SQL injection Prevention - POST : suspicious CAST statement in data Description   This alarm is raised when a suspicious combination of SQL known keywords is found in a POST request. This signature in the Internet profile has been configured to pass, ignore.The great number of public forums on the databases and the operation of certain dynamic sites make the risk of false positives high on public servers.       Default configuration   Profiles High Medium Low Internet Action Pass Pass Pass Pass Alarm Level Ignore Ignore Ignore Ignore       References   URL: http://www.modsecurity.org/blog/archives/2008/01/sql_injection_a.html       Available since   ASQ v3.2.0       Protects   Cacti "$data_query_id" SQL Injection Vulnerability Wordpress Multiple Third Party Plugins Multiple Vulnerabilities Joomla J2Store Extension SQL Injection Vulnerability Fixed by 3.1.7 Joomla Third-Party Modules Multiple Vulnerabilities Wordpress Multiple Third Party Plugins Multiple Vulnerabilities Wordpress Multiple Third Party Plugins Multiple Vulnerabilities Wordpress Multiple Third Party Plugins Multiple Vulnerabilities Wordpress Multiple Third Party Plugins Multiple Vulnerabilities Cacti Multiple Vulnerabilities Fixed by 0.8.8e Wordpress Multiple Third Party Plugins Multiple Vulnerabilities LimeSurvey SQL Injection Vulnerability Fixed by 2.06+ (Build 150629) LimeSurvey "sid" Parameter SQL Injection Vulnerability Fixed by 2.06+ (Build 150618) Cacti Three Vulnerabilities Cacti Multiple Vulnerabilities Fixed by 0.8.8d Wordpress Multiple Themes Vulnerabilities Wordpress Multiple Third Party Plugins Multiple Vulnerabilities Cisco Unified Communications Manager Two SQL Injection Vulnerabilities phpMyBackupPro Login SQL Injection Vulnerability Galette ZendDB Two SQL Injection Vulnerabilities WordPress Cart66 Lite Plugin Security Bypass and SQL Injection Vulnerabilities WordPress WP Symposium Plugin "tray" SQL Injection Vulnerability WordPress Google Doc Embedder Plugin "pgid" SQL Injection Vulnerability WordPress Cart66 Lite Plugin "id" SQL Injection Vulnerability Movable Type XML-RPC Interface SQL Injection Vulnerability PHP-Fusion Multiple SQL Injection Vulnerabilities OpenVAS Manager timezone SQL Injection Vulnerability MantisBT Multiple Vulnerabilities FluxBB "req_new_email" SQL Injection Vulnerability Open-Xchange OX App Suite "jslob" API Call SQL Injection Vulnerability TestLink Multiple SQL Injection Vulnerabilities Pligg CMS "id" SQL Injection Vulnerability Pro Chat Rooms Text Chat Room / Pro Chat Rooms Audio/Video Chat Room Cross-Site Scripting and SQL Injection Vulnerabilities Sabre AirCentre Crew CWPLogin.aspx Two SQL Injection Vulnerabilities InvGate Service Desk Multiple SQL Injection Vulnerabilities Dolibarr ERP/CRM Multiple Cross-Site Scripting, Script Insertion, and SQL Injection Vulnerabilities Raritan PowerIQ "sort" and "dir" SQL Injection Vulnerabilities openSIS "USERNAME" SQL Injection Vulnerability Cacti Multiple Vulnerabilities web2Project Multiple SQL Injection Vulnerabilities WordPress Booking System Plugin "booking_form_id" SQL Injection Vulnerability KeepInTouch kitForm Extension "sorter_value" SQL Injection Vulnerability Orbit Open Ad Server "site_directory_sort_field" SQL Injection Vulnerability Cacti Multiple Vulnerabilities HostBill Staff Tickets SQL Injection Vulnerability Joomla! JV Comment Component "id" SQL Injection Vulnerability CSP MySQL User Manager "loginuser" SQL Injection Vulnerability CUBIC CMS Multiple Vulnerabilities InstantCMS "orderby" SQL Injection Vulnerability