CVE-2004-1113
SQL injection vulnerability in SQLgrey Postfix greylisting service before 1.2.0 allows remote attack
SQL injection vulnerability in SQLgrey Postfix greylisting service before 1.2.0 allows remote attack
SQL injection vulnerability in (1) fdelmail.asp, (2) addressc.asp, and possibly (3) postmail.asp and
SQL injection vulnerability in SugarCRM Sugar Sales before 2.0.1a allows remote attackers to execute
SQL injection vulnerability in calendar.php for Invision Power Board 1.3 allows remote attackers to
Multiple SQL injection vulnerabilities in ReviewPost PHP Pro before 2.84 allow remote attackers to e
SQL injection vulnerability in addentry.php in Woltlab Burning Book 1.0 Gold, 1.1.1e, and possibly o
SQL injection vulnerability in (1) functions.php, (2) functions_update.php, and (3) functions_displa
SQL injection vulnerability in index.php in PHPjournaler 1.0 allows remote attackers to execute arbi
SQL injection vulnerability in login.php in VEGO Links Builder 2.00 and earlier allows remote attack
SQL injection vulnerability in Primo Cart 1.0 and earlier allows remote attackers to execute arbitra
SQL injection vulnerability in profile.php in PHPenpals allows remote attackers to execute arbitrary
SQL injection vulnerability in auth.php in ScozNet ScozBook BETA 1.1 allows remote attackers to exec
SQL injection vulnerability in Nkads 1.0 alfa 3 allows remote attackers to execute arbitrary SQL com
SQL injection vulnerability in (1) pages.php and (2) detail.php in Lizard Cart CMS 1.04 allows remot
SQL injection vulnerability in intouch.lib.php in inTouch 0.5.1 Alpha allows remote attackers to exe
SQL injection vulnerability in Timecan CMS allows remote attackers to execute arbitrary SQL commands
SQL injection vulnerability in mcl_login.asp in Timecan CMS allows remote attackers to execute arbit
Multiple SQL injection vulnerabilities in OnePlug Solutions OnePlug CMS allow remote attackers to ex
Multiple SQL injection vulnerabilities in ADN Forum 1.0b allow remote attackers to execute arbitrary
SQL injection vulnerability in login.php in TheWebForum (twf) 1.2.1 allows remote attackers to execu
SQL injection vulnerability in linkcategory.php in Phanatic Softwares Chimera Web Portal System 0.2
SQL injection vulnerability in showthread.php in 427BB 2.2 and 2.2.1 allows remote attackers to exec
SQL injection vulnerability in index.php in CyberDoc SiteSuite CMS allows remote attackers to execut
SQL injection vulnerability in escribir.php in Foro Domus 2.10 allows remote attackers to execute ar
SQL injection vulnerability in add_post.php3 in Venom Board 1.22 allows remote attackers to execute
SQL injection vulnerability in the search module (modules/Search/index.php) of PHPNuke EV 7.7 -R1 al
SQL injection vulnerability in MyPhPim 01.05 allows remote attackers to execute arbitrary SQL comman
Multiple SQL injection vulnerabilities in AspTopSites allow remote attackers to execute arbitrary SQ
SQL injection vulnerability in Deadlock User Management System (phpdeadlock) 0.64 and earlier allows
SQL injection vulnerability in newsletters/edition.php in bitweaver 1.3.1 and earlier allows remote
Multiple SQL injection vulnerabilities in Rialto 1.6 allow remote attackers to execute arbitrary SQL
SQL injection vulnerability in viewad.asp in Rapid Classified 3.1 allows remote attackers to execute
