Total
14501 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2017-15969 | 1 Pilotgroup | 1 Allsharevideo | 2025-04-20 | N/A |
| PG All Share Video 1.0 allows SQL Injection via the PATH_INFO to search/tag, friends/index, users/profile, or video_catalog/category. | ||||
| CVE-2017-15970 | 1 Phpcityportal | 1 Phpcityportal | 2025-04-20 | N/A |
| PHP CityPortal 2.0 allows SQL Injection via the nid parameter to index.php in a page=news action, or the cat parameter. | ||||
| CVE-2017-15971 | 1 Softdatepro | 1 Same Date Pro | 2025-04-20 | 9.8 Critical |
| Same Sex Dating Software Pro 1.0 allows SQL Injection via the viewprofile.php profid parameter, the viewmessage.php sender_id parameter, or the /admin Email field, a related issue to CVE-2017-15972. | ||||
| CVE-2017-15972 | 1 Softdatepro | 1 Dating Software | 2025-04-20 | N/A |
| SoftDatepro Dating Social Network 1.3 allows SQL Injection via the viewprofile.php profid parameter, the viewmessage.php sender_id parameter, or the /admin Email field, a related issue to CVE-2017-15971. | ||||
| CVE-2017-15973 | 1 Sokial | 1 Sokial | 2025-04-20 | N/A |
| Sokial Social Network Script 1.0 allows SQL Injection via the id parameter to admin/members_view.php. | ||||
| CVE-2017-15974 | 1 Datacomponents | 1 Tpanel | 2025-04-20 | N/A |
| tPanel 2009 allows SQL injection for Authentication Bypass via 'or 1=1 or ''=' to login.php. | ||||
| CVE-2017-15976 | 1 Zeescripts | 1 Zeebuddy | 2025-04-20 | N/A |
| ZeeBuddy 2x allows SQL Injection via the admin/editadgroup.php groupid parameter, a different vulnerability than CVE-2008-3604. | ||||
| CVE-2017-15977 | 1 Protectedlinks | 1 Expiring Download Links | 2025-04-20 | N/A |
| Protected Links - Expiring Download Links 1.0 allows SQL Injection via the username parameter. | ||||
| CVE-2017-15978 | 1 Arox | 1 School Erp Php Script | 2025-04-20 | N/A |
| AROX School ERP PHP Script 1.0 allows SQL Injection via the office_admin/ id parameter. | ||||
| CVE-2017-15979 | 1 Odallated | 1 Shareet | 2025-04-20 | N/A |
| Shareet - Photo Sharing Social Network 1.0 allows SQL Injection via the photo parameter. | ||||
| CVE-2017-15980 | 1 Rowindex | 1 Us Zip Codes Database Script | 2025-04-20 | N/A |
| US Zip Codes Database Script 1.0 allows SQL Injection via the state parameter. | ||||
| CVE-2017-15981 | 1 Geniusocean | 1 Newspaper | 2025-04-20 | 9.8 Critical |
| Responsive Newspaper Magazine & Blog CMS 1.0 allows SQL Injection via the id parameter to admin/admin_process.php for form editing. | ||||
| CVE-2017-15982 | 1 Geniusocean | 1 News | 2025-04-20 | 9.8 Critical |
| Dynamic News Magazine & Blog CMS 1.0 allows SQL Injection via the id parameter to admin/admin_process.php for form editing. | ||||
| CVE-2017-15983 | 1 Geniusocean | 1 Mymagazine Magazine \& Blog Cms | 2025-04-20 | N/A |
| MyMagazine Magazine & Blog CMS 1.0 allows SQL Injection via the id parameter to admin/admin_process.php for form editing. | ||||
| CVE-2017-15985 | 1 Readymadeb2bscript | 1 Basic B2b Script | 2025-04-20 | N/A |
| Basic B2B Script allows SQL Injection via the product_view1.php pid or id parameter. | ||||
| CVE-2017-15986 | 1 Cpa Lead Reward Script Project | 1 Cpa Lead Reward Script | 2025-04-20 | N/A |
| CPA Lead Reward Script allows SQL Injection via the username parameter. | ||||
| CVE-2017-15988 | 1 Nicephpscripts | 1 Nice Php Faq Script | 2025-04-20 | N/A |
| Nice PHP FAQ Script allows SQL Injection via the index.php nice_theme parameter, a different vulnerability than CVE-2008-6525. | ||||
| CVE-2017-15991 | 1 Vastal | 1 Agent Zone | 2025-04-20 | N/A |
| Vastal I-Tech Agent Zone (aka The Real Estate Script) allows SQL Injection in searchCommercial.php via the property_type, city, or posted_by parameter, or searchResidential.php via the property_type, city, or bedroom parameter, a different vulnerability than CVE-2008-3951, CVE-2009-3497, and CVE-2012-0982. | ||||
| CVE-2017-15992 | 1 Website Broker Script Project | 1 Website Broker Script | 2025-04-20 | N/A |
| Website Broker Script allows SQL Injection via the 'status_id' Parameter to status_list.php. | ||||
| CVE-2017-16000 | 1 Eyesofnetwork | 1 Eyesofnetwork | 2025-04-20 | N/A |
| SQL injection vulnerability in the EyesOfNetwork web interface (aka eonweb) 5.1-0 allows remote authenticated administrators to execute arbitrary SQL commands via the graph parameter to module/capacity_per_label/index.php. | ||||