|
292991
|
- |
|
sfs_ez_pub
|
fsf_ex_pub
|
SQL injection vulnerability in directory.php in Scripts For Sites (SFS) EZ Pub Site allows remote attackers to execute arbitrary SQL commands via the cat parameter.
|
CWE-89
SQL Injection
|
CVE-2008-6794
|
2017-09-29 10:33 |
2009-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292992
|
- |
|
niclor
|
vibro-school-cms
|
SQL injection vulnerability in view_news.php in nicLOR Vibro-School-CMS allows remote attackers to execute arbitrary SQL commands via the nID parameter.
|
CWE-89
SQL Injection
|
CVE-2008-6795
|
2017-09-29 10:33 |
2009-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292993
|
- |
|
preprojects
|
pre_real_estate_listings
|
SQL injection vulnerability in manager/login.php in Pre Projects Pre Real Estate Listings allows remote attackers to execute arbitrary SQL commands via the username1 parameter (aka the Admin field or…
|
CWE-89
SQL Injection
|
CVE-2008-6796
|
2017-09-29 10:33 |
2009-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292994
|
- |
|
preprojects
|
pre_real_estate_listings
|
Multiple SQL injection vulnerabilities in login.php in Pre Projects Pre Real Estate Listings allow remote attackers to execute arbitrary SQL commands via (1) the us parameter (aka the Username field)…
|
CWE-89
SQL Injection
|
CVE-2008-6798
|
2017-09-29 10:33 |
2009-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292995
|
- |
|
micgr
|
mic_blog
|
Multiple SQL injection vulnerabilities in Mic_Blog 0.0.3, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) cat parameter to category.php, the (2…
|
CWE-89
SQL Injection
|
CVE-2008-6805
|
2017-09-29 10:33 |
2009-05-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292996
|
- |
|
7-shop
|
7shop
|
Unrestricted file upload vulnerability in includes/imageupload.php in 7Shop 1.1 and earlier allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then ac…
|
CWE-20
Improper Input Validation
|
CVE-2008-6806
|
2017-09-29 10:33 |
2009-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292997
|
- |
|
scripts-for-sites
|
ez_link_directory
|
SQL injection vulnerability in links.php in Scripts for Sites (SFS) EZ Link Directory allows remote attackers to execute arbitrary SQL commands via the cat_id parameter in a list action.
|
CWE-89
SQL Injection
|
CVE-2008-6808
|
2017-09-29 10:33 |
2009-05-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292998
|
- |
|
bookingcentre
|
booking_system_for_hotels_group
|
SQL injection vulnerability in hotel_habitaciones.php in Venalsur Booking Centre Booking System for Hotels Group 2.01 allows remote attackers to execute arbitrary SQL commands via the HotelID paramet…
|
CWE-89
SQL Injection
|
CVE-2008-6809
|
2017-09-29 10:33 |
2009-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
292999
|
- |
|
bookingcentre
|
booking_system_for_hotels_group
|
Multiple SQL injection vulnerabilities in admin/checklogin.php in Venalsur Booking Centre Booking System for Hotels Group 2.01 allow remote attackers to execute arbitrary SQL commands via the (1) myu…
|
CWE-89
SQL Injection
|
CVE-2008-6810
|
2017-09-29 10:33 |
2009-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
293000
|
- |
|
instinct
|
e-commerce_plugin
|
Unrestricted file upload vulnerability in image_processing.php in the e-Commerce Plugin 3.4 and earlier for Wordpress allows remote attackers to execute arbitrary code by uploading a file with an exe…
|
NVD-CWE-Other
|
CVE-2008-6811
|
2017-09-29 10:33 |
2009-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
