Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2011-10-05 | CVE-2010-4866 | SQL Injection vulnerability in Chipmunk-Scripts Chipmunk Board 1.3 SQL injection vulnerability in index.php in Chipmunk Board 1.3 allows remote attackers to execute arbitrary SQL commands via the forumID parameter. | 7.5 |
2011-10-05 | CVE-2010-4865 | SQL Injection vulnerability in Harmistechnology COM Jeguestbook 1.0 SQL injection vulnerability in the JE Guestbook (com_jeguestbook) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the d_itemid parameter in an item_detail action to index.php. | 7.5 |
2011-10-05 | CVE-2010-4864 | SQL Injection vulnerability in Danieljamesscott COM Clubmanager SQL injection vulnerability in the Club Manager (com_clubmanager) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the cm_id parameter in an equip presenta action to index.php. | 7.5 |
2011-10-05 | CVE-2010-4862 | SQL Injection vulnerability in Harmistechnology COM Jedirectory 1.0 SQL injection vulnerability in the JExtensions JE Directory (com_jedirectory) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in an item action to index.php. | 7.5 |
2011-10-05 | CVE-2010-4861 | SQL Injection vulnerability in Webspell 4.2.1 SQL injection vulnerability in asearch.php in webSPELL 4.2.1 allows remote attackers to execute arbitrary SQL commands via the search parameter. | 7.5 |
2011-10-05 | CVE-2010-4860 | SQL Injection vulnerability in Galaxyscriptz Myphpauction 2010 SQL injection vulnerability in product_desc.php in MyPhpAuction 2010 allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |
2011-10-05 | CVE-2010-4859 | SQL Injection vulnerability in Webasyst Shop-Script SQL injection vulnerability in index.php in WebAsyst Shop-Script allows remote attackers to execute arbitrary SQL commands via the blog_id parameter in a news action. | 7.5 |
2011-10-05 | CVE-2010-4857 | SQL Injection vulnerability in Curtiss Grymala CAG CMS 0.2 SQL injection vulnerability in click.php in CAG CMS 0.2 Beta allows remote attackers to execute arbitrary SQL commands via the itemid parameter. | 7.5 |
2011-10-05 | CVE-2010-4856 | SQL Injection vulnerability in Aspindir Xweblog 2.2 SQL injection vulnerability in arsiv.asp in xWeblog 2.2 allows remote attackers to execute arbitrary SQL commands via the tarih parameter. | 7.5 |
2011-10-05 | CVE-2010-4855 | SQL Injection vulnerability in Aspindir Xweblog 2.2 SQL injection vulnerability in oku.asp in xWeblog 2.2 allows remote attackers to execute arbitrary SQL commands via the makale_id parameter. | 7.5 |