Total
15160 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2015-9352 | 1 Wp-polls Project | 1 Wp-polls | 2024-11-21 | N/A |
| The wp-polls plugin before 2.72 for WordPress has SQL injection. | ||||
| CVE-2015-9344 | 1 Perafox | 1 Link Log | 2024-11-21 | N/A |
| The link-log plugin before 2.1 for WordPress has SQL injection. | ||||
| CVE-2015-9335 | 1 Bestwebsoft | 1 Limit Attempts | 2024-11-21 | N/A |
| The limit-attempts plugin before 1.1.1 for WordPress has SQL injection during IP address handling. | ||||
| CVE-2015-9334 | 1 Email-newsletter Project | 1 Email-newsletter | 2024-11-21 | N/A |
| The email-newsletter plugin through 20.15 for WordPress has SQL injection. | ||||
| CVE-2015-9333 | 1 Cformsii Project | 1 Cformsii | 2024-11-21 | 9.8 Critical |
| The cforms2 plugin before 14.6.10 for WordPress has SQL injection. | ||||
| CVE-2015-9330 | 1 Soflyy | 1 Wp All Import | 2024-11-21 | N/A |
| The wp-all-import plugin before 3.2.5 for WordPress has blind SQL injection. | ||||
| CVE-2015-9326 | 1 Wpbusinessintelligence | 1 Wp Business Intelligence | 2024-11-21 | N/A |
| The wp-business-intelligence-lite plugin before 1.6.3 for WordPress has SQL injection. | ||||
| CVE-2015-9325 | 1 Bestwebsoft | 1 Visitors Online | 2024-11-21 | N/A |
| The visitors-online plugin before 0.4 for WordPress has SQL injection. | ||||
| CVE-2015-9323 | 1 Duckdev | 1 404 To 301 | 2024-11-21 | 9.8 Critical |
| The 404-to-301 plugin before 2.0.3 for WordPress has SQL injection. | ||||
| CVE-2015-9316 | 1 Wpfastestcache | 1 Wp Fastest Cache | 2024-11-21 | N/A |
| The wp-fastest-cache plugin before 0.8.4.9 for WordPress has SQL injection in wp-admin/admin-ajax.php?action=wpfc_wppolls_ajax_request via the poll_id parameter. | ||||
| CVE-2015-9315 | 1 Newstatpress Project | 1 Newstatpress | 2024-11-21 | N/A |
| The newstatpress plugin before 1.0.1 for WordPress has SQL injection. | ||||
| CVE-2015-9313 | 1 Newstatpress Project | 1 Newstatpress | 2024-11-21 | N/A |
| The newstatpress plugin before 1.0.5 for WordPress has SQL injection related to an IMG element. | ||||
| CVE-2015-9310 | 1 Tipsandtricks-hq | 1 All In One Wp Security \& Firewall | 2024-11-21 | N/A |
| The all-in-one-wp-security-and-firewall plugin before 3.9.1 for WordPress has multiple SQL injection issues. | ||||
| CVE-2015-9301 | 1 W3eden | 1 Live Forms | 2024-11-21 | N/A |
| The liveforms plugin before 3.2.0 for WordPress has SQL injection. | ||||
| CVE-2015-9249 | 1 Skyboxsecurity | 1 Skybox Platform | 2024-11-21 | N/A |
| An issue was discovered in Skybox Platform before 7.5.201. SQL Injection exists in /skyboxview/webservice/services/VersionWebService via a soapenv:Body element. | ||||
| CVE-2015-9244 | 1 Mysqljs | 1 Mysql | 2024-11-21 | 9.8 Critical |
| Keys of objects in mysql node module v2.0.0-alpha7 and earlier are not escaped with `mysql.escape()` which could lead to SQL Injection. | ||||
| CVE-2015-8298 | 1 Rxtec | 1 Rxadmin | 2024-11-21 | N/A |
| Multiple SQL injection vulnerabilities in the login page in RXTEC RXAdmin UPDATE 06 / 2012 allow remote attackers to execute arbitrary SQL commands via the (1) loginpassword, (2) loginusername, (3) zusatzlicher, or (4) groupid parameter to index.htm, or the (5) rxtec cookie to index.htm. | ||||
| CVE-2015-7567 | 1 Yeager | 1 Yeager Cms | 2024-11-21 | 9.8 Critical |
| SQL injection vulnerability in Yeager CMS 1.2.1 allows remote attackers to execute arbitrary SQL commands via the "passwordreset&token" parameter. | ||||
| CVE-2015-7342 | 1 Joobi | 1 Jnews | 2024-11-21 | 7.2 High |
| JNews Joomla Component before 8.5.0 allows SQL injection via upload thumbnail, Queue Search Field, Subscribers Search Field, or Newsletters Search Field. | ||||
| CVE-2015-7340 | 1 Gwesystems | 1 Jevents | 2024-11-21 | 7.2 High |
| JEvents Joomla Component before 3.4.0 RC6 has SQL Injection via evid in a Manage Events action. | ||||