CWE:
 

Topic
Date
Author
Med.
Impression Technologies LLC SQL Injection
20.08.2018
Mehdi Razmjoo
Med.
By Shots.it SQL Injection
20.08.2018
Mehdi Razmjoo
Med.
Designed by EMH SQL Injection
20.08.2018
Mehdi Razmjoo
Med.
Designed & Developed by: IT Consulting Services New Jersey SQL Injection
20.08.2018
Mehdi Razmjoo
Med.
Pimcore 5.2.3 SQL Injection / Cross-Site Scripting / Cross-Site Request Forgery
16.08.2018
SEC Consult
Med.
Web design & development by: svc & smorkov SQL Injection Vulnerability
05.08.2018
Mehdi Razmjoo
Med.
FB Inboxer 1.2 SQL Injection
03.08.2018
Ozkan Mustafa Akkus
Med.
ProjectSend - SQL Injection
28.07.2018
GUIA Brahim Fouad
High
Super CMS Blog Pro PHP Script 1.0 SQL Injection / Shell Upload
27.07.2018
ShanoWeb
Med.
MSVOD 10 cid SQL Injection
25.07.2018
Hzllaga
Med.
Smart SMS And Email Manager 3.3 SQL Injection
19.07.2018
Ozkan Mustafa Akkus
Med.
Smart SMS & Email Manager 3.3 contact_type_id SQL Injection
18.07.2018
AkkuS
Med.
ELO (Elektronischer Leitz-Ordner) 9 / 10 SQL Injection
12.07.2018
Jens Regel
Med.
WolfSight CMS 3.2 SQL Injection
11.07.2018
Berk Dusunur
Med.
Elektronischer Leitz-Ordner 10 SQL Injection
10.07.2018
Multiple
Med.
site design by Strawberry Design SQL Injection
08.07.2018
Bl4ck M4n
Med.
Designed & Maintained by It Globaliser - SQL Injection
08.07.2018
BlackErroR
Med.
Designed By Studio Octavo Israel SQL Injection Vulnerability
07.07.2018
KingSkrupellos
Med.
Gettarget EduProTech © 2003-2016 EduPro Technology Pvt. Ltd. SQL Injection Vulnerability
07.07.2018
KingSkrupellos
Med.
Website Design jhchoi Creative Consultancy SQL Injection Vulnerability
07.07.2018
KingSkrupellos
Low
Global Infotech Auth by pass Vulnerability
06.07.2018
indoushka
Med.
SoftExpert Excellence Suite 2.0 SQL Injection
05.07.2018
Seren PORSUK
Med.
Designed By WeyalTech Developed By DjangoSuit Company Afghanistan SQL Injection Vulnerability
04.07.2018
KingSkrupellos
Med.
Powered by Admas Host & Developed by Asian IT SQL Injection Vulnerability
02.07.2018
KingSkrupellos
Med.
Design by Recursive Technologies Inc Nepal SQL Injection Vulnerability
02.07.2018
KingSkrupellos
Med.
Design by Recursive Technologies Inc Nepal SQL Injection Vulnerability
02.07.2018
KingSkrupellos
Med.
Powered By WorldTravelGuide HolidaySmart CMS SQL Injection Vulnerability
02.07.2018
KingSkrupellos
Med.
Powered by Admas Host & Developed by Asian IT SQL Injection Vulnerability
02.07.2018
KingSkrupellos
Med.
Designed by EMH TheEmhGlobal SQL Injection Vulnerability
02.07.2018
KingSkrupellos
Med.
Website Hosted By MTC MtcMedia Scotland SQL Injection Vulnerability
02.07.2018
KingSkrupellos
Med.
Maintained By Loojah Bajracharya SQL Injection Vulnerability
02.07.2018
KingSkrupellos
Med.
Powered by Schoolsindia.Com School Management System SQL Injection Vulnerability
02.07.2018
KingSkrupellos
Med.
Site Developed By İconify Web & Mobile Development SQL Injection Vulnerability
02.07.2018
KingSkrupellos
Med.
ElevationDesign LeighDesignStudio WebDesign South Africa SQL Injection Vulnerability
02.07.2018
KingSkrupellos
Med.
Developed By Inside Softwares Pvt. Ltd. Web Design Company India SQL Injection Vulnerability
02.07.2018
KingSkrupellos
Med.
Metaping SQL Injection
01.07.2018
Arm_Legi
Med.
Powered by IvansWeb IWGallery PhotoGallery © 2005/2007 SQL Injection Vulnerability
30.06.2018
KingSkrupellos
Med.
Dj Twilight Ver 2.0 Copyright 1999 - 2018 PicturesGallery SQL Injection Vulnerability
30.06.2018
KingSkrupellos
Med.
Bee Gees Italy © 1998-2017 Enzo Lo Piccolo SQL Injection Vulnerability
30.06.2018
KingSkrupellos
Med.
Powered by dBlog CMS ® Open Source Picture Gallery By InternetCamera.it SQL Injection Vulnerability
30.06.2018
KingSkrupellos
Med.
BirWebMaster AsmWebSitesi Graphics Web Design Services SQL Injection Vulnerability
30.06.2018
KingSkrupellos
Med.
HongCMS 3.0.0 SQL Injection
29.06.2018
Hzllaga
Med.
hycus CMS 1.0.4 SQL Injection
29.06.2018
Berk Dusunur
Med.
Designed By Polypod Developed By Fusion Second SQL Injection Vulnerability
29.06.2018
KingSkrupellos
Med.
Website Designed By Sanminds Hosting Nepal SQL Injection Vulnerability
29.06.2018
KingSkrupellos
Med.
Site By www.clayrose.com Web Design Hosting Management SQL Injection Vulnerability
29.06.2018
KingSkrupellos
Med.
Web services provided by Ciphertek Systems, LLC SQL Injection Vulnerability
29.06.2018
KingSkrupellos
Med.
AlfineSolutions.Com Web Hosting SQL Injection Vulnerability
29.06.2018
KingSkrupellos
Med.
WordPress Plugin iThemes Security < 7.0.3 SQL Injection
26.06.2018
Çlirim Emini
Med.
Designed by SriRam Soft Solutions Pvt. Ltd. India SQL Injection Vulnerability
26.06.2018
KingSkrupellos
Med.
Developed By Jay4web Website Design and Development India SQL Injection Vulnerability
26.06.2018
KingSkrupellos
Med.
Powered by ZTsolution Business England SQL Injection Vulnerability
26.06.2018
KingSkrupellos
Med.
WebSolutions.Ca Web Design and Development Canada SQL Injection Vulnerability
26.06.2018
KingSkrupellos
Med.
Design By Atarim.Com Israel International Internet Agency SQL Injection Vulnerability
26.06.2018
KingSkrupellos
Med.
Webdesign by Lenny's Studio Produced by 21C Media Group SQL Injection Vulnerability
26.06.2018
KingSkrupellos
Med.
Another Quality Site by Seabreeze Consulting Web Design SQL Injection Vulnerability
26.06.2018
KingSkrupellos
Med.
WordPress iThemes Security SQL Injection
26.06.2018
Clirim Emini
Med.
Double Benefit Malaysia Admin Panel Bypass
25.06.2018
Mr.T959
Med.
All India Bar Association Admin Panel Bypass
25.06.2018
Mr.T959
Med.
Rathna Softnet Admin Panel Bypass
25.06.2018
Mr.T959
Med.
FAST RIDING SCHOOL Admin Panel Bypass
25.06.2018
Mr.T959
Med.
Copyright © 1999-2005 NIP Kompanija "Novosti" A.D. Serbia SQL Injection Vulnerability
24.06.2018
KingSkrupellos
Med.
Joomla Com_Techedu Courseview Developed in Association with Icta SriLanka SQL Injection Vulnerability
24.06.2018
KingSkrupellos
Med.
Designed & Developed by Web Based Business Systems BTOptions.Com SQL Injection Vulnerability
24.06.2018
KingSkrupellos
Med.
Copyright © 2008-2011 NEX Studio Nex.Ba Web Design SQL Injection Vulnerability
24.06.2018
KingSkrupellos
Med.
Joomla com_regionalm Icta Regional Museum SQL Injection Vulnerability
24.06.2018
KingSkrupellos
Med.
Solution by Lankacom Internet Service Provider in Sri Lanka SQL Injection Vulnerability
24.06.2018
KingSkrupellos
