CWE:
 

Topic
Date
Author
Med.
Sipbar Sistem Informasi Pelaporan Indonesia Admin Login Bypass and SQL Injection Vulnerability
21.06.2018
KingSkrupellos
Med.
VideoInsight WebClient 5 SQL Injection
20.06.2018
vosec
Med.
Testlink 1.9.18 gettestcasesummary.php SQL Injection 0day
18.06.2018
Maksymilian Arciemowic...
Med.
Joomla Component Ek rishta 2.10 SQL Injection
14.06.2018
Guilherme Assmann
Med.
Joomla! Component EkRishta 2.10 username SQL Injection
12.06.2018
L0RD
Med.
Amirtham Sweets Admin Panel Bypass
11.06.2018
Mr.T959
Med.
dAP SQL Injection Vulnerability
11.06.2018
Mr.T959
Med.
Schools Alert Management Script get_sec.php SQL Injection
11.06.2018
M3@Pandas
Med.
Sito internet e Web marketing realizzati da CyberMarket.it SQL Injection Vulnerability
06.06.2018
KingSkrupellos
Med.
Web Design RGB Multimedia Perugia Italy SQL Injection Vulnerability
06.06.2018
KingSkrupellos
Med.
Powered By 3dee.it Web Design SQL Injection Vulnerability
06.06.2018
KingSkrupellos
Med.
Designed & Maintained By: Phoenix Softwarez Blind SQL Injection Vulnerability
06.06.2018
Mehdi Razmjoo
Low
Desenvolvido e Hospedado por CWD Internet Brazil SQL Injection Vulnerability
05.06.2018
KingSkrupellos
Med.
Copyright CTWare.it © 2014-2018 Italy SQL Injection Vulnerability
05.06.2018
KingSkrupellos
Med.
Israel PGN Network Web Development AppGate SQL Injection Vulnerability
04.06.2018
KingSkrupellos
Med.
Intercom Solutions developer website SQLi
04.06.2018
Arm_Legi
Med.
Smartshop 1 SQL Injection
04.06.2018
Borna Nematzadeh
Med.
Realizzato da Seobox di Massimo Sgambato SQL Injection Vulnerability
04.06.2018
KingSkrupellos
Med.
Website Design By PolarSoft® Inc. GoPolar SQL Injection Vulnerability
03.06.2018
KingSkrupellos
Med.
CopyRight © 2015 Hainan Pingan Car Rental Network China SQL Injection Vulnerability
02.06.2018
KingSkrupellos
Med.
Israel Mp100.info Systems Web Design SQL Injection Vulnerability
02.06.2018
KingSkrupellos
Med.
Buİnteractive Web Design E-Commerce Social Media Digital Marketing SQL Injection
02.06.2018
KingSkrupellos
Med.
AtelyeDigital.Com Web Design and Development SQL Injection Vulnerability
02.06.2018
KingSkrupellos
Med.
3T1K Design and Coding İnternet Services W3Turk SQL Injection
02.06.2018
KingSkrupellos
Med.
Israel © All rights reserved Tvan Servitex Company Ltd. SQL Injection
01.06.2018
KingSkrupellos
Med.
Investor Ningbo Liangzhu Culture Industrial Pack Development Management Co. Ltd. SQL Injection Vulnerability
01.06.2018
KingSkrupellos
Med.
Middle East Design and Programming GT4Host.Com Hosting SQL Injection Vulnerability
01.06.2018
KingSkrupellos
Med.
Grid Pro Big Data 1.0 SQL Injection
01.06.2018
Kagan Capar
Med.
CSV Import And Export 1.1.0 Cross Site Scripting / SQL Injection
01.06.2018
Kagan Capar
Med.
PHP Dashboards NEW 5.5 SQL Injection
01.06.2018
Kagan Capar
Med.
Chitasoft 3.6.2 SQL Injection
01.06.2018
Hesam Bazvand
Med.
New STAR 2.1 Cross Site Scripting / SQL Injection
01.06.2018
Kagan Capar
Med.
Technical Support Huaxia Chemical Network Background Management X-Mobio.Com SQL Injection Vulnerability
31.05.2018
KingSkrupellos
Low
Taiwan 本公司已投保GPS衛星定位乘客險捌佰萬元 | 網頁設計 Web Design SQL Injection Vulnerability
31.05.2018
KingSkrupellos
Med.
Arabia On-Liners.Com WebDesign SiteManager V2.3 Onliners S.A.R.L SQL Injection Vulnerability
31.05.2018
KingSkrupellos
Med.
Arabia Developed by Smart Online Marketing SARL SomLB.Com SQL Injection Vulnerability
31.05.2018
KingSkrupellos
Med.
China Design by Qianli Humanities Technology 3q168.Com SQL Injection Vulnerability
31.05.2018
KingSkrupellos
Med.
China Hangzhou City Technical Technology Support Juxiang Network 技术支持:聚翔网络 SQL Injection
31.05.2018
KingSkrupellos
High
Appnitro MachForm SQL Injection / Traversal / File Upload
31.05.2018
Amine Taouirsa
Med.
Powered by AnimaxTechnology.in India SQL Injection Vulnerability
30.05.2018
KingSkrupellos
Med.
Design by E-share Alibaba Hfceec.Com China SQL Injection Vulnerability
30.05.2018
KingSkrupellos
Med.
Melbourne FineArt Gallery Australia SQL Injection Vulnerability
30.05.2018
KingSkrupellos
Med.
Copyright © 2013 - 2018 Shumool.Com.Sa Real Estate Company Arabia SQL Injection Vulnerability
30.05.2018
KingSkrupellos
Med.
Powered by Expert Web Worx and AnaghaSofTech SQL Injection Vulnerability
30.05.2018
KingSkrupellos
Med.
Copyright © 2013 Powered by NWebProcess India SQL Injection Vulnerability
30.05.2018
KingSkrupellos
Med.
