Filtered by CWE-89
Filtered by vendor Subscriptions
Total 18782 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2017-16896 1 Tt-rss 1 Tiny Tiny Rss 2025-04-20 N/A
A SQL injection in classes/handler/public.php in the forgotpass component of Tiny Tiny RSS 17.4 exists via the login parameter.
CVE-2017-16851 1 Zohocorp 1 Manageengine Applications Manager 2025-04-20 N/A
Zoho ManageEngine Applications Manager 13 before build 13530 allows SQL injection via the /MyPage.do widgetid parameter.
CVE-2017-17111 1 Scubez 1 Posty Readymade Classifieds 2025-04-20 N/A
Posty Readymade Classifieds Script 1.0 allows an attacker to inject SQL commands via a listings.php?catid= or ads-details.php?ID= request.
CVE-2017-17572 1 Amazon Clone Project 1 Amazon Clone 2025-04-20 9.8 Critical
FS Amazon Clone 1.0 has SQL Injection via the PATH_INFO to /VerAyari.
CVE-2017-17594 1 Domainsale Php Script Project 1 Domainsale Php Script 2025-04-20 N/A
DomainSale PHP Script 1.0 has SQL Injection via the domain.php id parameter.
CVE-2017-1757 1 Ibm 1 Security Guardium 2025-04-20 N/A
IBM Security Guardium 10.0 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 135858.
CVE-2017-17571 1 Foodpanda Clone Project 1 Foodpanda Clone 2025-04-20 9.8 Critical
FS Foodpanda Clone 1.0 has SQL Injection via the /food keywords parameter.
CVE-2017-17576 1 Gigs Script Project 1 Gigs Script 2025-04-20 9.8 Critical
FS Gigs Script 1.0 has SQL Injection via the browse-category.php cat parameter, browse-scategory.php sc parameter, or service-provider.php ser parameter.
CVE-2017-17578 1 Crowdfunding Script Project 1 Crowdfunding Script 2025-04-20 9.8 Critical
FS Crowdfunding Script 1.0 has SQL Injection via the latest_news_details.php id parameter.
CVE-2017-17580 1 Linkedin Clone Project 1 Linkedin Clone 2025-04-20 9.8 Critical
FS Linkedin Clone 1.0 has SQL Injection via the group.php grid parameter, profile.php fid parameter, or company_details.php id parameter.
CVE-2017-17584 1 Makemytrip Clone Project 1 Makemytrip Clone 2025-04-20 9.8 Critical
FS Makemytrip Clone 1.0 has SQL Injection via the show-flight-result.php fl_orig or fl_dest parameter.
CVE-2017-17595 1 Beauty Parlour Booking Script Project 1 Beauty Parlour Booking Script 2025-04-20 N/A
Beauty Parlour Booking Script 1.0 has SQL Injection via the /list gender or city parameter.
CVE-2017-17596 1 Entrepreneur Job Portal Script Project 1 Entrepreneur Job Portal Script 2025-04-20 N/A
Entrepreneur Job Portal Script 2.0.6 has SQL Injection via the jobsearch_all.php rid1 parameter.
CVE-2017-17597 1 Nearbuy Clone Script Project 1 Nearbuy Clone Script 2025-04-20 N/A
Nearbuy Clone Script 3.2 has SQL Injection via the category_list.php search parameter.
CVE-2017-17606 1 Co-work Space Search Script Project 1 Co-work Space Search Script 2025-04-20 N/A
Co-work Space Search Script 1.0 has SQL Injection via the /list city parameter.
CVE-2017-17607 1 Cms Auditor Website Project 1 Cms Auditor Website 2025-04-20 N/A
CMS Auditor Website 1.0 has SQL Injection via the PATH_INFO to /news-detail.
CVE-2017-17614 1 Hotel Restaurant Reviews And Feedback Script Project 1 Hotel Restaurant Reviews And Feedback Script 2025-04-20 N/A
Food Order Script 1.0 has SQL Injection via the /list city parameter.
CVE-2017-17612 1 Hot Scripts Clone Project 1 Hot Scripts Clone 2025-04-20 N/A
Hot Scripts Clone 3.1 has SQL Injection via the /categories subctid or mctid parameter.
CVE-2017-17613 1 Freelance Website Script Project 1 Freelance Website Script 2025-04-20 N/A
Freelance Website Script 2.0.6 has SQL Injection via the jobdetails.php pr_id parameter or the searchbycat_list.php catid parameter.
CVE-2017-17620 1 Lawyer Search Script Project 1 Lawyer Search Script 2025-04-20 N/A
Lawyer Search Script 1.1 has SQL Injection via the /lawyer-list city parameter.