Vulnerabilities > Dmxready > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2011-10-08 | CVE-2010-4921 | SQL Injection vulnerability in Dmxready Polling Booth Manager SQL injection vulnerability in inc_pollingboothmanager.asp in DMXReady Polling Booth Manager allows remote attackers to execute arbitrary SQL commands via the QuestionID parameter in a results action. | 7.5 |
| 2010-06-21 | CVE-2010-2342 | SQL Injection vulnerability in Dmxready Online Notebook Manager 1.0 SQL injection vulnerability in onlinenotebookmanager.asp in DMXReady Online Notebook Manager 1.0 allows remote attackers to execute arbitrary SQL commands via the ItemID parameter. | 7.5 |
| 2009-02-10 | CVE-2009-0454 | SQL Injection vulnerability in Dmxready Online Notebook Manager 1.1 Multiple SQL injection vulnerabilities in DMXReady Online Notebook Manager 1.1 allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password field. | 7.5 |
| 2009-02-05 | CVE-2009-0428 | SQL Injection vulnerability in Dmxready Secure Document Library 1.0 SQL injection vulnerability in CategoryManager/upload_image_category.asp in DMXReady Secure Document Library 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the cid parameter. | 7.5 |
| 2009-02-05 | CVE-2009-0427 | SQL Injection vulnerability in Dmxready Member Directory Manager 1.1 SQL injection vulnerability in CategoryManager/upload_image_category.asp in DMXReady Member Directory Manager 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the cid parameter. | 7.5 |
| 2009-02-05 | CVE-2009-0426 | SQL Injection vulnerability in Dmxready Classified Listings Manager 1.1 SQL injection vulnerability in CategoryManager/upload_image_category.asp in DMXReady Classified Listings Manager 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the cid parameter. | 7.5 |
| 2009-01-29 | CVE-2009-0339 | SQL Injection vulnerability in Dmxready Blog Manager NIL SQL injection vulnerability in inc_webblogmanager.asp in DMXReady Blog Manager allows remote attackers to execute arbitrary SQL commands via the itemID parameter in a view action. | 7.5 |
| 2007-03-06 | CVE-2006-7118 | SQL Injection vulnerability in Dmxready Site Engine Manager 1.0 SQL injection vulnerability in index.asp in DMXReady Site Engine Manager 1.0 allows remote attackers to execute arbitrary SQL commands via the mid parameter. | 7.5 |
| 2006-12-29 | CVE-2006-6816 | SQL Injection vulnerability in Dmxready Secure Login Manager 1.0 Multiple SQL injection vulnerabilities in DMXReady Secure Login Manager 1.0 allow remote attackers to execute arbitrary SQL commands via unspecified parameters to (1) set_preferences.asp, (2) send_password_preferences.asp, and (3) SecureLoginManager/list.asp in the Local-Admin Panel; (4) the sent parameter to (a) login.asp, (b) content.asp, and (c) members.asp in the Remote-WebSite; and (5) the sent parameter to applications/SecureLoginManager/inc_secureloginmanager.asp in the Live Demo. | 7.5 |
| 2004-12-31 | CVE-2004-2189 | Cross-Site Scripting And SQL Injection vulnerability in DMXReady Site Chassis Manager SQL injection vulnerability in DMXReady Site Chassis Manager allows remote attackers to execute arbitrary SQL commands via unknown vectors. | 7.5 |