Insanevisions : Security Vulnerabilities, CVEs, (Sql injection)
SQL injection vulnerability in asd.php in OneCMS 2.5 allows remote attackers to execute arbitrary SQL commands via the sitename parameter.
Max CVSS
7.5
EPSS Score
0.06%
Published
2009-04-07
Updated
2017-09-29
SQL injection vulnerability in inc/bb/topic.php in Insane Visions AdaptBB 1.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the topic_id parameter in a topic action to index.php.
Max CVSS
6.8
EPSS Score
0.06%
Published
2009-04-07
Updated
2017-09-29
SQL injection vulnerability in index.php in OneCMS 2.5, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the user parameter in an elite action.
Max CVSS
6.8
EPSS Score
0.09%
Published
2010-03-10
Updated
2017-08-17
3 vulnerabilities found