Vulnerabilities > Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2011-07-28 | CVE-2011-2688 | SQL Injection vulnerability in multiple products SQL injection vulnerability in mysql/mysql-auth.pl in the mod_authnz_external module 3.2.5 and earlier for the Apache HTTP Server allows remote attackers to execute arbitrary SQL commands via the user field. | 7.5 |
2011-07-27 | CVE-2011-2467 | SQL Injection vulnerability in Likewise Open 5.4/6.0/6.1 SQL injection vulnerability in lsassd in Lsass in the Likewise Security Authority in Likewise Open 5.4 through 6.1, and Likewise Enterprise 6.0, allows local users to execute arbitrary SQL commands via unspecified vectors. | 5.8 |
2011-07-17 | CVE-2011-2751 | SQL Injection vulnerability in Parodia 6.2/6.4 SQL injection vulnerability in Parodia before 6.809 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. | 7.5 |
2011-07-11 | CVE-2011-0549 | SQL Injection vulnerability in Symantec web Gateway SQL injection vulnerability in forget.php in the management GUI in Symantec Web Gateway 4.5.x allows remote attackers to execute arbitrary SQL commands via the username parameter. | 7.5 |
2011-07-08 | CVE-2010-4814 | SQL Injection vulnerability in Bestsoftinc Advance Hotel Booking System 1.0 SQL injection vulnerability in index1.php in Best Soft Inc. | 7.5 |
2011-07-08 | CVE-2010-4812 | SQL Injection vulnerability in 6Kbbs 8.0 Multiple SQL injection vulnerabilities in 6kbbs 8.0 build 20100901 allow remote attackers to execute arbitrary SQL commands via the (1) tids[] parameter to ajaxadmin.php and the (2) msgids[] parameter to ajaxmember.php. | 6.5 |
2011-07-08 | CVE-2010-4809 | SQL Injection vulnerability in Liberologico Dbsite 1.0 SQL injection vulnerability in index.php in DBSite 1.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter. | 7.5 |
2011-07-08 | CVE-2010-4808 | SQL Injection vulnerability in Valarsoft Webmatic SQL injection vulnerability in index.php in Webmatic allows remote attackers to execute arbitrary SQL commands via the p parameter. | 7.5 |
2011-06-29 | CVE-2011-2181 | SQL Injection vulnerability in Reallysimplechat Really Simple Chat 3.3 Multiple SQL injection vulnerabilities in A Really Simple Chat (ARSC) 3.3-rc2 allow remote attackers to execute arbitrary SQL commands via the (1) arsc_user parameter to base/admin/edit_user.php, (2) arsc_layout_id parameter in base/admin/edit_layout.php, or (3) arsc_room parameter to base/admin/edit_room.php. | 7.5 |
2011-05-24 | CVE-2011-1328 | SQL Injection vulnerability in Radvision Iview Suite 5.5/5.7/7.0 SQL injection vulnerability in RADVISION iVIEW Suite before 7.5 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. | 7.5 |