SQL injection vulnerability in haberdetay.asp in Vizayn Haber allows remote attackers to execute arb
SQL injection vulnerability in detail.asp in ASP SiteWare autoDealer 2.0 and earlier allows remote a
SQL injection vulnerability in productdetail.asp in E-SMARTCART 1.0 allows remote attackers to execu
SQL injection vulnerability in page.php in Simple Web Content Management System allows remote attack
WordPress before 2.0.6, when mbstring is enabled for PHP, decodes alternate character sets after esc
SQL injection vulnerability in cats.asp in createauction allows remote attackers to execute arbitrar
Multiple SQL injection vulnerabilities in Coppermine Photo Gallery 1.4.10 and earlier allow remote a
SQL injection vulnerability in info_book.asp in Digirez 3.4 and earlier allows remote attackers to e
SQL injection vulnerability in main.asp in LocazoList 2.01a beta5 and earlier allows remote attacker
SQL injection vulnerability in user.php in iGeneric iG Calendar 1.0 allows remote attackers to execu
SQL injection vulnerability in compare_product.php in iGeneric iG Shop 1.4 allows remote attackers t
Multiple SQL injection vulnerabilities in display_review.php in iGeneric iG Shop 1.4 and earlier all
SQL injection vulnerability in down.asp in Kolayindir Download (Yenionline) allows remote attackers
SQL injection vulnerability in orange.asp in ShopStoreNow E-commerce Shopping Cart allows remote att
SQL injection vulnerability in comment.php in PHPKIT 1.6.1 R2 allows remote attackers to execute arb
SQL injection vulnerability in admin_check_user.asp in Motionborg Web Real Estate 2.1 and earlier al
SQL injection vulnerability in index.php in @lex Guestbook 4.0.2 and earlier, when magic_quotes_gpc
SQL injection vulnerability in shared/code/cp_functions_downloads.php in Nicola Asuni All In One Con
SQL injection vulnerability in shopgiftregsearch.asp in VP-ASP Shopping Cart 6.09 and earlier allows
SQL injection vulnerability in wbsearch.aspx in uniForum 4 and earlier allows remote attackers to ex
Multiple SQL injection vulnerabilities in Layton HelpBox 3.7.1 allow (1) remote attackers to execute
SQL injection vulnerability in security.php in ZeusCMS 0.3 and earlier allows remote attackers to ex
Multiple SQL injection vulnerabilities in FAQMasterFlexPlus, possibly 1.5 or 1.52, allow remote atta
SQL injection vulnerability in index.php in IPTBB 0.5.4 and earlier allows remote attackers to execu
SQL injection vulnerability in index.php in w-Agora 4.2.1 and earlier allows remote attackers to exe
SQL injection vulnerability in content_css.php in the TinyMCE module for CMS Made Simple 1.2.2 and e
SQL injection vulnerability in admin.php/vars.php in CustomCMS (CCMS) 3.1 Demo allows remote attacke
SQL injection vulnerability in (1) Puarcade.php and (2) PUarcade.html.php in Pragmatic Utopia PU Arc
SQL injection vulnerability in index.php in WebPortal CMS 0.6.0 and earlier allows remote attackers
SQL injection vulnerability in admin/login.asp in Netchemia oneSCHOOL allows remote attackers to exe
SQL injection vulnerability in rss.php in Zenphoto 1.1 through 1.1.3 allows remote attackers to exec
SQL injection vulnerability in faq.php in MyPHP Forum 3.0 and earlier allows remote attackers to exe
