Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-01-31 | CVE-2008-0520 | SQL Injection vulnerability in Wordpress Wassup Plugin 1.4 Multiple SQL injection vulnerabilities in main.php in the WassUp plugin 1.4 through 1.4.3 for WordPress allow remote attackers to execute arbitrary SQL commands via the (1) from_date or (2) to_date parameter to spy.php. | 7.5 |
| 2008-01-31 | CVE-2008-0519 | SQL Injection vulnerability in multiple products SQL injection vulnerability in index.php in the Atapin Jokes (com_jokes) 1.0 component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the cat parameter in a CatView action. | 7.5 |
| 2008-01-31 | CVE-2008-0518 | SQL Injection vulnerability in multiple products SQL injection vulnerability in index.php in the Recipes (com_recipes) 1.00 component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action. | 7.5 |
| 2008-01-31 | CVE-2008-0517 | SQL Injection vulnerability in multiple products SQL injection vulnerability in index.php in the Darko Selesi EstateAgent (com_estateagent) 0.1 component for Mambo 4.5.x and Joomla! allows remote attackers to execute arbitrary SQL commands via the objid parameter in a contact showObject action. | 7.5 |
| 2008-01-31 | CVE-2008-0515 | SQL Injection vulnerability in multiple products SQL injection vulnerability in index.php in the musepoes (com_musepoes) component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the aid parameter in an answer action. | 7.5 |
| 2008-01-31 | CVE-2008-0514 | SQL Injection vulnerability in multiple products SQL injection vulnerability in index.php in the Glossary (com_glossary) 2.0 component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in a display action. | 7.5 |
| 2008-01-31 | CVE-2008-0512 | SQL Injection vulnerability in Joomla COM FQ SQL injection vulnerability in index.php in the fq (com_fq) component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the listid parameter. | 7.5 |
| 2008-01-31 | CVE-2008-0511 | SQL Injection vulnerability in multiple products SQL injection vulnerability in index.php in the MaMML (com_mamml) component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the listid parameter. | 7.5 |
| 2008-01-31 | CVE-2008-0510 | SQL Injection vulnerability in multiple products SQL injection vulnerability in index.php in the Newsletter (com_newsletter) component for Mambo 4.5 and Joomla! allows remote attackers to execute arbitrary SQL commands via the listid parameter. | 7.5 |
| 2008-01-31 | CVE-2008-0507 | SQL Injection vulnerability in Wordpress Adserve 0.2 SQL injection vulnerability in adclick.php in the AdServe 0.2 plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |