Security Vulnerabilities, CVEs, Published In August 2010 (Sql injection)

CVE-2010-3188

SQL injection vulnerability in search.aspx in BugTracker.NET 3.4.3 and earlier allows remote attackers to execute arbitrary SQL commands via a custom field to the search page.
Max CVSS
7.5
EPSS Score
0.14%
Published
2010-08-31
Updated
2018-10-10

CVE-2010-3029

SQL injection vulnerability in statistics.php in PHPKick 0.8 allows remote attackers to execute arbitrary SQL commands via the gameday parameter in an overview action.
Max CVSS
7.5
EPSS Score
0.12%
Published
2010-08-16
Updated
2010-08-17

CVE-2010-3027

SQL injection vulnerability in index.php in Tycoon Baseball Script 1.0.9 allows remote attackers to execute arbitrary SQL commands via the game_id parameter in a game_player action.
Max CVSS
7.5
EPSS Score
0.15%
Published
2010-08-16
Updated
2010-08-17

CVE-2010-3013

SQL injection vulnerability in groupadmin.php in Pligg before 1.1.1 allows remote attackers to execute arbitrary SQL commands via the role parameter, a different vulnerability than CVE-2010-2577.
Max CVSS
7.5
EPSS Score
0.57%
Published
2010-08-16
Updated
2010-08-16

CVE-2010-2933

SQL injection vulnerability in AV Scripts AV Arcade 3 allows remote attackers to execute arbitrary SQL commands via the ava_code cookie to the "main page," related to index.php and the login task.
Max CVSS
7.5
EPSS Score
0.06%
Published
2010-08-05
Updated
2017-08-17

CVE-2010-2826

SQL injection vulnerability in Cisco Wireless Control System (WCS) 6.0.x before 6.0.196.0 allows remote authenticated users to execute arbitrary SQL commands via vectors related to the ORDER BY clause of the Client List screens, aka Bug ID CSCtf37019.
Max CVSS
9.0
EPSS Score
0.08%
Published
2010-08-17
Updated
2011-07-26

CVE-2010-2577

Multiple SQL injection vulnerabilities in Pligg before 1.1.1 allow remote attackers to execute arbitrary SQL commands via the title parameter to (1) storyrss.php or (2) story.php.
Max CVSS
7.5
EPSS Score
0.57%
Published
2010-08-16
Updated
2010-08-16

CVE-2009-4992

SQL injection vulnerability in paidbanner.php in LM Starmail Paidmail 2.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter.
Max CVSS
7.5
EPSS Score
0.11%
Published
2010-08-25
Updated
2017-09-19

CVE-2009-4985

SQL injection vulnerability in browse.php in Accessories Me PHP Affiliate Script 1.4 allows remote attackers to execute arbitrary SQL commands via the Go parameter.
Max CVSS
7.5
EPSS Score
0.11%
Published
2010-08-25
Updated
2017-09-19

CVE-2009-4982

SQL injection vulnerability in the select function in Irokez CMS 0.7.1, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the PATH_INFO to the default URI.
Max CVSS
6.8
EPSS Score
0.08%
Published
2010-08-25
Updated
2017-09-19

CVE-2009-4979

Multiple SQL injection vulnerabilities in search.php in Photokorn Gallery 1.81 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) where[], (2) sort, (3) order, and (4) Match parameters.
Max CVSS
7.5
EPSS Score
0.13%
Published
2010-08-25
Updated
2010-08-25
11 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close