Security Vulnerabilities, CVEs, Published In July 2008 (Sql injection)
Multiple SQL injection vulnerabilities in Mobius for Mimsy XG 1 1.4.4.1 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the id parameter to browse.php or (2) the s parameter in an exhibitions action to detail.php.
Max CVSS
7.5
EPSS Score
0.09%
Published
2008-07-31
Updated
2017-09-29
SQL injection vulnerability in ugroups.php in Youtuber Clone allows remote attackers to execute arbitrary SQL commands via the UID parameter.
Max CVSS
7.5
EPSS Score
0.14%
Published
2008-07-31
Updated
2017-09-29
SQL injection vulnerability in browse.php in TriO 2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.
Max CVSS
7.5
EPSS Score
0.11%
Published
2008-07-31
Updated
2017-09-29
SQL injection vulnerability in home/index.asp in fipsCMS light 2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the r parameter, a different vector than CVE-2006-6115 and CVE-2007-2561.
Max CVSS
7.5
EPSS Score
0.14%
Published
2008-07-31
Updated
2017-09-29
SQL injection vulnerability in modules/members.php in IceBB before 1.0-rc9.3 allows remote attackers to execute arbitrary SQL commands via the username parameter in a members action to index.php, related to an incorrect protection mechanism in the clean_string function in includes/functions.php.
Max CVSS
7.5
EPSS Score
1.13%
Published
2008-07-31
Updated
2017-09-29
SQL injection vulnerability in line2.php in SiteAdmin allows remote attackers to execute arbitrary SQL commands via the art parameter.
Max CVSS
7.5
EPSS Score
1.13%
Published
2008-07-31
Updated
2017-09-29
SQL injection vulnerability in category.php in Greatclone GC Auction Platinum allows remote attackers to execute arbitrary SQL commands via the cate_id parameter.
Max CVSS
7.5
EPSS Score
1.13%
Published
2008-07-31
Updated
2017-09-29
SQL injection vulnerability in Comsenz EPShop (aka ECShop) before 3.0 allows remote attackers to execute arbitrary SQL commands via the pid parameter in a (1) pro_show or (2) disppro action to the default URI.
Max CVSS
7.5
EPSS Score
0.06%
Published
2008-07-31
Updated
2017-09-29
SQL injection vulnerability in showcat.php in phpLinkat 0.1 allows remote attackers to execute arbitrary SQL commands via the catid parameter.
Max CVSS
7.5
EPSS Score
0.10%
Published
2008-07-31
Updated
2017-09-29
SQL injection vulnerability in mojoClassified.cgi in MojoPersonals allows remote attackers to execute arbitrary SQL commands via the cat parameter.
Max CVSS
7.5
EPSS Score
0.12%
Published
2008-07-31
Updated
2017-09-29
SQL injection vulnerability in events.cfm in BookMine allows remote attackers to execute arbitrary SQL commands via the events_id parameter.
Max CVSS
7.5
EPSS Score
0.25%
Published
2008-07-31
Updated
2017-08-08
Multiple SQL injection vulnerabilities in Def-Blog 1.0.3 allow remote attackers to execute arbitrary SQL commands via the article parameter to (1) comaddok.php and (2) comlook.php.
Max CVSS
7.5
EPSS Score
0.09%
Published
2008-07-30
Updated
2018-10-11
SQL injection vulnerability in show.php in PHPFootball 1.6 allows remote attackers to execute arbitrary SQL commands via the dbtable parameter.
Max CVSS
7.5
EPSS Score
0.06%
Published
2008-07-30
Updated
2017-09-29
SQL injection vulnerability in album.php in AlstraSoft Video Share Enterprise 4.51 allows remote attackers to execute arbitrary SQL commands via the UID parameter, a different vector than CVE-2007-4086.
Max CVSS
7.5
EPSS Score
0.09%
Published
2008-07-30
Updated
2017-09-29
SQL injection vulnerability in mojoAuto.cgi in MojoAuto allows remote attackers to execute arbitrary SQL commands via the cat_a parameter in a browse action.
Max CVSS
7.5
EPSS Score
0.11%
Published
2008-07-30
Updated
2017-09-29
SQL injection vulnerability in mojoClassified.cgi in MojoClassifieds 2.0 allows remote attackers to execute arbitrary SQL commands via the cat_a parameter.
Max CVSS
7.5
EPSS Score
0.11%
Published
2008-07-30
Updated
2017-09-29
SQL injection vulnerability in comment.php in Fizzmedia 1.51.2 allows remote attackers to execute arbitrary SQL commands via the mid parameter.
Max CVSS
7.5
EPSS Score
0.09%
Published
2008-07-30
Updated
2017-09-29
SQL injection vulnerability in picture.php in phpTest 0.6.3 allows remote attackers to execute arbitrary SQL commands via the image_id parameter.
Max CVSS
7.5
EPSS Score
0.06%
Published
2008-07-30
Updated
2017-09-29
SQL injection vulnerability in ajax.php in Gregarius 0.5.4 and earlier allows remote attackers to execute arbitrary SQL commands via the rsargs array parameter in an __exp__getFeedContent action.
Max CVSS
7.5
EPSS Score
0.34%
Published
2008-07-30
Updated
2018-10-11
SQL injection vulnerability in search_form.php in Getacoder Clone allows remote attackers to execute arbitrary SQL commands via the sb_protype parameter.
Max CVSS
7.5
EPSS Score
0.09%
Published
2008-07-30
Updated
2017-09-29
SQL injection vulnerability in the CUA Login Module in EMC Centera Universal Access (CUA) 4.0_4735.p4 allows remote attackers to execute arbitrary SQL commands via the user (user name) field.
Max CVSS
7.5
EPSS Score
2.57%
Published
2008-07-30
Updated
2017-08-08
SQL injection vulnerability in products_rss.php in ViArt Shop 3.5 and earlier allows remote attackers to execute arbitrary SQL commands via the category_id parameter.
Max CVSS
7.5
EPSS Score
0.40%
Published
2008-07-30
Updated
2018-10-11
SQL injection vulnerability in story.php in Pligg CMS Beta 9.9.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: this might overlap CVE-2008-1774.
Max CVSS
7.5
EPSS Score
0.11%
Published
2008-07-30
Updated
2017-09-29
SQL injection vulnerability in register.php in Steve Bourgeois and Chris Vincent Owl Intranet Knowledgebase 0.95 and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Max CVSS
7.5
EPSS Score
0.13%
Published
2008-07-29
Updated
2017-08-08
SQL injection vulnerability in sitemap.xml.php in Camera Life 2.6.2 allows remote attackers to execute arbitrary SQL commands via the id parameter in a photos action.
Max CVSS
7.5
EPSS Score
0.14%
Published
2008-07-28
Updated
2017-09-29