Med.
Powered by Peernet Company Limited HkPeernet.Com SQL Injection Vulnerability
24.06.2018
KingSkrupellos
Med.
Created By Z Axis IT Solution WebDesign SQL Injection Vulnerability
24.06.2018
KingSkrupellos
Med.
Web Design Agency ChromaAgency.Com SQL Injection Vulnerability
24.06.2018
KingSkrupellos
Med.
Realizzato da equo.biz Software Hosting Italia SQL Injection Vulnerability
23.06.2018
KingSkrupellos
Med.
Desarrollado por Mancort Spain SQL Injection Vulnerability
22.06.2018
KingSkrupellos
Med.
NewMark CMS 2.1 SQL Injection
22.06.2018
Berk Dusunur
Med.
Creado por Crafi&Deso MachForm PHP Form Builder Spain SQL Injection Vulnerability
22.06.2018
KingSkrupellos
Med.
Creación y diseño White Solutions FactuSOL Web por Software DELSOL SQL Injection Vulnerability
22.06.2018
KingSkrupellos
Med.
Powered by Quaid Technologies QuaidTech Pakistan SQL Injection Vulnerability
21.06.2018
KingSkrupellos
Med.
SleePedia.in an initiative of SleepwellFoundation India Nepal Bhutan SQL Injection Vulnerability
21.06.2018
KingSkrupellos
Med.
Sipbar Sistem Informasi Pelaporan Indonesia Admin Login Bypass and SQL Injection Vulnerability
21.06.2018
KingSkrupellos
Med.
VideoInsight WebClient 5 SQL Injection
20.06.2018
vosec
Med.
Testlink 1.9.18 gettestcasesummary.php SQL Injection 0day
18.06.2018
Maksymilian Arciemowic...
Med.
Joomla Component Ek rishta 2.10 SQL Injection
14.06.2018
Guilherme Assmann
Med.
Joomla! Component EkRishta 2.10 username SQL Injection
12.06.2018
L0RD
Med.
Amirtham Sweets Admin Panel Bypass
11.06.2018
Mr.T959
Med.
dAP SQL Injection Vulnerability
11.06.2018
Mr.T959
Med.
Schools Alert Management Script get_sec.php SQL Injection
11.06.2018
M3@Pandas
Med.
Sito internet e Web marketing realizzati da CyberMarket.it SQL Injection Vulnerability
06.06.2018
KingSkrupellos
Med.
Web Design RGB Multimedia Perugia Italy SQL Injection Vulnerability
06.06.2018
KingSkrupellos
Med.
Powered By 3dee.it Web Design SQL Injection Vulnerability
06.06.2018
KingSkrupellos
Med.
Designed & Maintained By: Phoenix Softwarez Blind SQL Injection Vulnerability
06.06.2018
Mehdi Razmjoo
Low
Desenvolvido e Hospedado por CWD Internet Brazil SQL Injection Vulnerability
05.06.2018
KingSkrupellos
Med.
Copyright CTWare.it © 2014-2018 Italy SQL Injection Vulnerability
05.06.2018
KingSkrupellos
Med.
Israel PGN Network Web Development AppGate SQL Injection Vulnerability
04.06.2018
KingSkrupellos
Med.
Intercom Solutions developer website SQLi
04.06.2018
Arm_Legi
Med.
Smartshop 1 SQL Injection
04.06.2018
Borna Nematzadeh
Med.
Realizzato da Seobox di Massimo Sgambato SQL Injection Vulnerability
04.06.2018
KingSkrupellos
Med.
Website Design By PolarSoft® Inc. GoPolar SQL Injection Vulnerability
03.06.2018
KingSkrupellos
Med.
CopyRight © 2015 Hainan Pingan Car Rental Network China SQL Injection Vulnerability
02.06.2018
KingSkrupellos
Med.
Israel Mp100.info Systems Web Design SQL Injection Vulnerability
02.06.2018
KingSkrupellos
Med.
Buİnteractive Web Design E-Commerce Social Media Digital Marketing SQL Injection
02.06.2018
KingSkrupellos
Med.
AtelyeDigital.Com Web Design and Development SQL Injection Vulnerability
02.06.2018
KingSkrupellos


