Vulnerabilities > TPL Design
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-07-21 | CVE-2008-3251 | SQL Injection vulnerability in TPL Design Tplsoccersite 1.0 Multiple SQL injection vulnerabilities in tplSoccerSite 1.0 allow remote attackers to execute arbitrary SQL commands via (1) the opp parameter to tampereunited/opponent.php; or the id parameter to (2) index.php, (3) player.php, (4) matchdetails.php, or (5) additionalpage.php in tampereunited/. | 7.5 |
2006-06-22 | CVE-2006-3164 | SQL Injection vulnerability in TPL Design TplShop Category.PHP SQL injection vulnerability in category.php in TPL Design tplShop 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the first_row parameter. | 7.5 |