Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2010-03-23 | CVE-2010-1045 | SQL Injection vulnerability in Design-Cars COM Productbook 1.0.4 SQL injection vulnerability in the Productbook (com_productbook) component 1.0.4 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action to index.php. | 7.5 |
| 2010-03-23 | CVE-2010-1044 | SQL Injection vulnerability in Manageengine Oputils 5.0 SQL injection vulnerability in Login.do in ManageEngine OpUtils 5.0 allows remote attackers to execute arbitrary SQL commands via the isHttpPort parameter. | 7.5 |
| 2010-03-19 | CVE-2010-1027 | SQL Injection vulnerability in Dietmar Schffer Travelmate SQL injection vulnerability in the Meet Travelmates (travelmate) extension 0.1.1 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. | 7.5 |
| 2010-03-19 | CVE-2010-1026 | SQL Injection vulnerability in Mathon Nicolas Tmsw Cleandb 2.0.1 SQL injection vulnerability in the CleanDB - DBAL (tmsw_cleandb) extension 2.1.0 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. | 7.5 |
| 2010-03-19 | CVE-2010-1024 | SQL Injection vulnerability in Chris Wederka TGM Newsletter 0.0.2 SQL injection vulnerability in the TGM-Newsletter (tgm_newsletter) extension 0.0.2 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. | 7.5 |
| 2010-03-19 | CVE-2010-1019 | SQL Injection vulnerability in Sk-Typo3 SK Simplegallery 0.0.1 SQL injection vulnerability in the Simple Gallery (sk_simplegallery) extension 0.0.9 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. | 7.5 |
| 2010-03-19 | CVE-2010-1018 | SQL Injection vulnerability in Jochen RAU SK Bookreview SQL injection vulnerability in the Book Reviews (sk_bookreview) extension 0.0.12 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. | 7.5 |
| 2010-03-19 | CVE-2010-1017 | SQL Injection vulnerability in Laurent Foulloy SAV Filter Months SQL injection vulnerability in the SAV Filter Months (sav_filter_months) extension before 1.0.5 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. | 7.5 |
| 2010-03-19 | CVE-2010-1016 | SQL Injection vulnerability in Laurent Foulloy SAV Filter Selectors 1.0.1/1.0.2/1.0.3 SQL injection vulnerability in the SAV Filter Selectors (sav_filter_selectors) extension before 1.0.5 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. | 7.5 |
| 2010-03-19 | CVE-2010-1015 | SQL Injection vulnerability in Laurent Foulloy SAV Filter ABC SQL injection vulnerability in the SAV Filter Alphabetic (sav_filter_abc) extension before 1.0.9 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. | 7.5 |