Joomla! Projectfork Component "search" and "order" SQL Injection Vulnerabilities Nagios XI "tfPassword" SQL Injection Vulnerability Project'Or RIA Cross-Site Scripting and SQL Injection Vulnerabilities SecureSphere Web Application Firewall Web Console SQL Injection Vulnerability ImpressPages CMS Multiple Vulnerabilities CourseMS Cross-Site Scripting and SQL Injection Vulnerabilities SecureSphere Web Application Firewall Web Console SQL Injection Vulnerability CMS Formulasi Multiple Vulnerabilities Zabbix Multiple SQL Injection Vulnerabilities OpenEMR "authProvider" SQL Injection Vulnerability OpenEMR Cross-Site Scripting and SQL Injection Vulnerabilities Practico CMS "uid" SQL Injection Vulnerability glFusion "cat_id" SQL Injection Vulnerability Cacti Script Insertion and SQL Injection Vulnerabilities Gnew Cross-Site Scripting and SQL Injection Vulnerabilities Joomla! SectionEx Component Two SQL Injection Vulnerabilities OSSIM Two Cross-Site Scripting Vulnerabilities JM LLC Basic Forum Multiple Vulnerabilities Saurus CMS Multiple Vulnerabilities astTECS Voice Logger for Call Center / Contact Center Two Vulnerabilities OpenEMR Script Insertion and SQL Injection Vulnerabilities Monkey CMS Multiple Vulnerabilities GLPI "filename" SQL Injection Vulnerability GLPI "users_id_assign" SQL Injection Vulnerability PHD Help Desk Two SQL Injection Vulnerabilities Vanilla Forums Parameter Name SQL Injection Vulnerability WordPress LeagueManager Plugin Security Bypass and SQL Injection Vulnerabilities PHP-Fusion Multiple SQL Injection and Cross-Site Scripting Vulnerabilities Scripts Genie Pet Rate Pro SQL Injection and PHP Code Execution Vulnerabilities AdaptCMS Multiple Vulnerabilities WeBid Multiple SQL Injection Vulnerabilities WordPress Store Locator Plus Plugin "query" SQL Injection Vulnerability Astium SQL Injection and Denial of Service Vulnerabilities MyBB Profile Wii Friend Code Plugin Cross-Site Scripting and SQL Injection Vulnerabilities ClipBucket Multiple SQL Injection Vulnerabilities Intramaps Multiple Vulnerabilities WordPress Poll Plugin Multiple Script Insertion Vulnerabilities Subrion CMS Cross-Site Scripting and SQL Injection vulnerabilities AContent Security Bypass and SQL Injection Vulnerabilities AContent Cross-Site Scripting and SQL Injection Vulnerabilities OpenX Cross-Site Scripting and SQL Injection Vulnerabilities TorrentTrader Cross-Site Scripting and SQL Injection Vulnerabilities webERP Multiple Vulnerabilities TCExam Cross-Site Scripting and SQL Injection Vulnerabilities Group-Office "sort" SQL Injection Vulnerability WordPress Mz-jajak Plugin "id" SQL Injection Vulnerability Cyclope Employee Surveillance Solution Security Bypass and SQL Injection Vulnerabilities WordPress G-Lock Double Opt-in Manager Plugin Two Security Bypass Vulnerabilities Limny "escape()" SQL Injection Vulnerability Dell SonicWALL Scrutinizer "q" SQL Injection Vulnerability WordPress WP-Predict Plugin "predictSelection" and "predictId" SQL Injection Vulnerabilities WordPress Automatic Plugin "q" SQL Injection Vulnerability Contao "field" SQL Injection Vulnerability SyndeoCMS Script Insertion and SQL Injection Vulnerabilities WordPress Google Maps Via Store Locator Plus Plugin Path Disclosure and SQL Injection Bigware Shop "pollid" Two SQL Injection Vulnerabilities TopicsViewer Multiple SQL Injection Vulnerabilities activeCollab Multiple Vulnerabilities Adiscon LogAnalyzer Cross-Site Scripting and SQL Injection Vulnerabilities Pligg CMS Multiple Cross-Site Scripting and SQL Injection