Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2009-07-27 CVE-2009-2616 SQL Injection vulnerability in Datachecknh Sitepal 1.0
SQL injection vulnerability in z_admin_login.asp in DataCheck Solutions SitePal 1.x allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
network
low complexity
datachecknh CWE-89
7.5
7.5
2009-07-27 CVE-2009-2614 SQL Injection vulnerability in Datachecknh Linkpal 1.0
SQL injection vulnerability in z_admin_login.asp in DataCheck Solutions LinkPal 1.x allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
network
low complexity
datachecknh CWE-89
7.5
7.5
2009-07-27 CVE-2009-2612 SQL Injection vulnerability in Prosmdr
SQL injection vulnerability in login.aspx in ProSMDR allows remote attackers to execute arbitrary SQL commands via the txtUser parameter.
network
low complexity
prosmdr CWE-89
7.5
7.5
2009-07-27 CVE-2009-2609 SQL Injection vulnerability in Amotools COM Amocourse
SQL injection vulnerability in the amoCourse (com_amocourse) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in a category action to index.php.
network
low complexity
joomla amotools CWE-89
7.5
7.5
2009-07-27 CVE-2009-2607 SQL Injection vulnerability in Pinme COM Pinboard
SQL injection vulnerability in the com_pinboard component for Joomla! allows remote attackers to execute arbitrary SQL commands via the task parameter in a showpic action to index.php.
network
low complexity
joomla pinme CWE-89
7.5
7.5
2009-07-27 CVE-2009-2604 SQL Injection vulnerability in Zenhelpdesk ZEN Help Desk 2.1
Multiple SQL injection vulnerabilities in adminlogin.asp in Zen Help Desk 2.1 allow remote attackers to execute arbitrary SQL commands via the (1) userid (aka username) and (2) PassWord parameters to admin.asp.
network
low complexity
zenhelpdesk CWE-89
7.5
7.5
2009-07-27 CVE-2009-2603 SQL Injection vulnerability in E-Supportportal Escon Supportportal PRO 3.0
Multiple SQL injection vulnerabilities in index.php in Escon SupportPortal Pro 3.0 allow remote attackers to execute arbitrary SQL commands via the (1) cat and (2) tid parameters.
network
low complexity
e-supportportal CWE-89
7.5
7.5
2009-07-27 CVE-2009-2601 SQL Injection vulnerability in Joomlaequipment Juser 2.0.4
SQL injection vulnerability in the Joomlaequipment (aka JUser or com_juser) component 2.0.4 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a show_profile action to index.php.
network
low complexity
joomlaequipment joomla CWE-89
7.5
7.5
2009-07-27 CVE-2009-2599 SQL Injection vulnerability in Radscripts Radclassifieds 2.0
SQL injection vulnerability in index.php in RadCLASSIFIEDS Gold 2.0 allows remote attackers to execute arbitrary SQL commands via the seller parameter in a search action.
network
low complexity
radscripts CWE-89
7.5
7.5
2009-07-27 CVE-2009-2597 Unspecified vulnerability in SUN Java System Access Manager Policy Agent 2.2
The Sun Java System (SJS) Access Manager Policy Agent module 2.2 for SJS Web Proxy Server 4.0 allows remote attackers to cause a denial of service (daemon crash) via a GET request.
network
low complexity
sun
7.8
7.8