Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (16333 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2015-9352 1 Wp-polls Project 1 Wp-polls 2024-11-21 N/A
The wp-polls plugin before 2.72 for WordPress has SQL injection.
CVE-2015-9344 1 Perafox 1 Link Log 2024-11-21 N/A
The link-log plugin before 2.1 for WordPress has SQL injection.
CVE-2015-9335 1 Bestwebsoft 1 Limit Attempts 2024-11-21 N/A
The limit-attempts plugin before 1.1.1 for WordPress has SQL injection during IP address handling.
CVE-2015-9334 1 Email-newsletter Project 1 Email-newsletter 2024-11-21 N/A
The email-newsletter plugin through 20.15 for WordPress has SQL injection.
CVE-2015-9333 1 Cformsii Project 1 Cformsii 2024-11-21 9.8 Critical
The cforms2 plugin before 14.6.10 for WordPress has SQL injection.
CVE-2015-9330 1 Soflyy 1 Wp All Import 2024-11-21 N/A
The wp-all-import plugin before 3.2.5 for WordPress has blind SQL injection.
CVE-2015-9326 1 Wpbusinessintelligence 1 Wp Business Intelligence 2024-11-21 N/A
The wp-business-intelligence-lite plugin before 1.6.3 for WordPress has SQL injection.
CVE-2015-9325 1 Bestwebsoft 1 Visitors Online 2024-11-21 N/A
The visitors-online plugin before 0.4 for WordPress has SQL injection.
CVE-2015-9323 1 Duckdev 1 404 To 301 2024-11-21 9.8 Critical
The 404-to-301 plugin before 2.0.3 for WordPress has SQL injection.
CVE-2015-9316 1 Wpfastestcache 1 Wp Fastest Cache 2024-11-21 N/A
The wp-fastest-cache plugin before 0.8.4.9 for WordPress has SQL injection in wp-admin/admin-ajax.php?action=wpfc_wppolls_ajax_request via the poll_id parameter.
CVE-2015-9315 1 Newstatpress Project 1 Newstatpress 2024-11-21 N/A
The newstatpress plugin before 1.0.1 for WordPress has SQL injection.
CVE-2015-9313 1 Newstatpress Project 1 Newstatpress 2024-11-21 N/A
The newstatpress plugin before 1.0.5 for WordPress has SQL injection related to an IMG element.
CVE-2015-9310 1 Tipsandtricks-hq 1 All In One Wp Security \& Firewall 2024-11-21 N/A
The all-in-one-wp-security-and-firewall plugin before 3.9.1 for WordPress has multiple SQL injection issues.
CVE-2015-9301 1 W3eden 1 Live Forms 2024-11-21 N/A
The liveforms plugin before 3.2.0 for WordPress has SQL injection.
CVE-2015-9249 1 Skyboxsecurity 1 Skybox Platform 2024-11-21 N/A
An issue was discovered in Skybox Platform before 7.5.201. SQL Injection exists in /skyboxview/webservice/services/VersionWebService via a soapenv:Body element.
CVE-2015-9244 1 Mysqljs 1 Mysql 2024-11-21 9.8 Critical
Keys of objects in mysql node module v2.0.0-alpha7 and earlier are not escaped with `mysql.escape()` which could lead to SQL Injection.
CVE-2015-8298 1 Rxtec 1 Rxadmin 2024-11-21 N/A
Multiple SQL injection vulnerabilities in the login page in RXTEC RXAdmin UPDATE 06 / 2012 allow remote attackers to execute arbitrary SQL commands via the (1) loginpassword, (2) loginusername, (3) zusatzlicher, or (4) groupid parameter to index.htm, or the (5) rxtec cookie to index.htm.
CVE-2015-7567 1 Yeager 1 Yeager Cms 2024-11-21 9.8 Critical
SQL injection vulnerability in Yeager CMS 1.2.1 allows remote attackers to execute arbitrary SQL commands via the "passwordreset&token" parameter.
CVE-2015-7342 1 Joobi 1 Jnews 2024-11-21 7.2 High
JNews Joomla Component before 8.5.0 allows SQL injection via upload thumbnail, Queue Search Field, Subscribers Search Field, or Newsletters Search Field.
CVE-2015-7340 1 Gwesystems 1 Jevents 2024-11-21 7.2 High
JEvents Joomla Component before 3.4.0 RC6 has SQL Injection via evid in a Manage Events action.