SQL injection vulnerability in search.php in PHCDownload 1.1.0 allows remote attackers to execute ar
SQL injection vulnerability in login_form.asp in Instant Softwares Dating Site allows remote attacke
SQL injection vulnerability in uprofile.php in ClipShare allows remote attackers to execute arbitrar
Multiple SQL injection vulnerabilities in MyPHP Forum 3.0 and earlier allow remote attackers to exec
SQL injection vulnerability in starnet/addons/slideshow_full.php in Site@School 2.3.10 and earlier a
SQL injection vulnerability in login_form.asp in Instant Softwares Dating Site allows remote attacke
Multiple SQL injection vulnerabilities in Tribisur 2.1 and earlier allow remote attackers to execute
Multiple SQL injection vulnerabilities in WebPortal CMS 0.6-beta allow remote attackers to execute a
SQL injection vulnerability in index.php in SmallNuke 2.0.4 and earlier, when magic_quotes_gpc is di
SQL injection vulnerability in index.php in EvilBoard 0.1a (Alpha) allows remote attackers to execut
SQL injection vulnerability in FlexBB 0.6.3 and earlier allows remote attackers to execute arbitrary
SQL injection vulnerability in index.php in eggBlog 3.1.0 and earlier allows remote attackers to exe
SQL injection vulnerability in index.php in NetRisk 1.9.7 and possibly earlier versions allows remot
SQL injection vulnerability in songinfo.php in SAM Broadcaster samPHPweb, possibly 4.2.2 and earlier
SQL injection vulnerability in soporte_horizontal_w.php in PHP Webquest 2.6 allows remote attackers
SQL injection vulnerability in index.php in the Newbb_plus 0.92 and earlier module in RunCMS 1.6.1 a
Multiple SQL injection vulnerabilities in Zero CMS 1.0 Alpha allow remote attackers to execute arbit
SQL injection vulnerability in the create function in common/include/GroupJoinRequest.class in GForg
SQL injection vulnerability in the PaxGallery (com_paxgallery) component 0.1 for Joomla! allows remo
SQL injection vulnerability in inc/rubriques.php in SPIP 1.8 before 1.8.3b, 1.9 before 1.9.2g, and 2
SQL injection vulnerability in Acomment.php in phpAlumni allows remote attackers to execute arbitrar
SQL injection vulnerability in repository.php in ILIAS 3.7.4 and earlier allows remote attackers to
Multiple SQL injection vulnerabilities in index.php in Web Scribble Solutions webClassifieds 2005 al
SQL injection vulnerability in eDNews_view.php in eDreamers eDNews 2 allows remote attackers to exec
SQL injection vulnerability in search_results.php in E-Php Scripts E-Shop (aka E-Php Shopping Cart)
Multiple SQL injection vulnerabilities in iGaming 1.5 and earlier allow remote attackers to execute
PHP 5.2.7 contains an incorrect change to the FILTER_UNSAFE_RAW functionality, and unintentionally d
SQL injection vulnerability in index.php in My PHP Baseball Stats (MyPBS) allows remote attackers to
SQL injection vulnerability in index.php in Constructr CMS 3.02.5 and earlier, when register_globals
SQL injection vulnerability in locator.php in the Userlocator module 3.0 for Woltlab Burning Board (
SQL injection vulnerability in the Top Hotel (com_tophotelmodule) component 1.0 in the Hotel Booking
SQL injection vulnerability in the com_hbssearch component 1.0 in the Hotel Booking Reservation Syst
Multiple SQL injection vulnerabilities in the Hotel Booking Reservation System (aka HBS) for Joomla!