Vulnerabilities MyClientBase Script Insertion and SQL Injection Vulnerabilities ManageEngine SupportCenter Plus Multiple Vulnerabilities e-ticketing "user_name" and "password" SQL Injection Vulnerabilities osCMax Multiple Vulnerabilities WordPress BuddyPress Plugin "exclude" SQL Injection Vulnerability RivetTracker "hash" SQL Injection Vulnerabilities BrewBlogger Multiple Vulnerabilities The Uploader "username" SQL Injection Vulnerability ELBA "account group name" SQL Injection Vulnerability Seo Panel "website_id" and "lang_code" SQL Injection Vulnerabilities phpDenora Multiple File Disclosure and SQL Injection Vulnerabilities LimeSurvey "fieldnames" SQL Injection Vulnerability SocialCMS Enterprise Cross-Site Scripting and SQL Injection Vulnerabilities TestLink Multiple SQL Injection Vulnerabilities Gazie "Login" Cross-Site Scripting and SQL Injection Vulnerabilities XRay CMS "username" SQL Injection Vulnerability zenphoto Multiple Vulnerabilities Campaign Enterprise "SID" SQL Injection Vulnerability Bigware Shop "lastname" SQL Injection Vulnerability MangosWeb Enhanced "login" SQL Injection Vulnerability tinyguestbook Script Insertion and SQL Injection Vulnerabilities e107 Multiple Vulnerabilities Open Business Management Multiple Vulnerabilities cApexWEB "dfuserid" and "dfpassword" SQL Injection Vulnerabilities BrowserCRM Multiple Vulnerabilities Seotoaster "selectUserIdByLoginPass()" SQL Injection Vulnerability WordPress SCORM Cloud For WordPress Plugin "active" SQL Injection Vulnerability HitAppoint "username" SQL Injection Vulnerability KnowledgeTree "username" SQL Injection Vulnerability Alstrasoft EPay Enterprise "cid" and "product" SQL Injection Vulnerabilities Meditate "username_input" SQL Injection Vulnerability PHP Inventory Multiple SQL Injection Vulnerabilities Joomla! XOBBIX Component "prodid" SQL Injection Vulnerability webERP Multiple Vulnerabilities Joomla AutarTimonial Component "limit" SQL Injection Vulnerability Joomla Canteen Component Multiple Vulnerabilities ScriptsFeed / BrotherScripts Auto Dealer Software "id" SQL Injection Vulnerability Joomla DJ-ArtGallery Component "cid[]" Two Vulnerabilities ScriptsFeed Recipes Listing Portal SQL Injection Vulnerabilities iScripts eSwap Cross-Site Scripting and SQL Injection Vulnerabilities iScripts EasyBiller SQL Injection and Script Insertion Vulnerabilities Science Fair In A Box "type" Cross-Site Scripting and SQL Injection Document Library "intGroupID" SQL Injection Vulnerability MCLogin System "myusername" SQL Injection Vulnerability Drupal Webform CiviCRM Integration Module Multiple SQL Injection Vulnerabilities Joomla! JEEMA SMS Component Cross-Site Request Forgery and SQL Injection Vulnerabilities Drupal Views Module SQL Injection Vulnerability Symphony CMS Multiple Cross-Site Scripting and SQL Injection Vulnerabilities VP-ASP Unspecified SQL Injection Vulnerability Joomla! Alameda Component "storeid" SQL Injection Vulnerability SPIP Unspecified SQL Injection Vulnerability PrestaShop Presta2PhpList Module "list" SQL Injection Vulnerability Joomla! Freestyle FAQs and Testimonials Components Unspecified SQL Injection Vulnerability DMXready Polling Booth Manager "QuestionID" SQL Injection Vulnerability ColdGen ColdCalendar "EventID" SQL Injection Vulnerability Joomla! Clantools Component Two SQL Injection Vulnerabilities Joomla! Clantools Component "squad" SQL Injection Vulnerability Joomla! Gantry Component "moduleid" SQL Injection Vulnerability FestOS Multiple Vulnerabilities chillyCMS "name" Cross-Site