• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-89

CVE-2018-10197

February 26, 2023 by

There is a time-based blind SQL injection vulnerability in the Access Manager component before 9.18.040 and 10.x before 10.18.040 in ELO ELOenterprise 9 and 10 and ELOprofessional 9 and 10 that makes it possible to read all database content. The vulnerability exists in the ticket HTTP GET parameter. For example, one can succeed in reading the password hash of the administrator user in the “userdata” table from the “eloam” database.

CVE-2018-10094

February 26, 2023 by

SQL injection vulnerability in Dolibarr before 7.0.2 allows remote attackers to execute arbitrary SQL commands via vectors involving integer parameters without quotes.

CVE-2018-10050

February 26, 2023 by

iScripts eSwap v2.4 has SQL injection via the “registration_settings.php” ddlFree parameter in the Admin Panel.

CVE-2018-1000890

February 26, 2023 by

FrontAccounting 2.4.5 contains a Time Based Blind SQL Injection vulnerability in the parameter “filterType” in /attachments.php that can allow the attacker to grab the entire database of the application.

CVE-2018-1002000

February 26, 2023 by

There is blind SQL injection in WordPress Arigato Autoresponder and Newsletter v2.5.1.8 These vulnerabilities require administrative privileges to exploit. There is an exploitable blind SQL injection vulnerability via the del_ids variable by POST request.

CVE-2018-1000867

February 26, 2023 by

WeBid version up to current version 1.2.2 contains a SQL Injection vulnerability in All five yourauctions*.php scripts that can result in Database Read via Blind SQL Injection. This attack appear to be exploitable via HTTP Request. This vulnerability appears to have been fixed in after commit 256a5f9d3eafbc477dcf77c7682446cc4b449c7f.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 371
  • Go to page 372
  • Go to page 373
  • Go to page 374
  • Go to page 375
  • Interim pages omitted …
  • Go to page 956
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE