Tpl Design : Security Vulnerabilities, CVEs,
SQL injection vulnerability in category.php in TPL Design tplShop 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the first_row parameter.
Max CVSS
7.5
EPSS Score
0.77%
Published
2006-06-22
Updated
2017-07-20
Multiple SQL injection vulnerabilities in tplSoccerSite 1.0 allow remote attackers to execute arbitrary SQL commands via (1) the opp parameter to tampereunited/opponent.php; or the id parameter to (2) index.php, (3) player.php, (4) matchdetails.php, or (5) additionalpage.php in tampereunited/.
Max CVSS
7.5
EPSS Score
0.34%
Published
2008-07-21
Updated
2017-09-29
2 vulnerabilities found