Wordpress Plugin Events Calendar SQL Injection
30.05.2018
AkkuS
Med.
Total Comfort Solutions A Commercial Heating and Air Conditioning Company SQL Injection Vulnerability
30.05.2018
KingSkrupellos
Med.
Packaging Printing © 2012 Powered by SmartWorks Systems Pakistan SQL Injection Vulnerability
30.05.2018
KingSkrupellos
Med.
Base content Copyright ©2018 Lennox Industries USA SQL Injection Vulnerability
30.05.2018
KingSkrupellos
Med.
Basque Community by Readywebgo and NorthendCreative SQL Injection Vulnerability
30.05.2018
KingSkrupellos
Med.
Regulated by Rics.Org PDF News England SQL Injection Vulnerability
30.05.2018
KingSkrupellos
Med.
Copyright © 2018 Designed by ArabPortals Development Egypt SQL Injection Vulnerability
30.05.2018
KingSkrupellos
Med.
IssueTrak 7.0 SQL Injection
30.05.2018
Goran Tuzovic
Med.
KomSeo Cart 1.3 my_item_search SQL Injection
29.05.2018
Özkan Mustafa Akkuş
Med.
TUNES SQL Injection Vulnerability
29.05.2018
Mr.T959
Med.
Stockholm360 SQL Injection Vulnerability
29.05.2018
Mr.T959
Med.
Konstar SQL Injection Vulnerability
29.05.2018
Mr.T959
Med.
Stockholm360 SQL Injection Vulnerability
29.05.2018
Mr.T959
Med.
FourSeasonsTravel SQL Injection Vulnerability
27.05.2018
KingSkrupellos
Med.
easyLetters 1.0 SQL Injection
27.05.2018
Ozkan Mustafa Akkus
Med.
Ajax Full Featured Calendar 2.0 SQL Injection
27.05.2018
Ozkan Mustafa Akkus
Med.
OpenDaylight SQL Injection
25.05.2018
Jameel Nabbo
Med.
Library CMS 1.0 SQL Injection
25.05.2018
Ozkan Mustafa Akkus
Med.
School Management System CMS 1.0 SQL Injection
25.05.2018
Ozkan Mustafa Akkus
Med.
SAT CFDI 3.3 SQL Injection
25.05.2018
Ozkan Mustafa Akkus
Med.
PHP Dashboards 4.5 SQL Injection
25.05.2018
Ozkan Mustafa Akkus
Med.
Shipping System CMS 1.0 SQL Injection
25.05.2018
Ozkan Mustafa Akkus
Med.
GPSTracker 1.0 SQL Injection
25.05.2018
Ozkan Mustafa Akkus
Med.
Gigs 2.0 SQL Injection
25.05.2018
Ozkan Mustafa Akkus
Med.
EU MRV Regulatory Complete Solution 1 SQL Injection
25.05.2018
Veyselxan
Med.
Mcard Mobile Card Selling Platform 1 SQL Injection
24.05.2018
L0RD
Med.
MySQL Blob Uploader 1.7 Cross Site Scripting / SQL Injection
24.05.2018
Ozkan Mustafa Akkus
Med.
MySQL Smart Reports 1.0 Cross Site Scripting / SQL Injection
24.05.2018
Ozkan Mustafa Akkus
Med.
NewsBee CMS 1.4 home-text-edit.php SQL Injection
23.05.2018
Özkan Mustafa Akkuş
Med.
Easy File Uploader 1.7 SQL Injection / Cross-Site Scripting
23.05.2018
Özkan Mustafa Akkuş
Med.
Auto Dealership And Vehicle Showroom WebSys 1.0 XSS / CSRF / SQL Injection
22.05.2018
Borna Nematzadeh
Med.
Model Agency Media House And Media Gallery 1.0 XSS / CSRF / SQL Injection
22.05.2018
Borna Nematzadeh
Med.
Karenderia Multiple Restaurant System < 4.5 Blind SQL Injection
22.05.2018
telahdihapus
Med.
Joomla EkRishta 2.10 Cross Site Scripting / SQL Injection
21.05.2018
Sina Kheirkhah
Med.
SuperCom Online Shopping Ecommerce Cart 1 XSS / CSRF / SQL Injection
18.05.2018
Borna Nematzadeh
Med.
NodAPS 4.0 SQL injection / Cross-Site Request Forgery
18.05.2018
L0RD
High
ProjectPier 0.8.8 SQL Injection / Authentication Bypass / RFI
15.05.2018
Imre Rad
Med.
Joomla com_training SQL Injection Vulnerability
11.05.2018
j!h4dDZ
Med.
Soleixa Communication Sql İnjection Vulnerability
09.05.2018
TrazeR
Med.
Designed and Developed by Cloud Innovators Solution SQL Injection
06.05.2018
Mehdi Razmjoo
Med.
Creative Commons Attribution 4.0 SQL Injection
06.05.2018
Mehdi Razmjoo
Med.
Web design & development by: svc & smorkov SQL Injection Vulnerability
06.05.2018
Mehdi Razmjoo
Med.
Design Bbsession SQL Injection
06.05.2018
Mehdi Razmjoo
Med.
CSP MySQL User Manager 2.3.1 SQL Injection
05.05.2018
Youssef mami
Med.
WebAgentSolutions SQL Injection
04.05.2018
B4B4NN
Med.
Design by Chichen SQL Injection Vulnerability
29.04.2018
Mehdi Razmjoo
Med.
Website by cgCraft llc SQL Injection Vulnerability
29.04.2018
Mehdi Razmjoo
Med.
HRSALE The Ultimate HRM v1.0.2 award_id SQL Injection
26.04.2018
8bitsec
Med.
MySQL Squid Access Report 2.1.4 Cross Site Scripting / SQL Injection
19.04.2018
Keerati T.
Med.
Golem [CMS] v1.0 - SQL Injection
17.04.2018
TukangSihir
Med.
Cobub Razor 0.8.0 SQL injection
17.04.2018
Kyhvedn
Low
iran Info SQL Injection Vulnerability
14.04.2018
#iran#
Med.
IMP XForm 2.0 DatalifeEngine SQL Injection
13.04.2018
Hesam Bazvand
Med.
Relevanssi 3.5.12 / 3.6.0 SQL Injection
12.04.2018
Glyn Wintle
Med.
OCS Inventory NG ocsreports 2.4 / 2.3.1 SQL Injection
11.04.2018
Simon Bieber