SQL injection vulnerability in the com_lowcosthotels component in the Hotel Booking Reservation Syst
Multiple SQL injection vulnerabilities in Phpclanwebsite (aka PCW) 1.23.3 Fix Pack 5 and earlier, wh
SQL injection vulnerability in login.asp in Citrix Application Gateway - Broadcast Server (BCS) befo
Multiple SQL injection vulnerabilities in Click&Rank allow remote attackers to execute arbitrary SQL
SQL injection vulnerability in feeds.php in Injader before 2.1.2 allows remote attackers to execute
Multiple SQL injection vulnerabilities in ClickAndEmail allow remote attackers to execute arbitrary
SQL injection vulnerability in connection.php in Mediatheka 4.2 and earlier allows remote attackers
SQL injection vulnerability in index.php in EZpack 4.2b2 allows remote attackers to execute arbitrar
SQL injection vulnerability in profile.php in PHPAuctions (aka PHPAuctionSystem) allows remote attac
SQL injection vulnerability in index.php in RiotPix 0.61 and earlier allows remote attackers to exec
SQL injection vulnerability in read.php in RiotPix 0.61 and earlier allows remote attackers to execu
SQL injection vulnerability in frontpage.php in Goople CMS 1.8.2 and earlier allows remote attackers
SQL injection vulnerability in page.php in Mini CMS 1.0.1 allows remote attackers to execute arbitra
SQL injection vulnerability in the Kunena Forum (com_kunena) component 1.5.3 and 1.5.4 for Joomla! a
SQL injection vulnerability in the Survey Pro module for Miniweb 2.0 allows remote attackers to exec
SQL injection vulnerability in profile.php in WebLeague 2.2.0 allows remote attackers to execute arb
Multiple SQL injection vulnerabilities in Admin/index.php in WebLeague 2.2.0, when magic_quotes_gpc
SQL injection vulnerability in index.php in Zenphoto 1.2.5, when the ZenPage plugin is enabled, allo
SQL injection vulnerability in index.php in Zenphoto 1.2.5 allows remote attackers to execute arbitr
SQL injection vulnerability in elkagroup Image Gallery allows remote attackers to execute arbitrary
Multiple SQL injection vulnerabilities in index.php in PhpShop 0.8.1 allow remote attackers to execu
SQL injection vulnerability in country_escorts.php in I-Escorts Directory Script allows remote attac
SQL injection vulnerability in the BeeHeard (com_beeheard) component 1.x for Joomla! allows remote a
SQL injection vulnerability in the MDForum module 2.x through 2.07 for MAXdev MDPro allows remote at
SQL injection vulnerability in detail.php in the Dictionary module for XOOPS 2.0.18 allows remote at
SQL injection vulnerability in the DhForum (com_dhforum) component for Joomla! allows remote attacke
SQL injection vulnerability in Basic Analysis and Security Engine (BASE) before 1.4.4 allows remote
SQL injection vulnerability in index.php in PHP Inventory 1.2 allows remote authenticated users to e
Multiple SQL injection vulnerabilities in index.php in PHP Inventory 1.2 allow (1) remote authentica
SQL injection vulnerability in the JPhoto (com_jphoto) component 1.0 for Joomla! allows remote attac
Multiple SQL injection vulnerabilities in the JS Jobs (com_jsjobs) component 1.0.5.6 for Joomla! all
SQL injection vulnerability in realestate20/loginaction.php in NetArt Media Real Estate Portal 2.0 a
SQL injection vulnerability in the JoomlaBamboo (JB) Simpla Admin template for Joomla! allows remote
Multiple SQL injection vulnerabilities in Collaborative Information Manager server, as used in TIBCO
Multiple SQL injection vulnerabilities in index.php in SweetRice CMS before 0.6.7.1 allow remote att
SQL injection vulnerability in the store function in _phenotype/system/class/PhenoTypeDataObject.cla
SQL injection vulnerability in inc/tinybb-settings.php in tinyBB 1.2, when magic_quotes_gpc is disab
SQL injection vulnerability in usersettings.php in e107 0.7.26, and possibly other versions before 1
An SQL Injection vulnerability exists in the ID parameter in Online TV Database 2011.
