Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

DATE CVE VULNERABILITY TITLE RISK
2017-12-13 CVE-2017-17579 SQL Injection vulnerability in Freelancer Clone Project Freelancer Clone 1.0
FS Freelancer Clone 1.0 has SQL Injection via the profile.php u parameter.
network
low complexity
freelancer-clone-project CWE-89
critical
 9.8
9.8
2017-12-13 CVE-2017-17578 SQL Injection vulnerability in Crowdfunding Script Project Crowdfunding Script 1.0
FS Crowdfunding Script 1.0 has SQL Injection via the latest_news_details.php id parameter.
network
low complexity
crowdfunding-script-project CWE-89
critical
 9.8
9.8
2017-12-13 CVE-2017-17577 SQL Injection vulnerability in Trademe Clone Project Trademe Clone 1.0
FS Trademe Clone 1.0 has SQL Injection via the search_item.php search parameter or the general_item_details.php id parameter.
network
low complexity
trademe-clone-project CWE-89
critical
 9.8
9.8
2017-12-13 CVE-2017-17576 SQL Injection vulnerability in Gigs Script Project Gigs Script 1.0
FS Gigs Script 1.0 has SQL Injection via the browse-category.php cat parameter, browse-scategory.php sc parameter, or service-provider.php ser parameter.
network
low complexity
gigs-script-project CWE-89
critical
 9.8
9.8
2017-12-13 CVE-2017-17575 SQL Injection vulnerability in Groupon Clone Project Groupon Clone 1.0
FS Groupon Clone 1.0 has SQL Injection via the item_details.php id parameter or the vendor_details.php id parameter.
network
low complexity
groupon-clone-project CWE-89
critical
 9.8
9.8
2017-12-13 CVE-2017-17574 SQL Injection vulnerability in Care Clone Project Care Clone 1.0
FS Care Clone 1.0 has SQL Injection via the searchJob.php jobType or jobFrequency parameter.
network
low complexity
care-clone-project CWE-89
critical
 9.8
9.8
2017-12-13 CVE-2017-17573 SQL Injection vulnerability in Fortunescripts Ebay Clone 1.0
FS Ebay Clone 1.0 has SQL Injection via the product.php id parameter, or the search.php category_id or sub_category_id parameter.
network
low complexity
fortunescripts CWE-89
critical
 9.8
9.8
2017-12-13 CVE-2017-17572 SQL Injection vulnerability in Amazon Clone Project Amazon Clone 1.0
FS Amazon Clone 1.0 has SQL Injection via the PATH_INFO to /VerAyari.
network
low complexity
amazon-clone-project CWE-89
critical
 9.8
9.8
2017-12-13 CVE-2017-17571 SQL Injection vulnerability in Foodpanda Clone Project Foodpanda Clone 1.0
FS Foodpanda Clone 1.0 has SQL Injection via the /food keywords parameter.
network
low complexity
foodpanda-clone-project CWE-89
critical
 9.8
9.8
2017-12-13 CVE-2017-17570 SQL Injection vulnerability in Expedia Clone Project Expedia Clone 1.0
FS Expedia Clone 1.0 has SQL Injection via the pages.php or content.php id parameter, or the show-flight-result.php fl_orig or fl_dest parameter.
network
low complexity
expedia-clone-project CWE-89
critical
 9.8
9.8