Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-12-28 | CVE-2007-6580 | SQL Injection vulnerability in Wallpaper Complete Website 1.0.09 Multiple SQL injection vulnerabilities in Wallpaper Site 1.0.09 allow remote attackers to execute arbitrary SQL commands via (1) the catid parameter to category.php or (2) the groupid parameter to editadgroup.php. | 7.5 |
| 2007-12-28 | CVE-2007-6579 | SQL Injection vulnerability in IP REG IP REG 0.3 Multiple SQL injection vulnerabilities in Ip Reg 0.3 allow remote attackers to execute arbitrary SQL commands via the vlan_id parameter to (1) vlanview.php, (2) vlanedit.php, and (3) vlandel.php; the (4) assetclassgroup_id parameter to assetclassgroupview.php; the (5) subnet_id parameter to nodelist.php; and unspecified other vectors. | 7.5 |
| 2007-12-28 | CVE-2007-6578 | SQL Injection vulnerability in Zeak.Net PHP Zlink 0.3 SQL injection vulnerability in go.php in PHP ZLink 0.3 allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |
| 2007-12-28 | CVE-2007-6577 | SQL Injection vulnerability in Zsuite Zblog 1.2 Multiple SQL injection vulnerabilities in index.php in zBlog 1.2 allow remote attackers to execute arbitrary SQL commands via (1) the categ parameter in a categ action or (2) the article parameter in an articles action. | 7.5 |
| 2007-12-28 | CVE-2007-6576 | SQL Injection vulnerability in Adultscript Multiple SQL injection vulnerabilities in Adult Script 1.6.5 and earlier allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) videolink_count.php or (2) links.php. | 7.5 |
| 2007-12-28 | CVE-2007-6575 | SQL Injection vulnerability in Brand039 Mmslamp 1.0 SQL injection vulnerability in default.php in MMSLamp allows remote attackers to execute arbitrary SQL commands via the idpro parameter in a prodotti_dettaglio action. | 7.5 |
| 2007-12-28 | CVE-2007-6566 | SQL Injection vulnerability in Xzero Scripts Xzero Community Classifieds 4.95.11 SQL injection vulnerability in post.php in XZero Community Classifieds 4.95.11 and earlier allows remote attackers to execute arbitrary SQL commands via the subcatid parameter to index.php. | 7.5 |
| 2007-12-28 | CVE-2007-6565 | SQL Injection vulnerability in Blakord Portal Multiple SQL injection vulnerabilities in Blakord Portal 1.3.A Beta and earlier allow remote attackers to execute arbitrary SQL commands via the id parameter to an arbitrary component. | 7.5 |
| 2007-12-28 | CVE-2007-6559 | SQL Injection vulnerability in Logaholic 0 Multiple SQL injection vulnerabilities in Logaholic before 2.0 RC8 allow remote attackers to execute arbitrary SQL commands via (1) the from parameter to index.php or (2) the page parameter to update.php. | 7.5 |
| 2007-12-28 | CVE-2007-6557 | SQL Injection vulnerability in Megacheatz 1.1 Multiple SQL injection vulnerabilities in MeGaCheatZ 1.1 allow remote attackers to execute arbitrary SQL commands via the ItemID parameter to (1) comments.php, (2) view.php, (3) siteadmin/ViewItem.php, and unspecified other vectors. | 7.5 |