Scripting and SQL Injection Vulnerabilities Pilot Cart Multiple Vulnerabilities Pre Podcast Portal Password SQL Injection Vulnerability TYPO3 Questionnaire Extension Cross-Site Scripting and SQL Injection Vulnerabilities Joomla! Teams Component "PlayerID" SQL Injection Vulnerability Entrans Cross-Site Scripting and SQL Injection Vulnerabilities KaiBB Cross-Site Scripting and SQL Injection Vulnerabilities wizmall "BID" and "UID" SQL Injection Vulnerabilities OpenEMR Multiple Vulnerabilities OpenEMR Script Insertion and SQL Injection Vulnerabilities Yet Another CMS Two SQL Injection Vulnerabilities Site@School Multiple Vulnerabilities PunBB Reputation Plugin SQL Injection and Local File Inclusion AContent Multiple Vulnerabilities WordPress WP Photo Album Plus Plugin "wppa-album" SQL Injection Vulnerability WordPress WordPress Users Plugin "uid" SQL Injection Vulnerability Radfa Sabadkharid "add2cart" SQL Injection Vulnerability EC-CUBE Two Unspecified SQL Injection Vulnerabilities Joomla! eTree Component "id" and "user_id" SQL Injection Vulnerabilities Drupal Certificate Login Module SQL Injection Vulnerability MyBB MyStatus Plugin "statid" SQL Injection Vulnerability MyBB Advanced Forum Signatures Plugin Multiple SQL Injection Vulnerabilities 6kbbs Multiple Vulnerabilities KaiBB Two SQL Injection Vulnerabilities Sonexis ConferenceManager Script Insertion and SQL Injection Vulnerabilities Eclime Multiple Vulnerabilities webSPELL Multiple Vulnerabilities Netvolution CMS "Referer" HTTP Header SQL Injection Vulnerability WordPress WP-PostRatings Plugin "[ratings]" Shortcode SQL Injection Vulnerability Achievo Multiple Vulnerabilities WordPress WP Bannerize Plugin "item[]" SQL Injection Vulnerability MH Products Download Center "Name" SQL Injection Vulnerability Parallels Plesk Panel Cross-Site Scripting and SQL Injection Vulnerabilities WordPress Mingle Forum "edit_post_id" SQL Injection Vulnerability TYPO3 dev/null robots.txt Extension SQL Injection Vulnerability TYPO3 RTG Files Extension SQL Injection Vulnerability Flynax Classifieds Products "f[city]" SQL Injection Vulnerability Advanced Electron Forum Security Issue and Two Vulnerabilities Cacti Cross-Site Scripting and SQL Injection Vulnerabilities CMS Faethon Cross-Site Scripting and SQL Injection phpList Multiple Vulnerabilities Authenex Strong Authentication Server "username" SQL Injection Vulnerability Ayco Emlak Multiple SQL Injection Vulnerabilities Car Portal Multiple Vulnerabilities WordPress Count Per Day Plugin "month" SQL Injection Vulnerability Mercator Sentinel SQL Injection Vulnerability WordPress WP e-Commerce Plugin "transaction_id" Two SQL Injection Vulnerabilities TYPO3 Cache Flooding Denial of Service and SQL Injection Vulnerabilities Support Incident Tracker Multiple Vulnerabilities WordPress WP Forum Server Plugin "edit_post_id" SQL Injection Vulnerability TYPO3 Direct Mail Subscription Extension Two Vulnerabilities WordPress 1 Flash Gallery Plugin Multiple Vulnerabilities WordPress Tweet old post Plugin "cat" SQL Injection Vulnerability TIBCO Spotfire Products Multiple Vulnerabilities vAuthenticate Multiple SQL Injection Vulnerabilities WordPress WP Bannerize Plugin "id" SQL Injection Vulnerability WordPress yolink Search Plugin Two SQL Injection Vulnerabilities Free Help Desk Cross-Site Request Forgery and SQL Injection Vulnerabilities Moodle Multiple Remote SQL Injection and Security Bypass Vulnerabilities Samsung Integrated Management System DMS SQL Injection Vulnerability Debian Security Update Fixes Doctrine Remote SQL Injection Vulnerability Debian Security Update Fixes Request Tracker Multiple Vulnerabilities MyBB Remote SQL Injection and Cross Site Request Forgery Vulnerabilities Joomla SQL Injection and Multiple Information Disclosure Vulnerabilities CA Total Defense Remote Code Execution and SQL Injection Vulnerabilities Cacti Multiple SQL Injection and Cross Site Scripting Vulnerabilities WEC Discussion Extension for TYPO3 Remote SQL Injection Vulnerability Andy PHP Knowledgebase Multiple Remote SQL Injection Vulnerabilities Fedora Security Update Fixes Doctrine Remote SQL Injection Vulnerability Joomla Multiple SQL Injection and Cross Site Scripting Vulnerabilities Debian Security Update Fixes DTC Multiple SQL Injection Vulnerabilities PyWebDAV Data Processing Multiple SQL Injection Vulnerabilities IBM Tivoli Netcool/OMNIbus Web GUI Remote SQL Injection Vulnerability Symantec Web Gateway "USERNAME" SQL Injection Vulnerability ChurchInfo "WhichType" Parameter Remote SQL Injection Vulnerability TYPO3 Code Execution and Multiple Cross Site Scripting Vulnerabilities Movable Type SQL Injection and Cross Site Scripting Vulnerabilities WordPress "do_trackbacks()" SQL Injection Information Disclosure Issue IBM WebSphere Commerce Organization Admin Console SQL Injection Joomla! Multiple Remote SQL Injection and Information Disclosure Symantec IM Manager Administration Console SQL Injection Vulnerabilities e107 Data Processing Multiple Remote SQL Injection Vulnerabilities PBBoard Multiple SQL Injection and Cross Site Scripting Vulnerabilities FreePBX Administrative Interface Multiple SQL Injection Vulnerabilities Powermail for TYPO3 SQL Injection and Cross Site Scripting Vulnerabilities Primitive CMS "cms_write.php" Security Bypass and SQL Injection LightNEasy "handle" Parameter Remote SQL Injection Vulnerability JGen for Joomla "id" Parameter Remote SQL Injection Vulnerability Debian Security Update Fixes smbind SQL Injection Vulnerability mBlogger "postID" Parameter Remote SQL Injection Vulnerability TYPO3 Code Execution and Cross Site Scripting Vulnerabilities Joomla! Multiple Cross Site Scripting and SQL Injection Vulnerabilities CMSQLite Multiple SQL Injection and Cross Site Scripting Vulnerabilities Pre Multi-Vendor Shopping Malls "username" SQL Injection Vulnerability BookLibrary From Same Author for Joomla SQL Injection Vulnerability TaskFreak SQL Injection and Cross Site Scripting Vulnerabilities Grafik CMS Multiple SQL Injection and Cross Site Scripting Vulnerabilities OneCMS Multiple SQL Injection and Cross Site Scripting Vulnerabilities 2daybiz Social Community Script SQL Injection Vulnerabilities PHP-Calendar Multiple SQL Injection and Cross Site Scripting Issues Pre Job Board Pro Multiple Parameter SQL Injection Vulnerabilities Subdreamer CMS "categoryids" Remote SQL Injection Vulnerability VU Web Visitor Analyst "password" Parameter SQL Injection Vulnerability Search Log for Joomla "search" Parameter SQL Injection Vulnerability WmsCMS Multiple SQL Injection and Cross Site Scripting Vulnerabilities ReVou SQL Injection and Cross Site Scripting Vulnerabilities Sar News for Joomla "id" Parameter Remote SQL Injection Vulnerability Chocky Soft 2005 "numb" Parameter Remote SQL Injection Vulnerability Cacti Multiple Parameter SQL and Command Injection Vulnerabilities phpGroupWare SQL Injections and Local File Inclusion Vulnerabilities Family Connections Multiple Parameter SQL Injection Vulnerabilities ClanTiger "s_email" Parameter Remote SQL Injection Vulnerability