Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

DATE CVE VULNERABILITY TITLE RISK
2017-12-13 CVE-2017-17585 SQL Injection vulnerability in Monster Clone Project Monster Clone 1.0
FS Monster Clone 1.0 has SQL Injection via the Employer_Details.php id parameter.
network
low complexity
monster-clone-project CWE-89
critical
 9.8
9.8
2017-12-13 CVE-2017-17584 SQL Injection vulnerability in Makemytrip Clone Project Makemytrip Clone 1.0
FS Makemytrip Clone 1.0 has SQL Injection via the show-flight-result.php fl_orig or fl_dest parameter.
network
low complexity
makemytrip-clone-project CWE-89
critical
 9.8
9.8
2017-12-13 CVE-2017-17583 SQL Injection vulnerability in Shutterstock Clone Project Shutterstock Clone 1.0
FS Shutterstock Clone 1.0 has SQL Injection via the /Category keywords parameter.
network
low complexity
shutterstock-clone-project CWE-89
critical
 9.8
9.8
2017-12-13 CVE-2017-17582 SQL Injection vulnerability in Grubhub Clone Project Grubhub Clone 1.0
FS Grubhub Clone 1.0 has SQL Injection via the /food keywords parameter.
network
low complexity
grubhub-clone-project CWE-89
critical
 9.8
9.8
2017-12-13 CVE-2017-17581 SQL Injection vulnerability in Quibids Clone Project Quibids Clone 1.0
FS Quibids Clone 1.0 has SQL Injection via the itechd.php productid parameter.
network
low complexity
quibids-clone-project CWE-89
critical
 9.8
9.8
2017-12-13 CVE-2017-17580 SQL Injection vulnerability in Linkedin Clone Project Linkedin Clone 1.0
FS Linkedin Clone 1.0 has SQL Injection via the group.php grid parameter, profile.php fid parameter, or company_details.php id parameter.
network
low complexity
linkedin-clone-project CWE-89
critical
 9.8
9.8
2017-12-13 CVE-2017-17579 SQL Injection vulnerability in Freelancer Clone Project Freelancer Clone 1.0
FS Freelancer Clone 1.0 has SQL Injection via the profile.php u parameter.
network
low complexity
freelancer-clone-project CWE-89
critical
 9.8
9.8
2017-12-13 CVE-2017-17578 SQL Injection vulnerability in Crowdfunding Script Project Crowdfunding Script 1.0
FS Crowdfunding Script 1.0 has SQL Injection via the latest_news_details.php id parameter.
network
low complexity
crowdfunding-script-project CWE-89
critical
 9.8
9.8
2017-12-13 CVE-2017-17577 SQL Injection vulnerability in Trademe Clone Project Trademe Clone 1.0
FS Trademe Clone 1.0 has SQL Injection via the search_item.php search parameter or the general_item_details.php id parameter.
network
low complexity
trademe-clone-project CWE-89
critical
 9.8
9.8
2017-12-13 CVE-2017-17576 SQL Injection vulnerability in Gigs Script Project Gigs Script 1.0
FS Gigs Script 1.0 has SQL Injection via the browse-category.php cat parameter, browse-scategory.php sc parameter, or service-provider.php ser parameter.
network
low complexity
gigs-script-project CWE-89
critical
 9.8
9.8