CVEMAP Search Results

CVE
Details
Description
2018-05-18
Medium
CVE-2018-9250

Vendor: Open-emr
Software: Openemr
 

 
interface\super\edit_list.php in OpenEMR before v5_0_1_1 allows remote authenticated users to execute arbitrary SQL commands via the newlistname parameter.

 
2018-05-16
Medium
CVE-2018-10735

Vendor: Nagios
Software: Nagios xi
 

 
A SQL injection issue was discovered in Nagios XI before 5.4.13 via the admin/commandline.php cname parameter.

 
Medium
CVE-2018-10736

Vendor: Nagios
Software: Nagios xi
 

 
A SQL injection issue was discovered in Nagios XI before 5.4.13 via the admin/info.php key1 parameter.

 
Medium
CVE-2018-10737

Vendor: Nagios
Software: Nagios xi
 

 
A SQL injection issue was discovered in Nagios XI before 5.4.13 via the admin/logbook.php txtSearch parameter.

 
Medium
CVE-2018-10738

Vendor: Nagios
Software: Nagios xi
 

 
A SQL injection issue was discovered in Nagios XI before 5.4.13 via the admin/menuaccess.php chbKey1 parameter.

 
2018-05-15
Medium
CVE-2018-7501

Vendor: Advantech
Software: Webaccess
 

 
In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and prior, WebAccess Dashboard versions V.2.0.15 and prior, WebAccess Scada Node versions prior to 8.3.1, and WebAccess/NMS 2.0.3 and prior, several SQL injection vulnerabilities have been identified, which may allow an attacker to disclose sensitive information from the host.

 
2018-05-13
Medium
CVE-2018-11032

Updating...
 

 
PHPRAP 1.0.4 through 1.0.8 has SQL Injection via the application/home/controller/project.php search() function.

 
2018-05-11
Medium
CVE-2018-1280

Updating...
 

 
Pivotal Greenplum Command Center versions 2.x prior to 2.5.1 contains a blind SQL injection vulnerability. An unauthenticated user can perform a SQL injection in the command center which results in disclosure of database contents.

 
2018-05-10
Medium
CVE-2018-8914

Vendor: Synology
Software: Media server
 

 
SQL injection vulnerability in UPnP DMA in Synology Media Server before 1.7.6-2842 and before 1.4-2654 allows remote attackers to execute arbitrary SQL commands via the ObjectID parameter.

 
2018-05-09
Medium
CVE-2018-8824

Vendor: Prestashop
Software: Prestashop
 

 
modules/bamegamenu/ajax_phpcode.php in the Responsive Mega Menu (Horizontal+Vertical+Dropdown) Pro module 1.0.32 for PrestaShop 1.5.5.0 through 1.7.2.5 allows remote attackers to execute a SQL Injection through function calls in the code parameter.

 

 


Copyright 2018, cxsecurity.com

 

Back to Top