Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2011-10-08 | CVE-2010-4912 | SQL Injection vulnerability in Discuz Ucenter Home 2.0 SQL injection vulnerability in shop.php in UCenter Home 2.0 allows remote attackers to execute arbitrary SQL commands via the shopid parameter in a view action. | 7.5 |
| 2011-10-08 | CVE-2010-4911 | SQL Injection vulnerability in Sellatsite PHP Classifieds ADS SQL injection vulnerability in classi/detail.php in PHP Classifieds Ads allows remote attackers to execute arbitrary SQL commands via the sid parameter. | 7.5 |
| 2011-10-08 | CVE-2010-4910 | SQL Injection vulnerability in Coldgen Coldcalendar 2.06 SQL injection vulnerability in index.cfm in ColdGen ColdCalendar 2.06 allows remote attackers to execute arbitrary SQL commands via the EventID parameter in a ViewEventDetails action. | 7.5 |
| 2011-10-08 | CVE-2010-4908 | SQL Injection vulnerability in Virtuenetz Virtue Shopping Mall SQL injection vulnerability in detail.php in Virtue Shopping Mall allows remote attackers to execute arbitrary SQL commands via the prodid parameter. | 7.5 |
| 2011-10-08 | CVE-2010-4906 | SQL Injection vulnerability in Zenphoto 1.3/1.3.1.2 SQL injection vulnerability in zp-core/full-image.php in Zenphoto 1.3 and 1.3.1.2 allows remote attackers to execute arbitrary SQL commands via the a parameter. | 7.5 |
| 2011-10-08 | CVE-2010-4905 | SQL Injection vulnerability in Softbizscripts Article Directory Script SQL injection vulnerability in article_details.php in Softbiz Article Directory Script allows remote attackers to execute arbitrary SQL commands via the sbiz_id parameter. | 7.5 |
| 2011-10-08 | CVE-2010-4904 | SQL Injection vulnerability in Simon Philips COM Aardvertiser 2.1/2.1.1 SQL injection vulnerability in the Aardvertiser (com_aardvertiser) component 2.1 and 2.1.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the cat_name parameter in a view action to index.php. | 7.5 |
| 2011-10-08 | CVE-2010-4903 | SQL Injection vulnerability in Cubecart 4.3.3 SQL injection vulnerability in index.php in CubeCart 4.3.3 allows remote attackers to execute arbitrary SQL commands via the searchStr parameter. | 7.5 |
| 2011-10-08 | CVE-2010-4902 | SQL Injection vulnerability in Joomla-Clantools Clantools Comclantools Multiple SQL injection vulnerabilities in the Clantools (com_clantools) component 1.2.3 for Joomla! allow remote attackers to execute arbitrary SQL commands via the (1) squad or (2) showgame parameter to index.php. | 7.5 |
| 2011-10-08 | CVE-2010-4899 | SQL Injection vulnerability in Webmanager-Pro CMS Webmanager-Pro SQL injection vulnerability in c.php in CMS WebManager-Pro before 8.1 allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |