Misc : Remote code execution prevention: 2 '|' characters found as a parameter of a script file Description   In some scripts, if parameters are insufficiently validated, remote users can execute commands on the server by wrapping them in '|' characters. Some advertising websites use pipe character(|) in URLs. This alarm might be useful when attached to an incoming traffic ASQ profile, protecting internal servers for instance.       Default configuration   Profiles High Medium Low Internet Action Block Pass Pass Pass Alarm Level Minor Ignore Ignore Ignore       References   Bugtraq: 13937 Bugtraq: 13637 Bugtraq: 13555 Bugtraq: 13930       Available since   ASQ v3.2.0       Protects   Cacti Multiple SQL Injection and Cross Site Scripting Vulnerabilities Andy PHP Knowledgebase "pdfa" Parameter SQL Injection Vulnerability Joomla Multiple SQL Injection and Cross Site Scripting Vulnerabilities Debian Security Update Fixes DTC Multiple SQL Injection Vulnerabilities PyWebDAV Data Processing Multiple SQL Injection Vulnerabilities IBM Tivoli Netcool/OMNIbus Web GUI Remote SQL Injection Vulnerability Symantec Web Gateway "USERNAME" SQL Injection Vulnerability GALLARIFIC "id" Parameter Remote SQL Injection Vulnerability TECHNOTE "category" Parameter Remote SQL Injection Vulnerability Sahana Agasti "sel" Parameter Remote SQL Injection Vulnerability YPNinc Realty Classifieds "id" Parameter Remote SQL Injection Vulnerability Built2Go PHP Shopping "cat" Parameter Remote SQL Injection Vulnerability TYPO3 Code Execution and Multiple Cross Site Scripting Vulnerabilities Movable Type SQL Injection and Cross Site Scripting Vulnerabilities WordPress "do_trackbacks()" SQL Injection Information Disclosure Issue Jurpopage "category" Parameter Remote SQL Injection Vulnerability IBM WebSphere Commerce Organization Admin Console SQL Injection Joomla! Multiple Remote SQL Injection and Information Disclosure Symantec IM Manager Administration Console SQL Injection Vulnerabilities e107 Data Processing Multiple Remote SQL Injection Vulnerabilities ndCMS "indx" Parameter Remote SQL Injection Vulnerability PBBoard Multiple SQL Injection and Cross Site Scripting Vulnerabilities FreePBX Administrative Interface Multiple SQL Injection Vulnerabilities Powermail for TYPO3 SQL Injection and Cross Site Scripting Vulnerabilities Primitive CMS "cms_write.php" Security Bypass and SQL Injection ibPhotohost "img" Parameter Remote SQL Injection Vulnerability BoutikOne "page" Parameter Remote SQL Injection Vulnerability Fashione E-Commerce Webshop Multiple SQL Injection Vulnerabilities JGen for Joomla "id" Parameter Remote SQL Injection Vulnerability Aardvertiser for Joomla "cat_name" SQL Injection Vulnerability DMXReady Polling Booth Manager "QuestionID" SQL Injection Vulnerability Clantools for Joomla Two Parameter SQL Injection Vulnerabilities Clantools for Joomla "squad" Parameter SQL Injection Vulnerability chillyCMS Username Processing SQL Injection and Cross Site Scripting A-Blog "words" Parameter Handling Remote SQL Injection Vulnerability Debian Security Update Fixes smbind SQL Injection Vulnerability Web Ideas Web Shop "page" and "ps_session" SQL Injection Issues JE FAQ Pro for Joomla "catid" Remote SQL Injection Vulnerability sX-Shop "id" Parameter Remote SQL Injection Vulnerabilities BXR Multiple SQL Injection and Cross Site Scripting Vulnerabilities Area Galid "galid" Parameter Remote SQL Injection Vulnerability BosDev BosClassifieds "cat_id" Parameter SQL Injection Vulnerability Spielothek for Joomla Multiple Parameter SQL Injection Vulnerabilities Concept E-commerce "id" Parameter SQL Injection Vulnerabilities TYPO3 Code Execution and Cross Site Scripting Vulnerabilities MC Content Manager SQL Injection and Cross Site Scripting Vulnerabilities ZeeAdbox "bnnnerid" Parameter Remote SQL Injection Vulnerability Joomdle for Joomla "course_id" Remote SQL Injection Vulnerability Joomla! Multiple Cross Site Scripting and SQL Injection Vulnerabilities XAOS CMS "m" Parameter Remote SQL Injection Vulnerability Ballettin Forum Multiple Parameter SQL Injection Vulnerabilities CMS Ignition "shopMGID" Parameter Remote SQL Injection Vulnerability Caner Hikaye Script "id" Parameter Remote SQL Injection Vulnerability Omnistar Drive Management System Cross Site Scripting Vulnerability MyWebFTP "mwh" Parameter Remote SQL Injection Vulnerability Kayako eSupport "newsid" Parameter SQL Injection Vulnerability BrotherScripts Scripts Directory "id" Parameter SQL Injection Vulnerability I-Net Enquiry Management Script "id" SQL Injection Vulnerability CMSQLite Multiple SQL Injection and Cross Site Scripting Vulnerabilities My Kazaam Address and Contact Organizer SQL Injection Vulnerability Gallery Plugin for EQdkp-Plus "pid" SQL Injection Vulnerability Edge PHP Clickbank Affiliate Marketplace Script SQL Injection Issue MyHome for Joomla "nidimm" Parameter SQL Injection Vulnerability redSHOP for Joomla "pid" Parameter SQL Injection Vulnerability Softbiz PHP Shopping Cart Software "cid" SQL Injection Vulnerability Zylone IT Multiple Parameter Remote SQL Injection Vulnerabilities Uphotogallery "img_id" Parameter Remote SQL Injection Vulnerability KMSoft Guestbook "p" Parameter Remote SQL Injection Vulnerability a2z NetSolutions CMS Multiple Parameter SQL Injection Vulnerabilities Sijio Community Software SQL Injection and Cross Site Scripting Issues HostFriendz Pre Hospital Management System SQL Injection Vulnerabilities BPowerHouse BPAutosales "aid" Remote SQL Injection Vulnerability Tandis CMS "cpage" Parameter Remote SQL Injection Vulnerability BrotherScripts Auction "id" Parameter SQL Injection Vulnerability BrotherScripts Auto Classifieds "id" SQL Injection Vulnerability BrotherScripts Business Directory "id" SQL Injection Vulnerability BrotherScripts Events Directory "id" SQL Injection Vulnerability RightInPoint Lyrics V3 engine "artist_id" SQL Injection Vulnerability Pre Multi-Vendor Shopping Malls "username" SQL Injection Vulnerability AutarTimonial for Joomla "limit" Remote SQL Injection Vulnerability NeoRecruit for Joomla "Itemid" Remote SQL Injection Vulnerability Sandbox SQL Injection and Arbitrary File Upload Vulnerabilities MooreAdvice Multiple Parameter Remote SQL Injection Vulnerabilities Giga Nepal CMS "id" and "pgid" Remote SQL Injection Vulnerabilities eSmart-vision "id" Parameter Remote SQL Injection Vulnerability Asidus WebWizard "page_id" and "site_id" SQL Injection Vulnerabilities BrotherScripts Recipe Website Remote SQL Injection Vulnerabilities BrotherScripts Business Directory Remote SQL Injection Vulnerabilities BrotherScripts Auto Classifieds "id" Remote SQL Injection Vulnerability BookLibrary From Same Author for Joomla SQL Injection Vulnerability Studiomenozzi CMS Multiple Remote SQL Injection Vulnerabilities WikiWebHelp "id" Parameter Remote SQL Injection Vulnerability AddressBook for Joomla "Itemid" Remote SQL Injection Vulnerability Esoftpro Online Contact Manager "id" SQL Injection Vulnerability Esoftpro Online Photo Pro SQL Injection and Cross Site Scripting Issues Esoftpro Online Guestbook Pro SQL Injection and Cross Site Scripting TCW PHP Album SQL Injection and Cross Site Scripting Vulnerability phpaaCMS "id" Parameter Remote SQL Injection Vulnerabilities iScripts MultiCart "orderid" Parameter Remote SQL Injection Vulnerability Ziggurat Farsi CMS "grp" Parameter Remote SQL Injection Vulnerability Setiran CMS "id" Parameter Remote SQL Injection Vulnerability Specialist Bed and Breakfast website SQL Injection Vulnerability Golf Club Site "pp_id" Parameter Remote SQL Injection Vulnerability TaskFreak SQL Injection and Cross Site Scripting Vulnerabilities PHP Bible Search "chapter" Parameter SQL Injection Vulnerability WebDM CMS "cf_id" Parameter Remote SQL Injection Vulnerability PageDirector CMS "sub_catid" Remote SQL Injection Vulnerability YPNinc PHP Realty Script "docID" Remote SQL Injection Vulnerability YPNinc JokeScript "ypncat_id" Remote SQL Injection Vulnerability MySpace Clone 2010 "mode" Remote SQL Injection Vulnerability Clix N Cash Clone 2010 "view" Remote SQL Injection Vulnerability PageDirector CMS "id" Parameter Remote SQL Injection Vulnerability PTCPay GeN4 "upg" Parameter Remote SQL Injection Vulnerability i-Net Solution Online Community "id" Remote SQL Injection Vulnerability Grafik CMS Multiple SQL Injection and Cross Site Scripting Vulnerabilities OneCMS Multiple SQL Injection and Cross Site Scripting Vulnerabilities Swoopo Clone 2010 "id" Parameter Remote SQL Injection Vulnerability i-Net Solution Job Search Engine Script "keyword" SQL Injection Issue 2daybiz Photo Sharing Script "img" Remote SQL Injection Vulnerability 2daybiz Advanced Poll Script "category" SQL Injection Vulnerability 2daybiz Freelance script "cate" Remote SQL Injection Vulnerability 2daybiz Matrimonial Script "complexion" SQL Injection Vulnerability Clicker CMS "lang" Parameter Remote SQL Injection Vulnerability 2daybiz B2B Portal Script "cat_id" Remote SQL Injection Vulnerability 2daybiz custom T-shirt design Multiple SQL Injection Vulnerabilities 2daybiz Online Classified Script "cid" SQL Injection Vulnerability getaphpsite Job Search "topic" Remote SQL Injection Vulnerability 2daybiz Video Community Portal "videoid" Cross Site Scripting Issue getaphpsite Webring Script "cat" Remote SQL Injection Vulnerability getaphpsite Top Sites Script "cat" Remote SQL Injection Vulnerability 2daybiz Social Community Script SQL Injection Vulnerabilities 2daybiz Job Search Engine Script "keyword" SQL Injection Vulnerability YBG Gallery for Joomla "catid" Parameter SQL Injection Vulnerability Cornerstone CMS "id" Parameter Remote SQL Injection Vulnerability Pre Multi-Vendor Shopping Malls "prodid" SQL Injection Vulnerability BoatScripts Classifieds "ID" Parameter Remote SQL Injection Vulnerability PHP E-Mall "id" Parameter Remote SQL Injection Vulnerability Easybe Music Store "AlbumID" Remote SQL Injection Vulnerability Gcms "lang" Parameter Remote SQL Injection Vulnerability Alpin CMS "id" Parameter Remote SQL Injection Vulnerabilities Elite Gaming Ladders "ladder[id]" Remote SQL Injection Vulnerability Kubelance "id" Parameter Remote SQL Injection Vulnerability PHP-Calendar Multiple SQL Injection and Cross Site Scripting Issues eWebquiz "QuizType" Parameter Remote SQL Injection Vulnerability Smart ASP Survey "catid" Parameter SQL Injection Vulnerability SAS Hotel Management System "notfound" SQL Injection Vulnerability Webvolume Business Classified Listing "typeID" SQL Injection Vulnerability Webvolume Restaurant Listing "typeID" SQL Injection Vulnerability Acuity CMS "page" Parameter Remote SQL Injection Vulnerability buymyscripts.net Daily Inspirational Quotes Script SQL Injection Issue buymyscripts.net Joke Website Script "keyword" SQL Injection Vulnerability buymyscripts.net e-Book Store "keyword" SQL Injection Vulnerability buymyscripts.net Membership Site Script "id" SQL Injection Vulnerability buymyscripts.net Lyrics Script Multiple SQL Injection Vulnerabilities UTStats SQL Injection and Cross Site Scripting Vulnerabilities Digital Interchange Calendar "intDivisionID" SQL Injection Vulnerability Real-time ASP Calendar "dt" Parameter SQL Injection Vulnerability Eyeland Studio "id" Parameter Remote SQL Injection Vulnerabilities Digital Interchange Document Library SQL Injection Vulnerability BrightSuite Groupware "ContactID" Parameter SQL Injection Vulnerability Infront "newsid" Parameter Remote SQL Injection Vulnerability BDSMIS TraX "catid" Parameter Remote SQL Injection Vulnerability PHP Planner SQL Injection and Cross Site Scripting Issues E-Php B2B Marketplace SQL Injection and Cross Site Scripting Issues Site para Restaurante - Chef - Gastronomia SQL Injection and Inclusion Development Site Professional Liberal SQL Injection Vulnerability Site to Store Automobile - Motorcycle - Boat SQL Injection Vulnerability Site for Real Estate "imovelfor_id" and "id" SQL Injection Vulnerabilities Yamamah "download" Parameter Remote File Download Vulnerability Science Fair In A Box "type" Parameter SQL Injection Vulnerability Pre Web Host "q" Parameter Remote SQL Injection Vulnerability Hotel / Resort Site Script "cat_id" Parameter SQL Injection Vulnerability EMO Realty Manager "cat1" Parameter SQL Injection Vulnerability EasyJobPortal SQL Injection and Cross Site Scripting Vulnerabilities EasyCarPortal "current_page" Remote SQL Injection Vulnerability EasyPhotoStore "search_keywords" Remote SQL Injection Vulnerability EasyEstateManager "current_page" Remote SQL Injection Vulnerability Script Market Place "sf_id" Parameter Remote SQL Injection Vulnerability binarydrive "id" Parameter Remote SQL Injection Vulnerability Article Publisher Pro "art_id" Parameter SQL Injection Vulnerability CommonSense CMS "article_id" Parameter SQL Injection Vulnerability DJ-ArtGallery for Joomla "cid" Parameter Cross Site Scripting Vulnerability e2eTech Design "id" Parameter Multiple SQL Injection Vulnerabilities WmsCMS Multiple SQL Injection and Cross Site Scripting Vulnerabilities iScripts eSwap SQL Injection and Cross Site Scripting Vulnerabilities iScripts EasyBiller "planid" Parameter Remote SQL Injection Vulnerability PHP Car Rental Script "id" Parameter Remote SQL Injection Vulnerability IdevSpot TextAds "page" Parameter Remote SQL Injection Vulnerability ReVou SQL Injection and Cross Site Scripting Vulnerabilities Sar News for Joomla "id" Parameter Remote SQL Injection Vulnerability Chocky Soft 2005 "numb" Parameter Remote SQL Injection Vulnerability Ticimax E-Ticaret "id" Parameter Remote SQL Injection Vulnerabilities Ecomat CMS SQL Injection and Cross Site Scripting Vulnerabilities JS Jobs for Joomla "cid" Parameter Remote SQL Injection Vulnerability wsCMS "id" and "cid" Parameters Remote SQL Injection Vulnerabilities MusicBox "id" and "start" Remote SQL Injection Vulnerabilities ImpressPages CMS Multiple Remote SQL Injection Vulnerabilities Speedy-Shop "idp" Parameter Remote SQL Injection Vulnerability ArtDesign CMS "id" Parameter Remote SQL Injection Vulnerability Creato Script "id" Parameter Remote SQL Injection Vulnerability Nucleus Plugin NP_Gallery File inclusion and SQL Injection Vulnerabilities Cosmos Solutions cms Remote SQL Injection Vulnerabilities Webiz "prID" Parameter Remote SQL Injection Vulnerability Realtor Real Estate Agent "idnews" and "idproperty" SQL Injection Realtor Web Site System E-Commerce "idfestival" SQL Injection Issues BF Quiz Component for Joomla "catid" SQL Injection Vulnerability My Car for Joomla SQL Injection and Cross Site Scripting Vulnerabilities JE Poll Component for Joomla "pollid" SQL Injection Vulnerability JE Job Component for Joomla "catid" SQL Injection Vulnerability Zabbix "nav_time" Parameter Remote SQL Injection Vulnerability Cacti Multiple Parameter SQL and Command Injection Vulnerabilities iceberg CMS "p_id" Parameter Remote SQL Injection Vulnerability I-Vision CMS SQL Injection and Cross Site Scripting Vulnerabilities Camp Component for Joomla "cid" Remote SQL Injection Vulnerability phpGroupWare SQL Injections and Local File Inclusion Vulnerabilities e-webtech "id" Parameter Handling Remote SQL Injection Vulnerability tekno.Portal "id" Parameter Remote SQL Injection Vulnerabilities Netvidade "id" Parameter Remote SQL Injection Vulnerabilities eFront "chatrooms_ID" Parameter Remote SQL Injection Vulnerability Clicksor "id" Parameter Handling Remote SQL Injection Vulnerability SmartCMS "pageid" and "lang" Remote SQL Injection Vulnerabilities ClanTiger "s_email" Parameter Remote SQL Injection Vulnerability ClanSphere Captcha Generator and MySQL Driver SQL Injection Issues Campsite "article_id" Parameter Remote SQL Injection Vulnerability NolaPro Multiple Cross Site Scripting and SQL Injection Vulnerabilities 1024 CMS SQL Injection and Multiple Cross Site Scripting Vulnerabilities GeneShop "folder" Parameter Remote SQL Injection Vulnerability Modelbook "adnum" Parameter Remote SQL Injection Vulnerability PHP Video Battle "cat" Parameter Remote SQL Injection Vulnerability 2daybiz Auction Script "username" Remote SQL Injection Vulnerability Infocus Real Estate Login Credentials Remote SQL Injection Vulnerability PHP-Quick-Arcade SQL Injection and Cross Site Scripting Vulnerabilities CLScript Classifieds Script "hpId" Remote SQL Injection Vulnerability Airiny ABC for Joomla "sectionid" Remote SQL Injection Vulnerability Uiga Personal Portal "exhort" Parameter SQL Injection Vulnerability CMScout "album" Parameter Remote SQL Injection Vulnerability Debian Security Update Fixes Cacti SQL Injection Vulnerability ATutor "course" Parameter Remote SQL Injection Vulnerability Karra Multiple SQL Injection and Cross Site Scripting Vulnerabilities FuturCMS SQL Injection and Multiple Cross Site Scripting Vulnerabilities Ebay Clone Script SQL Injection and Cross Site Scripting Vulnerabilities GBU Facebook "face_id" Remote SQL Injection Vulnerability CMS Ariadna "tipodoc_id" Parameter Remote SQL Injection Vulnerability dl_stats Remote SQL Injection and Cross Site Scripting Vulnerabilities WebAsyst Shop-Script FREE File Inclusion and SQL Injection Issues jdrugstopics Component for Joomla "id" SQL Injection Vulnerability Mahara Security Update Fixes SQL Injection and Security Bypass Issues ilchClan "cid" Parameter Remote SQL Injection Vulnerability Zabbix "user" Parameter Handling Remote SQL Injection Vulnerability Jewelry Cart "disproid" Parameter Remote SQL Injection Vulnerability 4xcms "user" Parameter Processing Remote SQL Injection Vulnerability Gift Exchange for Joomla "pkg" Parameter SQL Injection Vulnerability Pay Per Watch & Bid Auktions System "id_auk" SQL Injection Vulnerability Domain Verkaus and Auktions Portal "id" SQL Injection Vulnerability PhpMyLogon "username" Parameter Remote SQL Injection Vulnerability Azeno CMS "id" Parameter Remote SQL Injection Vulnerability Geekhelps ADMP SQL Injection and Local File Inclusion Vulnerabilities Scriptsfeed Dating Software Remote SQL Injection Vulnerabilities phpMySite Remote SQL Injection and Cross Site Scripting Vulnerabilities Blax Blog "kadi" and "sifre" Remote SQL Injection Vulnerabilities Baykus Yemek Tarifleri Multiple Remote SQL Injection Vulnerabilities Uiga Personal Portal "id" Parameter Remote SQL Injection Vulnerability Uiga FanClub "id" Parameter Remote SQL Injection Vulnerability Galerie Dezign-Box File Upload and SQL Injection Vulnerabilities Arab Cart "id" SQL Injection and Cross Site Scripting Vulnerability Article Friendly "username" and "password" SQL Injection Vulnerability Cisco Security Agent SQL Injection and Directory Traversal Vulnerabilities Debian Security Update Fixes OTRS SQL Injection Vulnerabilities Productbook for Joomla "id" Remote SQL Injection Vulnerability Belkatalog CMS "lnk" Parameter Remote SQL Injection Vulnerability Rostermain "userid" and "password" SQL Injection Vulnerabilities Uiga Business Portal SQL Injection and Cross Site Scripting Issues LedgerSMB SQL Injection and Cross Site Scripting Vulnerabilities OCS Inventory NG SQL Injection and Cross Site Scripting Vulnerabilities Debian Security Update Fixes phpGroupWare Multiple Vulnerabilities TYPO3 Extensions SQL Injection and Cross Site Scripting Vulnerabilities Novell ZENworks Asset Management SQL Injection Vulnerability jProjects for Joomla "project" Remote SQL Injection Vulnerability jEmbed-Embed Anything for Joomla "catid" SQL Injection Vulnerability LineWeb Remote SQL Injection and Local File Inclusion Vulnerabilities ImagoScripts Deviant Art Clone "seid" Remote SQL Injection Vulnerability WorldPay Script Shop "id" Parameter SQL Injection Vulnerability XOOPS Remote SQL Injection and Cross Site Scripting Vulnerabilities TPJobs for Joomla "id_c" Parameter Remote SQL Injection Vulnerability HotBrackets for Joomla "id" Parameter SQL Injection Vulnerability MasterWeb "newsID" Parameter Remote SQL Injection Vulnerability Joomla Bridge of Hope Template "id" SQL Injection Vulnerability Doqment Component for Joomla "cid" SQL Injection Vulnerability Otzivi Component for Joomla "Itemid" SQL Injection Vulnerability Portal ModulNet "id" Parameter Remote SQL Injection Vulnerability Joomla Bamboo Simpla Admin Template SQL Injection Vulnerability Smart Vision Script News "id" Remote SQL Injection Vulnerability Elite Gaming Ladders "account" Remote SQL Injection Vulnerability SQL-Ledger Multiple SQL Injection and Cross Site Scripting Vulnerabilities TYPO3 Extensions Multiple SQL Injection and Cross Site Scripting Issues B2C Booking Centre System Remote SQL Injection Vulnerability SpireCMS "alb_id" Parameter Remote SQL Injection Vulnerability Ele Medios CMS "notiId" Parameter Remote SQL Injection Vulnerability TestLink Multiple Remote SQL Injection and Cross Site Scripting Invision Power Board SQL Injection and Local Inclusion Vulnerabilities Moodle Multiple Input Validation and Security Bypass Vulnerabilities Vivid Ads Shopping Cart "prodid" Remote SQL Injection Vulnerability Taxonomy Timer Module for Drupal Remote SQL Injection Vulnerability TYPO3 Extensions Multiple SQL Injection and Cross Site Scripting Issues CubeCart "productId" Parameter Remote SQL Injection Vulnerability FrontAccounting Multiple Remote SQL Injection Vulnerabilities Super Serious Stats "uid" Parameter Remote SQL Injection Vulnerability eoCMS "id" and "page" Parameters SQL Injection Vulnerabilities PSArt "id" Parameter Remote SQL Injection Vulnerability Attachment Module for PunBB "secure_str" SQL Injection Vulnerability Basic Analysis and Security Engine Multiple Remote Vulnerabilities ComicMaster Unspecified Remote SQL Injection Vulnerability Nebula3 Remote SQL Injection and Cross Site Scripting Vulnerabilities urlShort Remote SQL Injection and Cross Site Scripting Vulnerabilities Tin Can Jukebox Unspecified Remote SQL Injection Vulnerability RunCms "pid" and "forum" Parameters SQL Injection Vulnerabilities TYPO3 Multiple Code Injection and Information Disclosure Vulnerabilities Moodle Course List for Drupal Unspecified SQL Injection Vulnerability phpMyAdmin for TYPO3 SQL Injection and Cross Site Scripting Issues Flagbit Filebase for TYPO3 Unspecified SQL Injection Vulnerability phpMyAdmin SQL Injection and Cross Site Scripting Vulnerabilities BPowerhouse BPHolidayLettings "tid" Remote SQL Injection Vulnerability BPowerhouse BPAutoSales "aid" Remote SQL Injection Vulnerability BPowerhouse BPGames "cat_id" and "game_id" SQL Injection Issues BPowerhouse BPStudent "test" Parameter SQL Injection Vulnerability BPowerhouse BPMusic "music_id" Parameter SQL Injection Vulnerability HBcms "article_id" Parameter Handling SQL Injection Vulnerability Vastal