Vulnerabilities > TPL Design

DATE CVE VULNERABILITY TITLE RISK
2008-07-21 CVE-2008-3251 SQL Injection vulnerability in TPL Design Tplsoccersite 1.0
Multiple SQL injection vulnerabilities in tplSoccerSite 1.0 allow remote attackers to execute arbitrary SQL commands via (1) the opp parameter to tampereunited/opponent.php; or the id parameter to (2) index.php, (3) player.php, (4) matchdetails.php, or (5) additionalpage.php in tampereunited/.
network
low complexity
tpl-design CWE-89
7.5
2006-06-22 CVE-2006-3164 SQL Injection vulnerability in TPL Design TplShop Category.PHP
SQL injection vulnerability in category.php in TPL Design tplShop 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the first_row parameter.
network
low complexity
tpl-design
7.5