SQL injection vulnerability in corporate/Controller in Elitecore Technologies Cyberoam UTM before 10
Imperva SecureSphere Web Application Firewall (WAF) before 12-august-2010 allows SQL injection filte
Multiple SQL injection vulnerabilities in cdnvote-post.php in the cdnvote plugin before 0.4.2 for Wo
Multiple SQL injection vulnerabilities in includes/password.php in Redaxscript 0.3.2 allow remote at
Multiple SQL injection vulnerabilities in Plixer International Scrutinizer NetFlow & sFlow Analyzer
Multiple SQL injection vulnerabilities in the (1) update_whosonline_reg and (2) update_whosonline_gu
Multiple cross-site request forgery (CSRF) vulnerabilities in e107_admin/download.php in e107 1.0.2
SQL injection vulnerability in the Active Record component in Ruby on Rails before 3.0.18, 3.1.x bef
The Authlogic gem for Ruby on Rails, when used with certain versions before 3.2.10, makes potentiall
SQL injection vulnerability in the miq_policy controller in Red Hat CloudForms 2.0 Management Engine
SQL injection vulnerability in the Jomres (com_jomres) component before 7.3.1 for Joomla! allows rem
SQL injection vulnerability in IBM Atlas eDiscovery Process Management 6.0.1.5 and earlier and 6.0.2
SQL injection vulnerability in download.php in Horizon Quick Content Management System (QCMS) 4.0 an
Multiple SQL injection vulnerabilities in app/controllers/home_controller.rb in Fat Free CRM before
SQL injection vulnerability in the msPostGISLayerSetTimeFilter function in mappostgis.c in MapServer
SQL injection vulnerability in Naxtech CMS Afroditi 1.0 allows remote attackers to execute arbitrary
Multiple cross-site request forgery (CSRF) vulnerabilities in the GD Star Rating plugin 19.22 for Wo
SQL injection vulnerability in the GD Star Rating plugin 19.22 for WordPress allows remote administr
Déjà Vu Crescendo Sales CRM has remote SQL Injection
SQL injection vulnerability in the checkPassword function in Symmetricom s350i 2.70.15 allows remote
The bindReplace function in the query factory in includes/classes/database.php in Loaded Commerce 7
SQL injection vulnerability in the Search::setJsonAlert method in OSClass before 3.4.3 allows remote
Multiple SQL injection vulnerabilities in Absolut Engine 1.73 allow remote authenticated users to ex
SQL injection vulnerability in browse.php in phpMyRecipes 1.2.2 allows remote attackers to execute a
SQL injection vulnerability in models/Cart66Ajax.php in the Cart66 Lite plugin before 1.5.4 for Word
SQL injection vulnerability in incl/create.inc.php in Installatron GQ File Manager 0.2.5 allows remo
Multiple SQL injection vulnerabilities in chart_bar.php in the frontend in Zabbix before 1.8.22, 2.0
SQL injection vulnerability in showads.php in CTS Projects & Software ClassAd 3.0 allows remote atta
SQL injection vulnerability in classes/mono_display.class.php in PMB 4.1.3 and earlier allows remote
SQL injection vulnerability in Category.php in Microweber CMS 0.95 before 20141209 allows remote att
SQL injection vulnerability in login.php in InfiniteWP Admin Panel before 2.4.3 allows remote attack
SQL injection vulnerability in execute.php in InfiniteWP Admin Panel before 2.4.4 allows remote atta
SQL injection vulnerability in the actionIndex function in protected/modules_core/notification/contr
An issue was discovered in Skybox Platform before 7.5.201. SQL Injection exists in /skyboxview/webse
SQL injection vulnerability in register.php in GeniXCMS before 1.0.0 allows remote attackers to exec
Eleix Openhacker version 0.1.47 is vulnerable to an SQL injection in the account registration and lo
Rocket.Chat Server version 0.59 and prior is vulnerable to a NoSQL injection leading to administrato
xDashboard in OpenText Document Sciences xPression (formerly EMC Document Sciences xPression) v4.5SP
IBM Tivoli Key Lifecycle Manager 2.5, 2.6, and 2.7 is vulnerable to SQL injection. A remote attacker
Multiple SQL injection vulnerabilities in Muviko 1.1 allow remote attackers to execute arbitrary SQL
SQL injection vulnerability in NewsBee CMS allow remote attackers to execute arbitrary SQL commands.
