Prozilla : Security Vulnerabilities, CVEs, (Sql injection)
SQL injection vulnerability in directory.php in Prozilla Hosting Index allows remote attackers to execute arbitrary SQL commands via the id parameter in a deadlink action, a different vector than CVE-2008-2083.
Max CVSS
7.5
EPSS Score
0.09%
Published
2009-02-11
Updated
2017-09-29
SQL injection vulnerability in directory.php in Prozilla Hosting Index, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the cat_id parameter in a list action.
Max CVSS
6.8
EPSS Score
0.26%
Published
2008-05-05
Updated
2018-10-11
SQL injection vulnerability in project.php in Prozilla Freelancers allows remote attackers to execute arbitrary SQL commands via the project parameter.
Max CVSS
7.5
EPSS Score
0.11%
Published
2008-04-17
Updated
2017-09-29
SQL injection vulnerability in view_reviews.php in Prozilla Cheat Script (aka Cheats) 2.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.
Max CVSS
7.5
EPSS Score
0.14%
Published
2008-04-17
Updated
2017-09-29
SQL injection vulnerability in forum.php in Prozilla Forum allows remote attackers to execute arbitrary SQL commands via the forum parameter.
Max CVSS
6.8
EPSS Score
0.09%
Published
2008-04-15
Updated
2017-09-29
SQL injection vulnerability in directory.php in Prozilla Entertainers 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the cat parameter. NOTE: some of these details are obtained from third party information.
Max CVSS
7.5
EPSS Score
0.11%
Published
2008-04-15
Updated
2017-10-19
SQL injection vulnerability in category.php in Prozilla Webring allows remote attackers to execute arbitrary SQL commands via the cat parameter.
Max CVSS
6.8
EPSS Score
1.07%
Published
2007-08-15
Updated
2017-10-19
SQL injection vulnerability in directory.php in Prozilla Pub Site Directory allows remote attackers to execute arbitrary SQL commands via the cat parameter.
Max CVSS
7.5
EPSS Score
0.07%
Published
2007-08-08
Updated
2017-09-29
Multiple SQL injection vulnerabilities in Prozilla Directory Script allow remote attackers to execute arbitrary SQL commands via the cat_id parameter in a list action to directory.php, and other unspecified vectors.
Max CVSS
7.5
EPSS Score
0.16%
Published
2007-07-17
Updated
2017-09-29
9 vulnerabilities found