Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-10-31 | CVE-2017-15987 | SQL Injection vulnerability in Fake Magazine Cover Script Project Fake Magazine Cover Script Fake Magazine Cover Script allows SQL Injection via the rate.php value parameter or the content.php id parameter. | 9.8 |
| 2017-10-31 | CVE-2017-15986 | SQL Injection vulnerability in CPA Lead Reward Script Project CPA Lead Reward Script CPA Lead Reward Script allows SQL Injection via the username parameter. | 9.8 |
| 2017-10-31 | CVE-2017-15985 | SQL Injection vulnerability in Readymadeb2Bscript Basic B2B Script Basic B2B Script allows SQL Injection via the product_view1.php pid or id parameter. | 9.8 |
| 2017-10-31 | CVE-2017-15984 | SQL Injection vulnerability in Bekirk Creative Management System Lite 1.4 Creative Management System (CMS) Lite 1.4 allows SQL Injection via the S parameter to index.php. | 9.8 |
| 2017-10-31 | CVE-2017-15983 | SQL Injection vulnerability in Geniusocean Mymagazine Magazine & Blog CMS 1.0 MyMagazine Magazine & Blog CMS 1.0 allows SQL Injection via the id parameter to admin/admin_process.php for form editing. | 9.8 |
| 2017-10-31 | CVE-2017-15982 | SQL Injection vulnerability in Geniusocean News 1.0 Dynamic News Magazine & Blog CMS 1.0 allows SQL Injection via the id parameter to admin/admin_process.php for form editing. | 9.8 |
| 2017-10-31 | CVE-2017-15981 | SQL Injection vulnerability in Geniusocean Newspaper 1.0 Responsive Newspaper Magazine & Blog CMS 1.0 allows SQL Injection via the id parameter to admin/admin_process.php for form editing. | 9.8 |
| 2017-10-31 | CVE-2017-15980 | SQL Injection vulnerability in Rowindex US ZIP Codes Database Script 1.0 US Zip Codes Database Script 1.0 allows SQL Injection via the state parameter. | 9.8 |
| 2017-10-31 | CVE-2017-15979 | SQL Injection vulnerability in Odallated Shareet 1.0 Shareet - Photo Sharing Social Network 1.0 allows SQL Injection via the photo parameter. | 9.8 |
| 2017-10-31 | CVE-2017-15978 | SQL Injection vulnerability in Arox School ERP PHP Script 1.0 AROX School ERP PHP Script 1.0 allows SQL Injection via the office_admin/ id parameter. | 9.8 |