Vastal : Security Vulnerabilities, CVEs, Published In 2009 (Sql injection)
SQL injection vulnerability in view_news.php in Vastal I-Tech MMORPG Zone allows remote attackers to execute arbitrary SQL commands via the news_id parameter. NOTE: the game_id vector is already covered by CVE-2008-4460.
Max CVSS
7.5
EPSS Score
0.14%
Published
2009-09-30
Updated
2017-08-17
SQL injection vulnerability in view_listing.php in Vastal I-Tech Agent Zone (aka The Real Estate Script) allows remote attackers to execute arbitrary SQL commands via the id parameter.
Max CVSS
7.5
EPSS Score
0.12%
Published
2009-09-30
Updated
2009-10-01
SQL injection vulnerability in view_mag.php in Vastal I-Tech DVD Zone allows remote attackers to execute arbitrary SQL commands via the mag_id parameter, a different vector than CVE-2008-4465.
Max CVSS
7.5
EPSS Score
0.19%
Published
2009-09-30
Updated
2009-10-01
SQL injection vulnerability in view_product.php in Vastal I-Tech Software Zone allows remote attackers to execute arbitrary SQL commands via the cat_id parameter.
Max CVSS
7.5
EPSS Score
0.06%
Published
2009-02-20
Updated
2017-09-29
4 vulnerabilities found