Multiple SQL injection vulnerabilities in Gespage before 7.4.9 allow remote attackers to execute arb
SQL injection vulnerability in the 'Bazar' page in Yeswiki Cercopitheque 2018-06-19-1 and earlier al
SQL injection vulnerability in the LearnPress prior to version 3.1.0 allows attacker with administra
SQL injection vulnerability in the RICOH Interactive Whiteboard D2200 V1.3 to V2.2, D5500 V1.3 to V2
Multiple SQL injection vulnerabilities in Plikli CMS 4.0.0 allow remote attackers to execute arbitra
An error-based SQL injection vulnerability in product/card.php in Dolibarr version 8.0.2 allows remo
SQL injection vulnerability in user/card.php in Dolibarr version 8.0.2 allows remote authenticated u
SQL Injection vulnerability in the Oturia Smart Google Code Inserter plugin before 3.5 for WordPress
PHP Melody version 2.7.1 suffer from SQL Injection Time-based attack on the page ajax.php with the p
The Wachipi WP Events Calendar plugin 1.0 for WordPress has SQL Injection via the event_id parameter
The Testimonial Slider plugin through 1.2.4 for WordPress has SQL Injection via settings\sliders.php
The Smooth Slider plugin through 2.8.6 for WordPress has SQL Injection via smooth-slider.php (trid p
The Dbox 3D Slider Lite plugin through 1.2.2 for WordPress has SQL Injection via settings\sliders.ph
In PHP Scripts Mall advanced-real-estate-script 4.0.9, the news_edit.php news_id parameter is vulner
There was a flaw in the WordPress plugin, Email Subscribers & Newsletters before 4.3.1, that allowed
Simply-Blog through 2019-01-01 has SQL Injection via the admin/deleteCategories.php delete parameter
inxedu through 2018-12-24 has a SQL Injection vulnerability that can lead to information disclosure
An issue was discovered in Waimai Super Cms 20150505. web/Lib/Action/ProductAction.class.php allows
IBM Jazz Reporting Service (JRS) 6.0.6.1 is vulnerable to SQL injection. A remote attacker could sen
EARCLINK ESPCMS-P8 has SQL injection in the install_pack/index.php?ac=Member&at=verifyAccount verify
includes/db/class.reflines_db.inc in FrontAccounting 2.4.6 contains a SQL Injection vulnerability in
Nelson Open Source ERP v6.3.1 allows SQL Injection via the db/utils/query/data.xml query parameter.
An issue was discovered in XiaoCms 20141229. It allows admin/index.php?c=database table SQL injectio
A blind SQL injection vulnerability exists in zzcms ver201910 based on time (cookie injection).
FUEL CMS 1.4.11 allows SQL Injection via parameter 'name' in /fuel/permissions/create/. Exploiting t
SQL Injection vulnerability discovered in Gila CMS 1.15.4 and earlier allows a remote attacker to ex
A SQL injection vulnerability was discovered in Gila CMS 1.15.4 and earlier which allows a remote at
A SQL injection vulnerability was discovered in Gila CMS 1.15.4 and earlier which allows a remote at
A Time-Based SQL Injection vulnerability was discovered in Hospital Management System V4.0 which can
A Time-Based SQL Injection vulnerability was discovered in Hospital Management System V4.0 which can
REDCap 10.3.4 contains a SQL injection vulnerability in the ToDoList function via sort parameter. Th
Restaurant Reservation System 1.0 suffers from an authenticated SQL injection vulnerability, which a
cscms v4.1 allows for SQL injection via the 'js_del' function.
cscms v4.1 allows for SQL injection via the 'page_del' function.