CVEMAP Search Results

CVE
Details
Description
2018-07-08
Medium
CVE-2018-13447

Vendor: Dolibarr
Software: Dolibarr
 

 
SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the statut parameter.

 
Medium
CVE-2018-13448

Vendor: Dolibarr
Software: Dolibarr erp/crm
 

 
SQL injection vulnerability in product/card.php in Dolibarr ERP/CRM version 7.0.3 allows remote attackers to execute arbitrary SQL commands via the country_id parameter.

 
2018-07-03
Medium
CVE-2018-7765

Vendor: Schneider-electric
Software: U.motion builder
 

 
The vulnerability exists within processing of track_import_export.php in Schneider Electric U.motion Builder software versions prior to v1.3.4. The underlying SQLite database query is subject to SQL injection on the object_id input parameter.

 
Medium
CVE-2018-7766

Vendor: Schneider-electric
Software: U.motion builder
 

 
The vulnerability exists within processing of track_getdata.php in Schneider Electric U.motion Builder software versions prior to v1.3.4. The underlying SQLite database query is subject to SQL injection on the id input parameter.

 
Medium
CVE-2018-7767

Vendor: Schneider-electric
Software: U.motion builder
 

 
The vulnerability exists within processing of editobject.php in Schneider Electric U.motion Builder software versions prior to v1.3.4. The underlying SQLite database query is subject to SQL injection on the type input parameter.

 
Medium
CVE-2018-7768

Vendor: Schneider-electric
Software: U.motion builder
 

 
The vulnerability exists within processing of loadtemplate.php in Schneider Electric U.motion Builder software versions prior to v1.3.4. The underlying SQLite database query is subject to SQL injection on the tpl input parameter.

 
Medium
CVE-2018-7769

Vendor: Schneider-electric
Software: U.motion builder
 

 
The vulnerability exists within processing of xmlserver.php in Schneider Electric U.motion Builder software versions prior to v1.3.4. The underlying SQLite database query is subject to SQL injection on the id input parameter.

 
Medium
CVE-2018-7774

Vendor: Schneider-electric
Software: U.motion builder
 

 
The vulnerability exists within processing of localize.php in Schneider Electric U.motion Builder software versions prior to v1.3.4. The underlying SQLite database query is subject to SQL injection on the username input parameter.

 
2018-06-29
Medium
CVE-2018-12464

Updating...
 

 
A SQL injection vulnerability in the web administration and quarantine components of Micro Focus Secure Messaging Gateway allows an unauthenticated remote attacker to execute arbitrary SQL statements against the database. This can be exploited to create an administrative account and used in conjunction with CVE-2018-12465 to achieve unauthenticated remote code execution. Affects Micro Focus Secure Messaging Gateway versions prior to 471. It does not affect previous versions of the product that use the GWAVA product name (i.e. GWAVA 6.5).

 
2018-06-27
Medium
CVE-2018-12912

Vendor: Hongcms project
Software: Hongcms
 

 
An issue wan discovered in admin\controllers\database.php in HongCMS 3.0.0. There is a SQL Injection vulnerability via an admin/index.php/database/operate?dbaction=emptytable&tablename= URI.

 

 


Copyright 2018, cxsecurity.com

 

Back to Top