ClanSphere Captcha Generator and MySQL Driver SQL Injection Issues Campsite "article_id" Parameter Remote SQL Injection Vulnerability NolaPro Multiple Cross Site Scripting and SQL Injection Vulnerabilities 1024 CMS SQL Injection and Multiple Cross Site Scripting Vulnerabilities 2daybiz Auction Script "username" Remote SQL Injection Vulnerability Infocus Real Estate Login Credentials Remote SQL Injection Vulnerability CMScout "album" Parameter Remote SQL Injection Vulnerability Debian Security Update Fixes Cacti SQL Injection Vulnerability ATutor "course" Parameter Remote SQL Injection Vulnerability Karra Multiple SQL Injection and Cross Site Scripting Vulnerabilities FuturCMS SQL Injection and Multiple Cross Site Scripting Vulnerabilities Ebay Clone Script SQL Injection and Cross Site Scripting Vulnerabilities WebAsyst Shop-Script FREE File Inclusion and SQL Injection Issues jdrugstopics Component for Joomla "id" SQL Injection Vulnerability Mahara Security Update Fixes SQL Injection and Security Bypass Issues Zabbix "user" Parameter Handling Remote SQL Injection Vulnerability 4xcms "user" Parameter Processing Remote SQL Injection Vulnerability Domain Verkaus and Auktions Portal "id" SQL Injection Vulnerability PhpMyLogon "username" Parameter Remote SQL Injection Vulnerability Azeno CMS "id" Parameter Remote SQL Injection Vulnerability Geekhelps ADMP SQL Injection and Local File Inclusion Vulnerabilities Scriptsfeed Dating Software Remote SQL Injection Vulnerabilities Scriptsfeed Business Directory Remote SQL Injection Vulnerabilities Blax Blog "kadi" and "sifre" Remote SQL Injection Vulnerabilities Baykus Yemek Tarifleri Multiple Remote SQL Injection Vulnerabilities Uiga Personal Portal "id" Parameter Remote SQL Injection Vulnerability Uiga FanClub "id" Parameter Remote SQL Injection Vulnerability Article Friendly "username" and "password" SQL Injection Vulnerability Cisco Security Agent SQL Injection and Directory Traversal Vulnerabilities Debian Security Update Fixes OTRS SQL Injection Vulnerabilities Killmonster "isadmin" and "password" SQL Injection Vulnerabilities Rostermain "userid" and "password" SQL Injection Vulnerabilities LedgerSMB SQL Injection and Cross Site Scripting Vulnerabilities OCS Inventory NG SQL Injection and Cross Site Scripting Vulnerabilities Debian Security Update Fixes phpGroupWare Multiple Vulnerabilities TYPO3 Extensions SQL Injection and Cross Site Scripting Vulnerabilities Novell ZENworks Asset Management SQL Injection Vulnerability LineWeb Remote SQL Injection and Local File Inclusion Vulnerabilities XOOPS Remote SQL Injection and Cross Site Scripting Vulnerabilities Elite Gaming Ladders "account" Remote SQL Injection Vulnerability SQL-Ledger Multiple SQL Injection and Cross Site Scripting Vulnerabilities TYPO3 Extensions Multiple SQL Injection and Cross Site Scripting Issues Quartz Concept Content Manager Remote SQL Injection Vulnerability WSCreator "Email" Parameter Remote SQL Injection Vulnerability Invision Power Board SQL Injection and Local Inclusion Vulnerabilities Moodle Multiple Input Validation and Security Bypass Vulnerabilities Taxonomy Timer Module for Drupal Remote SQL Injection Vulnerability TYPO3 Extensions Multiple SQL Injection and Cross Site Scripting Issues CubeCart "productId" Parameter Remote SQL Injection Vulnerability FrontAccounting Multiple Remote SQL Injection Vulnerabilities Super Serious Stats "uid" Parameter Remote SQL Injection Vulnerability eoCMS "id" and "page" Parameters SQL Injection Vulnerabilities PSArt "id" Parameter Remote SQL Injection Vulnerability Attachment Module for PunBB "secure_str" SQL Injection Vulnerability Basic Analysis and Security Engine Multiple Remote Vulnerabilities ComicMaster Unspecified Remote SQL Injection Vulnerability Nebula3 Remote SQL Injection and Cross Site Scripting Vulnerabilities urlShort Remote SQL Injection and Cross Site Scripting Vulnerabilities Tin Can Jukebox Unspecified Remote SQL Injection Vulnerability RunCms "pid" and "forum" Parameters SQL Injection Vulnerabilities TYPO3 Multiple Code Injection and Information Disclosure Vulnerabilities Moodle Course List for Drupal Unspecified SQL Injection Vulnerability phpMyAdmin for TYPO3 SQL Injection and Cross Site Scripting Issues Flagbit Filebase for TYPO3 Unspecified SQL Injection Vulnerability phpMyAdmin SQL Injection and Cross Site Scripting Vulnerabilities Elite Gaming Ladders "platform" Remote SQL Injection Vulnerability jLord RSS Feed Creator for Joomla "id" SQL Injection Vulnerability Foobla Suggestions for Joomla "idea_id" SQL Injection Vulnerability AdsDX "loginname" Parameter Remote SQL Injection Vulnerability PHP Pro Bid "auction_id" Parameter Remote SQL Injection Vulnerability AlphaUserPoints for Joomla "username2points" SQL Injection Vulnerability Bugzilla SQL Injection and Information Disclosure Vulnerabilities PHP Live! "deptid" Parameter Remote SQL Injection Vulnerability Discuz! Plugin JiangHu "id" Parameter SQL Injection Vulnerability Game Server for Joomla "id" Parameter SQL Injection Vulnerability Mybuxscript PTC-BUX "id" Parameter SQL Injection Vulnerability BandCMS "year" and "id" Parameters SQL Injection Vulnerabilities Modern Script "s" Parameter Remote SQL Injection Vulnerability LiveStreet Comments Processing Cross Site Scripting Vulnerability Danneo CMS "comtitle" Parameter Remote SQL Injection Vulnerability Uiga Church Portal "year" Parameter Remote SQL Injection Vulnerability DigiFolio for Joomla "id" Parameter Remote SQL Injection Vulnerability RASH Quote Management System (RQMS) SQL Injection Vulnerability Pirates of The Caribbean "y" and "x" Remote SQL Injection Vulnerability Allomani 2007 "cat" Parameter Parameter SQL Injection Vulnerability Open Auto Classifieds File Upload and SQL Injection Vulnerabilities Discuz! Plugin Crazy Star "fmid" Parameter SQL Injection Vulnerability EMO Breader Manager "idd" Parameter SQL Injection Vulnerability IP.Board "search.php" and "lostpass.php" SQL Injection Vulnerabilities TYPO3 Multiple Extensions Remote SQL Injection Vulnerabilities T3M E-Mail Marketing Tool for TYPO3 SQL Injection Vulnerability Turnkey Arcade Script "sid" Parameter Remote SQL Injection Vulnerability Siirler for Joomla "sid" Parameter Remote SQL Injection Vulnerability NinjaMonials for Joomla "testimID" Remote SQL Injection Vulnerability jTips for Joomla "season" Parameter Remote SQL Injection Vulnerability ITechBids "productid" Parameter Remote SQL Injection Vulnerability humanCMS Username and Password Remote SQL Injection Vulnerability PHP Dir Submit "aid" Parameter Remote SQL Injection Vulnerability Moa Gallery "gallery_id" Parameter Remote SQL Injection Vulnerability Ed Charkow Supercharged Linking "id" SQL Injection Vulnerability Infinity Remote File Disclosure and Remote SQL Injection Vulnerabilities CMS Aspect Web Design "ProductID" Remote SQL Injection Vulnerability Fedora Security Update Fixes OCS Inventory SQL Injection Vulnerability Portel 2008 "patron" Parameter Remote SQL Injection Vulnerability OpenNews "username" Parameter Remote SQL Injection