Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2002-12-31 | CVE-2002-2383 | SQL Injection vulnerability in F2Html.Pl SQL injection vulnerability in f2html.pl 0.1 through 0.4 allows remote attackers to execute arbitrary SQL commands via file names. | 7.5 |
2002-12-31 | CVE-2002-2305 | SQL Injection vulnerability in PHPsecure.Org Immobilier 1.0 SQL injection vulnerability in agentadmin.php in Immobilier allows remote attackers to execute arbitrary SQL commands via the (1) agentname or (2) agentpassword parameter. | 7.5 |
2002-12-31 | CVE-2002-2304 | SQL Injection vulnerability in Myphpsoft Myphplinks 2.1.9/2.2.0 SQL injection vulnerability in admin/auth/checksession.php in MyPHPLinks 2.1.9 and 2.2.0 allows remote attackers to execute arbitrary SQL commands via the idsession parameter. | 7.5 |
2002-12-31 | CVE-2002-2277 | SQL Injection vulnerability in Portail web PHP Portail web PHP 0.99 SQL injection vulnerability in mod_search/index.php in PortailPHP 0.99 allows remote attackers to execute arbitrary SQL commands via the (1) $rech, (2) $BD_Tab_docs, (3) $BD_Tab_file, (4) $BD_Tab_liens, (5) $BD_Tab_faq, or (6) $chemin variables. | 7.5 |
2002-12-31 | CVE-2002-2252 | SQL Injection vulnerability in Atthat.Com Thatware SQL injection vulnerability in auth.inc.php in Thatware 0.5.0 and earlier allows remote attackers to execute arbitrary SQL commands via a base64-encoded user parameter. | 7.5 |