A vulnerability in the showReports module of Zoho ManageEngine Applications Manager before build 145
An issue was discovered in Cacti 1.2.x through 1.2.16. A SQL injection vulnerability in data_debug.p
CSE Bookstore version 1.0 is vulnerable to time-based blind, boolean-based blind and OR error-based
PHPGurukul Hospital Management System in PHP v4.0 suffers from multiple SQL injection vulnerabilitie
PHPGurukul Dairy Farm Shop Management System 1.0 is vulnerable to SQL injection, as demonstrated by
PHPGurukul Hostel Management System v2.0 allows SQL injection via the id parameter in the full-profi
PHPGurukul Small CRM v2.0 was found vulnerable to authentication bypass via SQL injection when loggi
An issue was discovered in OpServices OpMon 9.3.1-1. Using password change parameters, an attacker c
The BW Database Interface allows an attacker with low privileges to execute any crafted database que
The Download Monitor WordPress plugin before 4.4.5 does not properly validate and escape the 'orderb
The RegistrationMagic WordPress plugin before 5.0.1.6 does not escape user input in its rm_chronos_a
The 'WP Search Filters' widget of The Plus Addons for Elementor - Pro WordPress plugin before 5.0.7
The Speed Booster Pack ⚡ PageSpeed Optimization Suite WordPress plugin before 4.3.3.1 does not escap
The Events Made Easy WordPress plugin before 2.2.36 does not sanitise and escape the search_text par
The WPcalc WordPress plugin through 2.1 does not sanitize user input into the 'did' parameter and us
ipeak Infosystems ibexwebCMS (aka IPeakCMS) 3.5 is vulnerable to an unauthenticated Boolean-based SQ
ISPConfig before 3.2.2 allows SQL injection.
Invision Community IPS Community Suite before 4.5.4.2 allows SQL Injection via the Downloads REST AP
EVOLUCARE ECSIMAGING (aka ECS Imaging) through 6.21.5 has multiple SQL Injection issues in the login
A vulnerability has been identified in COMOS V10.2 (All versions only if web components are used), C
Telephony application has a SQL Injection vulnerability.Successful exploitation of this vulnerabilit
A SQL injection vulnerability in /mobile/SelectUsers.jsp in SysAid ITIL 20.4.74 b10 allows a remote
Sourcecodester Online Thesis Archiving System 1.0 is vulnerable to SQL Injection. An attacker can by
USOC is an open source CMS with a focus on simplicity. In affected versions USOC allows for SQL inje
USOC is an open source CMS with a focus on simplicity. In affected versions USOC allows for SQL inje
CodeIgniter is an open source PHP full-stack web framework. Deserialization of Untrusted Data was fo
WordPress is a free and open-source content management system written in PHP and paired with a Maria
IBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.1.2.1 is vulnerable to SQL injection.
The Build App Online WordPress plugin before 1.0.19 does not properly sanitise and escape some param
Multiple SQL injections in Sage XRT Business Exchange 12.4.302 allow an authenticated attacker to in
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i
An issue was discovered in EasyVista 2020.2.125.3 and 2022.1.109.0.03. Some parameters allow SQL inj
An issue was discovered in EasyVista 2020.2.125.3 and 2022.1.109.0.03. One parameter allows SQL inje
The Visual Email Designer for WooCommerce WordPress plugin before 1.7.2 does not properly sanitise a
Nortek Linear eMerge E3-Series 0.32-08f, 0.32-07p, 0.32-07e, 0.32-09c, 0.32-09b, 0.32-09a, and 0.32-
The WP User WordPress plugin through 7.0 does not properly sanitize and escape a parameter before us
The Cryptocurrency Widgets Pack WordPress plugin before 2.0 does not sanitise and escape some parame
IBM Sterling Partner Engagement Manager 6.1, 6.2, and 6.2.1 is vulnerable to SQL injection. A remot
The Joy Of Text Lite WordPress plugin before 2.3.1 does not properly sanitise and escape some parame
The WP AutoComplete Search WordPress plugin through 1.0.4 does not sanitise and escape a parameter b
The Qe SEO Handyman WordPress plugin through 1.0 does not properly sanitize and escape a parameter b
Multiple vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise Orche
The Qe SEO Handyman WordPress plugin through 1.0 does not properly sanitize and escape a parameter b
Multiple vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise Orche
Multiple vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise Orche
Multiple vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise Orche
Multiple vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise Orche
Vulnerabilities in the web-based management interface of ClearPass Policy Manager could allow an aut
Vulnerabilities in the web-based management interface of ClearPass Policy Manager could allow an aut
The LetsRecover WordPress plugin before 1.2.0 does not properly sanitise and escape a parameter befo