I-Tech Agent Zone "id" Parameter SQL Injection Vulnerability Alibaba Clone "id" Parameter Remote SQL Injection Vulnerability SportFusion for Joomla "cid[0]" Remote SQL Injection Vulnerability Vastal I-Tech DVD Zone "mag_id" Remote SQL Injection Vulnerability BPowerHouse BPLawyerCaseDocument "cat" SQL Injection Vulnerability Facebook for Joomla "id" Parameter Remote SQL Injection Vulnerability Tupinambis for Joomla "proyecto" Remote SQL Injection Vulnerability Survey Manager for Joomla "stype" Remote SQL Injection Vulnerability FanUpdate "listingid" Parameter Remote SQL Injection Vulnerability Zainu "album_id" Parameter Remote SQL Injection Vulnerability Novell GroupWise "User.Theme.index" Cross Site Scripting Vulnerability Elite Gaming Ladders "platform" Remote SQL Injection Vulnerability jLord RSS Feed Creator for Joomla "id" SQL Injection Vulnerability Foobla Suggestions for Joomla "idea_id" SQL Injection Vulnerability AdsDX "loginname" Parameter Remote SQL Injection Vulnerability PHP Pro Bid "auction_id" Parameter Remote SQL Injection Vulnerability AlphaUserPoints for Joomla "username2points" SQL Injection Vulnerability Bugzilla SQL Injection and Information Disclosure Vulnerabilities Hestar for Mambo "id" Parameter Remote SQL Injection Vulnerability Joomloc for Joomla "id" Remote SQL Injection Vulnerability Model Agency Manager "user_id" Remote SQL Injection Vulnerability TPDugg for Joomla "id" Parameter Remote SQL Injection Vulnerability PHP Live! "deptid" Parameter Remote SQL Injection Vulnerability Discuz! Plugin JiangHu "id" Parameter SQL Injection Vulnerability Game Server for Joomla "id" Parameter SQL Injection Vulnerability Art Portal for Joomla "portalid" Remote SQL Injection Vulnerability Mybuxscript PTC-BUX "id" Parameter SQL Injection Vulnerability BandCMS "year" and "id" Parameters SQL Injection Vulnerabilities Modern Script "s" Parameter Remote SQL Injection Vulnerability Interactivefx.ie CMS "id" and "login" SQL Injection Vulnerabilities JBoard Multiple SQL Injection and Cross Site Scripting Vulnerabilities LiveStreet Comments Processing Cross Site Scripting Vulnerability Download System mSF For PHP-Fusion "view_id" SQL Injection Issue DreamCost Multiple File Inclusion and SQL Injection Vulnerabilities Silurus System "ID" Parameter Handling SQL Injection Vulnerability Danneo CMS "comtitle" Parameter Remote SQL Injection Vulnerability Uiga Church Portal "year" Parameter Remote SQL Injection Vulnerability DigiFolio for Joomla "id" Parameter Remote SQL Injection Vulnerability RASH Quote Management System (RQMS) SQL Injection Vulnerability Pirates of The Caribbean "y" and "x" Remote SQL Injection Vulnerability Allomani 2007 "cat" Parameter Parameter SQL Injection Vulnerability PAD Site Scripts SQL Injection and Cross Site Scripting Vulnerabilities Open Auto Classifieds File Upload and SQL Injection Vulnerabilities Discuz! Plugin Crazy Star "fmid" Parameter SQL Injection Vulnerability TotalCalendar SQL Injection and Local File Inclusion Vulnerabilities EMO Breader Manager "idd" Parameter SQL Injection Vulnerability IP.Board "search.php" and "lostpass.php" SQL Injection Vulnerabilities TYPO3 Multiple Extensions Remote SQL Injection Vulnerabilities T3M E-Mail Marketing Tool for TYPO3 SQL Injection Vulnerability Turnkey Arcade Script "sid" Parameter Remote SQL Injection Vulnerability Siirler for Joomla "sid" Parameter Remote SQL Injection Vulnerability NinjaMonials for Joomla "testimID" Remote SQL Injection Vulnerability jTips for Joomla "season" Parameter Remote SQL Injection Vulnerability ITechBids "productid" Parameter Remote SQL Injection Vulnerability humanCMS Username and Password Remote SQL Injection Vulnerability PHP Dir Submit "aid" Parameter Remote SQL Injection Vulnerability Moa Gallery "gallery_id" Parameter Remote SQL Injection Vulnerability Ed Charkow Supercharged Linking "id" SQL Injection Vulnerability Infinity Remote File Disclosure and Remote SQL Injection Vulnerabilities CMS Aspect Web Design "ProductID" Remote SQL Injection Vulnerability Fedora Security Update Fixes OCS Inventory SQL Injection Vulnerability Portel 2008 "patron" Parameter Remote SQL Injection Vulnerability OpenNews "username" Parameter Remote SQL Injection Vulnerability Irokez CMS "id" Parameter Handling Remote SQL Injection Vulnerability ShopMaker Remote SQL Injection and Local File Inclusion Vulnerabilities MOC Designs PHP News Remote SQL Injection Vulnerability PPScript (PaymentProcessorScript) "cid" SQL Injection Vulnerability Discloser "more" Parameter Remote SQL Injection Vulnerability Multi Website "Browse" Parameter Remote SQL Injection Vulnerability Elvin SQL Injection and Multiple Cross Site Scripting Vulnerabilities Questions Answered "username" Remote SQL Injection Vulnerability SimpleLoginSys "username" Remote SQL Injection Vulnerability TT Web Site Manager "tt_name" Remote SQL Injection Vulnerability Ajax Short URL Script "username" Remote SQL Injection Vulnerability AW-BannerAd "User" and "Password" SQL Injection Vulnerability Allomani Movies and Clips "username" Remote SQL Injection Vulnerability Allomani Songs and Clips "username" Remote SQL Injection Vulnerability Allomani Mobile "username" Remote SQL Injection Vulnerability Inout Adserver "id" Parameter Remote SQL Injection Vulnerability Super Mod System "s" Parameter Remote SQL Injection Vulnerability VS PANEL "Cat_ID" Parameter Remote SQL Injection Vulnerability iWiccle Local File Inclusion and Remote SQL Injection Vulnerabilities URA "cat" Parameter Handling Remote SQL Injection Vulnerability Garage Sales "key" Parameter SQL Injection and Cross Site Scripting Basilic "idAuthor" Processing Remote SQL Injection Vulnerability Million Dollar Pixel Ads Platinum SQL Injection and Cross Site Scripting Classified Linktrader "slctCategories" SQL Injection Vulnerability Hutscripts SQL Injection and Cross Site Scripting Vulnerabilities Shopping Cart Selling Script SQL Injection and Cross Site Scripting Issues phpDirectorySource SQL Injection and Cross Site Scripting Vulnerabilities MCshoutbox SQL Injection and Arbitrary File Upload Vulnerabilities 100 last CVE   CVE-2011-1556 CVE-2011-1343 CVE-2011-0437 CVE-2011-0436 CVE-2011-0435 CVE-2011-0434 CVE-2011-0432 CVE-2010-4696 CVE-2010-4511 CVE-2010-4509 CVE-2010-4257 CVE-2010-4166 CVE-2010-3922 CVE-2010-3921 CVE-2010-3687 CVE-2010-3605 CVE-2010-3604 CVE-2010-3483 CVE-2010-3482 CVE-2010-3479 CVE-2010-3422 CVE-2010-2911 CVE-2010-2908 CVE-2010-2906 CVE-2010-2851 CVE-2010-2721 CVE-2010-2720 CVE-2010-2719 CVE-2010-2715 CVE-2010-2714 CVE-2010-2700 CVE-2010-2699 CVE-2010-2698 CVE-2010-2697 CVE-2010-2696 CVE-2010-2694 CVE-2010-2691 CVE-2010-2689 CVE-2010-2688 CVE-2010-2685 CVE-2010-2684 CVE-2010-2683 CVE-2010-2635 CVE-2010-2616 CVE-2010-2615 CVE-2010-2614 CVE-2010-2609 CVE-2010-2459 CVE-2010-2458 CVE-2010-2359 CVE-2010-2319 CVE-2010-2317 CVE-2010-2316 CVE-2010-2254 CVE-2010-2148 CVE-2010-2147 CVE-2010-2092 CVE-2010-2016 CVE-2010-1925 CVE-2010-1918 CVE-2010-1865 CVE-2010-1863 CVE-2010-1855 CVE-2010-1745 CVE-2010-1733 CVE-2010-1706 CVE-2010-1701 CVE-2010-1662 CVE-2010-1661 CVE-2010-1660 CVE-2010-1656 CVE-2010-1654 CVE-2010-1595 CVE-2010-1594 CVE-2010-1521 CVE-2010-1520 CVE-2010-1498 CVE-2010-1497 CVE-2010-1464 CVE-2010-1463 CVE-2010-1462 CVE-2010-1431 CVE-2010-1365 CVE-2010-1364 CVE-2010-1363 CVE-2010-1277 CVE-2010-1096 CVE-2010-1091 CVE-2010-1090 CVE-2010-1073 CVE-2010-1070 CVE-2010-1049 CVE-2010-1048 CVE-2010-1046 CVE-2010-1045 CVE-2010-0981 CVE-2010-0973 CVE-2010-0970 CVE-2010-0968 CVE-2010-0967    Risk level  Low