Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2010-03-24 | CVE-2010-1096 | SQL Injection vulnerability in Scriptsfeed Dating Software Multiple SQL injection vulnerabilities in searchmatch.php in ScriptsFeed Dating Software allow remote attackers to execute arbitrary SQL commands via the (1) txtgender and (2) txtlookgender parameters. | 7.5 |
2010-03-24 | CVE-2010-1094 | SQL Injection vulnerability in Miethner-Scripting DZ Erotik Auktionshaus V4Rgo SQL injection vulnerability in news.php in DZ EROTIK Auktionshaus V4rgo allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |
2010-03-24 | CVE-2010-1093 | SQL Injection vulnerability in 1024Cms 1024 CMS 2.1.1 SQL injection vulnerability in rss.php in 1024 CMS 2.1.1, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the id parameter in a vp action. | 6.8 |
2010-03-24 | CVE-2010-1092 | SQL Injection vulnerability in Scriptsfeed Business Directory Software Multiple SQL injection vulnerabilities in login.php in ScriptsFeed Business Directory Software allow remote attackers to execute arbitrary SQL commands via the (1) us and (2) ps parameters. | 7.5 |
2010-03-24 | CVE-2010-1090 | SQL Injection vulnerability in PHPmysite SQL injection vulnerability in index.php in phpMySite allows remote attackers to execute arbitrary SQL commands via the action parameter. | 7.5 |
2010-03-24 | CVE-2010-1089 | SQL Injection vulnerability in PHPtroubleticket PHP Trouble Ticket 2.2 SQL injection vulnerability in vedi_faq.php in PHP Trouble Ticket 2.2 allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |
2010-03-23 | CVE-2010-1078 | SQL Injection vulnerability in Sphere.Xlentprojects Spherecms 1.1 SQL injection vulnerability in archive.php in XlentProjects SphereCMS 1.1 alpha allows remote attackers to execute arbitrary SQL commands via encoded null bytes ("%00") in the view parameter, which bypasses a protection mechanism. | 7.5 |
2010-03-23 | CVE-2010-1075 | SQL Injection vulnerability in Entrylevelcms EL CMS SQL injection vulnerability in index.php in Entry Level CMS (EL CMS) allows remote attackers to execute arbitrary SQL commands via the subj parameter. | 7.5 |
2010-03-23 | CVE-2010-1073 | SQL Injection vulnerability in Joshprakash COM Jembed SQL injection vulnerability in the jEmbed-Embed Anything (com_jembed) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in a summary action to index.php. | 7.5 |
2010-03-23 | CVE-2010-1071 | SQL Injection vulnerability in PHPmdj 1.0.3 SQL injection vulnerability in profil.php in phpMDJ 1.0.3 allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |