Export limit exceeded: 335653 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Export limit exceeded: 17981 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (17981 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2018-6893 | 1 Finecms | 1 Finecms | 2024-11-21 | N/A |
| controllers/member/Api.php in dayrui FineCms 5.2.0 has SQL Injection: a request with s=member,c=api,m=checktitle, and the parameter 'module' with a SQL statement, lacks effective filtering. | ||||
| CVE-2018-6883 | 1 Piwigo | 1 Piwigo | 2024-11-21 | N/A |
| Piwigo before 2.9.3 has SQL injection in admin/tags.php in the administration panel, via the tags array parameter in an admin.php?page=tags request. The attacker must be an administrator. | ||||
| CVE-2018-6863 | 1 Select Your College Script Project | 1 Select Your College Script | 2024-11-21 | N/A |
| SQL Injection exists in PHP Scripts Mall Select Your College Script 2.0.2 via a Login Parameter. | ||||
| CVE-2018-6859 | 1 Schools Alert Management Script Project | 1 Schools Alert Management Script | 2024-11-21 | N/A |
| SQL Injection exists in PHP Scripts Mall Schools Alert Management Script 2.0.2 via the Login Parameter. | ||||
| CVE-2018-6792 | 1 Saifor | 1 Cvms Hub | 2024-11-21 | N/A |
| Multiple SQL injection vulnerabilities in Saifor CVMS HUB 1.3.1 allow an authenticated user to execute arbitrary SQL commands via multiple parameters to the /cvms-hub/privado/seccionesmib/secciones.xhtml resource. The POST parameters are j_idt118, j_idt120, j_idt122, j_idt124, j_idt126, j_idt128, and j_idt130 under formularioGestionarSecciones:tablaSeccionesMib:*:filter. The GET parameter is nombreAgente. | ||||
| CVE-2018-6609 | 1 Jsp Tickets Project | 1 Jsp Tickets | 2024-11-21 | N/A |
| SQL Injection exists in the JSP Tickets 1.1 component for Joomla! via the ticketcode parameter in a ticketlist edit action, or the id parameter in a statuslist (or prioritylist) edit action. | ||||
| CVE-2018-6605 | 1 Zh Baidumap Project | 1 Zh Baidumap | 2024-11-21 | N/A |
| SQL Injection exists in the Zh BaiduMap 3.0.0.1 component for Joomla! via the id parameter in a getPlacemarkDetails, getPlacemarkHoverText, getPathHoverText, or getPathDetails request. | ||||
| CVE-2018-6604 | 1 Zh Yandexmap Project | 1 Zh Yandexmap | 2024-11-21 | N/A |
| SQL Injection exists in the Zh YandexMap 6.2.1.0 component for Joomla! via the id parameter in a task=getPlacemarkDetails request. | ||||
| CVE-2018-6585 | 1 Techjoomla | 1 Jticketing | 2024-11-21 | N/A |
| SQL Injection exists in the JTicketing 2.0.16 component for Joomla! via a view=events action with a filter_creator or filter_events_cat parameter. | ||||
| CVE-2018-6584 | 1 Dthdevelopment | 1 Dt Register | 2024-11-21 | N/A |
| SQL Injection exists in the DT Register 3.2.7 component for Joomla! via a task=edit&id= request. | ||||
| CVE-2018-6583 | 1 Quanticalabs | 1 Timetable Responsive Schedule | 2024-11-21 | N/A |
| SQL Injection exists in the Timetable Responsive Schedule 1.5 component for Joomla! via a view=event&alias= request. | ||||
| CVE-2018-6582 | 1 Zh Googlemap Project | 1 Zh Googlemap | 2024-11-21 | N/A |
| SQL Injection exists in the Zh GoogleMap 8.4.0.0 component for Joomla! via the id parameter in a getPlacemarkDetails, getPlacemarkHoverText, getPathHoverText, or getPathDetails request. | ||||
| CVE-2018-6581 | 1 Joommasters | 1 Jms Music | 2024-11-21 | N/A |
| SQL Injection exists in the JMS Music 1.1.1 component for Joomla! via a search with the keyword, artist, or username parameter. | ||||
| CVE-2018-6579 | 1 Jextn | 1 Reverse Auction | 2024-11-21 | N/A |
| SQL Injection exists in the JEXTN Reverse Auction 3.1.0 component for Joomla! via a view=products&uid= request. | ||||
| CVE-2018-6578 | 1 Jextn | 1 Je Paypervideo | 2024-11-21 | N/A |
| SQL Injection exists in the JE PayperVideo 3.0.0 component for Joomla! via the usr_plan parameter in a view=myplans&task=myplans.usersubscriptions request. | ||||
| CVE-2018-6577 | 1 Jextn | 1 Membership | 2024-11-21 | N/A |
| SQL Injection exists in the JEXTN Membership 3.1.0 component for Joomla! via the usr_plan parameter in a view=myplans&task=myplans.usersubscriptions request. | ||||
| CVE-2018-6576 | 1 Ezcode | 1 Event Manager | 2024-11-21 | N/A |
| SQL Injection exists in Event Manager 1.0 via the event.php id parameter or the page.php slug parameter. | ||||
| CVE-2018-6575 | 1 Jextn | 1 Classified | 2024-11-21 | N/A |
| SQL Injection exists in the JEXTN Classified 1.0.0 component for Joomla! via a view=boutique&sid= request. | ||||
| CVE-2018-6494 | 1 Microfocus | 1 Service Manager | 2024-11-21 | 5.4 Medium |
| Remote SQL Injection against the HP Service Manager Software Web Tier, version 9.30, 9.31, 9.32, 9.33, 9.34, 9.35, 9.40, 9.41, 9.50, 9.51, may lead to unauthorized disclosure of data. | ||||
| CVE-2018-6493 | 1 Hp | 2 Network Automation, Network Operations Management Ultimate | 2024-11-21 | 8.8 High |
| SQL Injection in HP Network Operations Management Ultimate, version 2017.07, 2017.11, 2018.02 and in Network Automation, version 10.00, 10.10, 10.11, 10.20, 10.30, 10.40, 10.50. This vulnerability could be remotely exploited to allow Remote SQL Injection. | ||||