.0.0 through 1.2.7 and (b) DWS Systems SQL-Ledger 2.x allow remote attackers to execute arbitrary SQL commands via (1) the invoice quantity field or (2) the sort field....
Dws Systems Inc. Sql-ledger 2.2.0Dws Systems Inc. Sql-ledger 2.2.1Dws Systems Inc. Sql-ledger 2.2.2Dws Systems Inc. Sql-ledger 2.2.3Dws Systems Inc. Sql-ledger 2.2.4Dws Systems Inc. Sql-ledger 2.2.5Dws Systems Inc. Sql-ledger 2.2.6Dws Systems Inc. Sql-ledger 2.2.7Dws Systems Inc. Sql-ledger 2.4.0Dws Systems Inc. Sql-ledger 2.4.1Dws Systems Inc. Sql-ledger 2.4.2Dws Systems Inc. Sql-ledger 2.4.3Dws Systems Inc. Sql-ledger 2.4.4Dws Systems Inc. Sql-ledger 2.4.5Dws Systems Inc. Sql-ledger 2.4.6Dws Systems Inc. Sql-ledger 2.4.7Dws Systems Inc. Sql-ledger 2.4.8Dws Systems Inc. Sql-ledger 2.4.9Dws Systems Inc. Sql-ledger 2.4.10Dws Systems Inc. Sql-ledger 2.4.11Dws Systems Inc. Sql-ledger 2.4.12Dws Systems Inc. Sql-ledger 2.4.13Dws Systems Inc. Sql-ledger 2.4.14Dws Systems Inc. Sql-ledger 2.4.15Dws Systems Inc. Sql-ledger 2.4.16Dws Systems Inc. Sql-ledger 2.6.1Dws Systems Inc. Sql-ledger 2.6.2Dws Systems Inc. Sql-ledger 2.6.3Dws Systems Inc. Sql-ledger 2.6.4Dws Systems Inc. Sql-ledger 2.6.5Dws Systems Inc. Sql-ledger 2.6.6Dws Systems Inc. Sql-ledger 2.6.7Dws Systems Inc. Sql-ledger 2.6.8Dws Systems Inc. Sql-ledger 2.6.9Dws Systems Inc. Sql-ledger 2.6.10Dws Systems Inc. Sql-ledger 2.6.11Dws Systems Inc. Sql-ledger 2.6.12Dws Systems Inc. Sql-ledger 2.6.13Dws Systems Inc. Sql-ledger 2.6.14Dws Systems Inc. Sql-ledger 2.6.15Dws Systems Inc. Sql-ledger 2.6.16Dws Systems Inc. Sql-ledger 2.6.17Dws Systems Inc. Sql-ledger 2.6.18Dws Systems Inc. Sql-ledger 2.6.27Ledgersmb Ledgersmb 1.0.0Ledgersmb Ledgersmb 1.1.0Ledgersmb Ledgersmb 1.1.1Ledgersmb Ledgersmb 1.1.5Ledgersmb Ledgersmb 1.1.8Ledgersmb Ledgersmb 1.2.0Ledgersmb Ledgersmb 1.2.1Ledgersmb Ledgersmb 1.2.2Ledgersmb Ledgersmb 1.2.3Ledgersmb Ledgersmb 1.2.4Ledgersmb Ledgersmb 1.2.5Ledgersmb Ledgersmb 1.2.6Ledgersmb Ledgersmb 1.2.7
6.5
CVSSv2
CVE-2009-3582
Multiple SQL injection vulnerabilities in the delete subroutine in SQL-Ledger 2.8.24 allow remote authenticated users to execute arbitrary SQL commands via the (1) id and possibly (2) db parameters in a Delete action to the output of a Vendors>Reports>Search search...
Sql-ledger Sql-ledger 2.8.24
7.5
CVSSv2
CVE-2008-1870
SQL injection vulnerability in getdata.php in PIGMy-SQL 1.4.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter....
Geek247 Pigmy-sql 1.4Geek247 Pigmy-sql
6.5
CVSSv2
CVE-2012-0337
SQL injection vulnerability in the web component in Cisco Unified MeetingPlace 7.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCtx08939....
Cisco Unified Meetingplace 7.1
7.8
CVSSv2
CVE-2012-5416
Buffer overflow in Cisco Unified MeetingPlace Web Conferencing before 7.1MR1 Patch 1, 8.0 before 8.0MR1 Patch 1, and 8.5 before 8.5MR3 allows remote attackers to cause a denial of service (daemon hang) via unspecified parameters in a POST request, aka Bug ID CSCua66341....
Cisco Unified Meetingplace 7.0Cisco Unified Meetingplace 7.0.1Cisco Unified Meetingplace 7.0.2Cisco Unified Meetingplace 7.0.3Cisco Unified Meetingplace 7.1Cisco Unified MeetingplaceCisco Unified Meetingplace 8.0Cisco Unified Meetingplace 8.5Cisco Unified Meetingplace 8.5.1Cisco Unified Meetingplace 8.5.2Cisco Unified Meetingplace 8.5.3Cisco Unified Meetingplace 8.5.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-2109NULL pointer dereferenceCVE-2021-1300local usersCVE-2021-1250CVE-2020-6207dosCVE-2021-1249CVE-2020-11214