Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

DATE	CVE	VULNERABILITY TITLE	RISK
2017-12-13	CVE-2017-17612	SQL Injection vulnerability in HOT Scripts Clone Project HOT Scripts Clone 3.1 Hot Scripts Clone 3.1 has SQL Injection via the /categories subctid or mctid parameter. network low complexity hot-scripts-clone-project CWE-89 critical	9.8
2017-12-13	CVE-2017-17611	SQL Injection vulnerability in Doctor Search Script Project Doctor Search Script 1.0 Doctor Search Script 1.0 has SQL Injection via the /list city parameter. network low complexity doctor-search-script-project CWE-89 critical	9.8
2017-12-13	CVE-2017-17610	SQL Injection vulnerability in E-Commerce MLM Software Project E-Commerce MLM Software 1.0 E-commerce MLM Software 1.0 has SQL Injection via the service_detail.php pid parameter, event_detail.php eventid parameter, or news_detail.php newid parameter. network low complexity e-commerce-mlm-software-project CWE-89 critical	9.8
2017-12-13	CVE-2017-17609	SQL Injection vulnerability in Chartered Accountant Booking Script Project Chartered Accountant Booking Script 1.0 Chartered Accountant Booking Script 1.0 has SQL Injection via the /service-list city parameter. network low complexity chartered-accountant-booking-script-project CWE-89 critical	9.8
2017-12-13	CVE-2017-17608	SQL Injection vulnerability in Kindergarten - Elementary School Listing Script Project Kindergarten - Elementary School Listing Script 1.0 Child Care Script 1.0 has SQL Injection via the /list city parameter. network low complexity kindergarten-elementary-school-listing-script-project CWE-89 critical	9.8
2017-12-13	CVE-2017-17607	SQL Injection vulnerability in CMS Auditor Website Project CMS Auditor Website 1.0 CMS Auditor Website 1.0 has SQL Injection via the PATH_INFO to /news-detail. network low complexity cms-auditor-website-project CWE-89 critical	9.8
2017-12-13	CVE-2017-17606	SQL Injection vulnerability in Co-Work Space Search Script Project Co-Work Space Search Script 1.0 Co-work Space Search Script 1.0 has SQL Injection via the /list city parameter. network low complexity co-work-space-search-script-project CWE-89 critical	9.8
2017-12-13	CVE-2017-17605	SQL Injection vulnerability in Consumer Complaints Clone Script Project Consumer Complaints Clone Script 1.0 Consumer Complaints Clone Script 1.0 has SQL Injection via the other-user-profile.php id parameter. network low complexity consumer-complaints-clone-script-project CWE-89 critical	9.8
2017-12-13	CVE-2017-17604	SQL Injection vulnerability in Entrepreneur BUS Booking Script Project Entrepreneur BUS Booking Script 3.0.4 Entrepreneur Bus Booking Script 3.0.4 has SQL Injection via the booker_details.php sourcebus parameter. network low complexity entrepreneur-bus-booking-script-project CWE-89 critical	9.8
2017-12-13	CVE-2017-17603	SQL Injection vulnerability in Advanced Real Estate Script Project Advanced Real Estate Script 4.0.7 Advanced Real Estate Script 4.0.7 has SQL Injection via the search-results.php Projectmain, proj_type, searchtext, sell_price, or maxprice parameter. network low complexity advanced-real-estate-script-project CWE-89 critical	9.8