Show filters
34 Total Results
Displaying 11-20 of 34
Sort by:
Attacker Value
Unknown
CVE-2008-6640
Disclosure Date: April 07, 2009 (last updated October 04, 2023)
Multiple SQL injection vulnerabilities in BatmanPorTaL allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) uyeadmin.asp and (2) profil.asp. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
0
Attacker Value
Unknown
CVE-2009-0447
Disclosure Date: February 10, 2009 (last updated October 04, 2023)
Multiple SQL injection vulnerabilities in default.asp in MyDesign Sayac 2.0 allow remote attackers to execute arbitrary SQL commands via (1) the user parameter (aka UserName field) or (2) the pass parameter (aka Pass field) to (a) admin/admin.asp or (b) the default URI under admin/. NOTE: some of these details are obtained from third party information.
0
Attacker Value
Unknown
CVE-2008-5707
Disclosure Date: December 24, 2008 (last updated October 04, 2023)
SQL injection vulnerability in urunler.asp in Iltaweb Alisveris Sistemi allows remote attackers to execute arbitrary SQL commands via the catno parameter.
0
Attacker Value
Unknown
CVE-2008-5057
Disclosure Date: November 13, 2008 (last updated October 04, 2023)
SQL injection vulnerability in film.asp in Yigit Aybuga Dizi Portali allows remote attackers to execute arbitrary SQL commands via the film parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
0
Attacker Value
Unknown
CVE-2008-4573
Disclosure Date: October 15, 2008 (last updated October 04, 2023)
SQL injection vulnerability in kategori.asp in MunzurSoft Wep Portal W3 allows remote attackers to execute arbitrary SQL commands via the kat parameter.
0
Attacker Value
Unknown
CVE-2008-4574
Disclosure Date: October 15, 2008 (last updated October 04, 2023)
SQL injection vulnerability in default.asp in Ayco Okul Portali allows remote attackers to execute arbitrary SQL commands via the linkid parameter.
0
Attacker Value
Unknown
CVE-2008-3888
Disclosure Date: September 02, 2008 (last updated October 04, 2023)
SQL injection vulnerability in members.asp in Mini-NUKE Freehost 2.3 allows remote attackers to execute arbitrary SQL commands via the uid parameter in a member_details action.
0
Attacker Value
Unknown
CVE-2008-3495
Disclosure Date: August 06, 2008 (last updated October 04, 2023)
SQL injection vulnerability in kategori.asp in Pcshey Portal allows remote attackers to execute arbitrary SQL commands via the kid parameter.
0
Attacker Value
Unknown
CVE-2008-2873
Disclosure Date: June 26, 2008 (last updated October 04, 2023)
sHibby sHop 2.2 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request to Db/urun.mdb.
0
Attacker Value
Unknown
CVE-2008-2882
Disclosure Date: June 26, 2008 (last updated October 04, 2023)
upgrade.asp in sHibby sHop 2.2 and earlier does not require administrative authentication, which allows remote attackers to update a file or have unspecified other impact via a direct request.
0