The LetsRecover WordPress plugin before 1.2.0 does not properly sanitise and escape a parameter befo
The LetsRecover WordPress plugin before 1.2.0 does not properly sanitise and escape a parameter befo
The WP RSS By Publishers WordPress plugin through 0.1 does not properly sanitize and escape a parame
The WP RSS By Publishers WordPress plugin through 0.1 does not properly sanitize and escape a parame
The WP RSS By Publishers WordPress plugin through 0.1 does not properly sanitize and escape a parame
The multimedial images WordPress plugin through 1.0b does not properly sanitize and escape a paramet
The Web Invoice WordPress plugin through 2.1.3 does not properly sanitize and escape a parameter bef
The Web Invoice WordPress plugin through 2.1.3 does not properly sanitize and escape a parameter bef
The Quote-O-Matic WordPress plugin through 1.0.5 does not properly sanitize and escape a parameter b
An issue was discovered in Archibus Web Central 2022.03.01.107. A service exposed by the application
Online Health Care System v1.0 was discovered to contain a SQL injection vulnerability via the consu
Helmet Store Showroom Site v1.0 was discovered to contain a SQL injection vulnerability via the id p
Online Student Enrollment System v1.0 was discovered to contain a SQL injection vulnerability via th
Judging Management System v1.0.0 was discovered to contain a SQL injection vulnerability via the use
Sourcecodester Dynamic Transaction Queuing System v1.0 is vulnerable to SQL Injection via /queuing/i
SAP BPC MS 10.0 - version 810, allows an unauthorized attacker to execute crafted database queries.
The Simple Membership WP user Import plugin for WordPress is vulnerable to SQL Injection via the ‘or
WebChess through 0.9.0 and 1.0.0.rc2 allows SQL injection: mainmenu.php, chess.php, and opponentspas
SQL Injection vulnerability in oretnom23 Judging Management System v1.0, allows remote attackers to
SQL Injection vulnerability in oretnom23 Judging Management System v1.0, allows remote attackers to
SQL Injection vulnerability in oretnom23 Judging Management System v1.0, allows remote attackers to
An unspecified SQL Injection vulnerability in Ivanti Endpoint Manager released prior to 2022 SU 5 al
SQL Injection vulnerability in Dzzoffice version 2.01, allows remote attackers to obtain sensitive i
A SQL injection vulnerability has been reported to affect Video Station. If exploited, the vulnerabi
SQL Injection vulnerability in ABO.CMS v.5.9.3, allows remote attackers to execute arbitrary code vi
A SQL injection vulnerability has been reported to affect QuMagie. If exploited, the vulnerability c
SEMCMS v4.8 was discovered to contain a SQL injection vulnerability via the languageID parameter in
Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The '
Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The '
Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The '
Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The '
Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The '
Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The '
Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The '
Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The '
SQL Injection vulnerability in Buy Addons baproductzoommagnifier module for PrestaShop versions 1.0.
SQL injection vulnerability in EmpireCMS v7.5, allows remote attackers to execute arbitrary code and
Online Notice Board System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilit
Online Notice Board System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilit
Online Notice Board System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilit
Travel Website v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'ho
Travel Website v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'ho
Travel Website v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'ho
Travel Website v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'ci
Travel Website v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'us
Travel Website v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'us
SQL Injection vulnerability in TDuckCLoud tduck-platform v.4.0 allows a remote attacker to obtain se
In PHPGurukul Art Gallery Management System v1.1, 'Update Artist Image' functionality of 'imageid' p
Wuzhicms v4.1.0 was discovered to contain a SQL injection vulnerability via the $keywords parameter
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i
The LearnPress plugin for WordPress is vulnerable to time-based SQL Injection via the ‘order_by’ par
Blind SQL Injection vulnerability in PrestaShow Google Integrator (PrestaShop addon) allows for data
The WP SMS – Messaging & SMS Notification for WordPress, WooCommerce, GravityForms, etc plugin for W
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i