Vulnerability Irokez CMS "id" Parameter Handling Remote SQL Injection Vulnerability ShopMaker Remote SQL Injection and Local File Inclusion Vulnerabilities MOC Designs PHP News Remote SQL Injection Vulnerability PPScript (PaymentProcessorScript) "cid" SQL Injection Vulnerability Multi Website "Browse" Parameter Remote SQL Injection Vulnerability Elvin SQL Injection and Multiple Cross Site Scripting Vulnerabilities Questions Answered "username" Remote SQL Injection Vulnerability SimpleLoginSys "username" Remote SQL Injection Vulnerability TT Web Site Manager "tt_name" Remote SQL Injection Vulnerability Ajax Short URL Script "username" Remote SQL Injection Vulnerability AW-BannerAd "User" and "Password" SQL Injection Vulnerability MCshoutbox SQL Injection and Arbitrary File Upload Vulnerabilities Alibaba Clone "SellerID" and "IndustryID" SQL Injection Vulnerabilities Tausch Ticket Script Multiple Parameter SQL Injection Vulnerabilities Siteframe Remote SQL Injection and Information Disclosure Vulnerabilities WebAsyst Shop-Script SQL Injection and Cross Site Scripting Vulnerability MyPHPDating "page_id" Parameter Remote SQL Injection Vulnerability Citrix XenCenterWeb Multiple Command and SQL Injection Vulnerabilities KerviNet Forum SQL Injection and Cross Site Scripting Vulnerabilities NEWSolved "newsscript.php" Multiple SQL Injection Vulnerabilities BookFlip Component for Joomla "book_id" SQL Injection Vulnerability K2 Component for Joomla "category" Remote SQL Injection Vulnerability com_php for Joomla "id" Parameter Remote SQL Injection Vulnerability Messages Library "CatID" Parameter Remote SQL Injection Vulnerability osTicket Administrative Login Remote SQL Injection Vulnerability RS-CMS "key" Parameter Processing Remote SQL Injection Vulnerability Tickets Component for Joomla "id" Parameter SQL Injection Vulnerability MyBB "birthdayprivacy" Parameter Remote SQL Injection Vulnerability phpDatingClub SQL Injection and Cross Site Scripting Vulnerabilities Debian Security Update Fixes GForge Multiple Vulnerabilities Campus Virtual-LMS SQL Injection and Cross Site Scripting Vulnerabilities Zip Store Chat "login" and "senha" Remote SQL Injection Vulnerability Shop-Script Pro "current_currency" Remote SQL Injection Vulnerability Frontis "source_class" Parameter Remote SQL Injection Vulnerability Interlogy Profile Manager Basic "pmadm" SQL Injection Vulnerability Virtue News Manager "nid" SQL Injection and Cross Site Scripting Issues Virtue Shopping Mall "cid" Parameter Remote SQL Injection Vulnerability Virtue Book Store "cid" Parameter Remote SQL Injection Vulnerability Virtue Classifieds "category" Parameter SQL Injection Vulnerability School Component for Joomla "classid" SQL Injection Vulnerability MyCars "authuserid" Parameter Remote SQL Injection Vulnerability SuperNews "noticia" Parameter Remote SQL Injection Vulnerability OCS Inventory NG Server SQL Injection and File Disclosure Vulnerabilities EgyPlus "username" and "password" Remote SQL Injection Vulnerability MyMiniBill "orderid" Parameter Remote SQL Injection Vulnerability phpBugTracker "username" Remote SQL Injection Vulnerability WebMember "formID" Parameter Remote SQL Injection Vulnerability MiniTwitter SQL Injection and Cross Site Scripting Vulnerabilities OnlineRent "pid" Parameter Handling Remote SQL Injection Vulnerability PHP Dir Submit Username and Password SQL Injection Vulnerability pc4 Uploader "id" Parameter Remote SQL Injection Vulnerability myGesuad Multiple SQL Injection and Cross Site Scripting Vulnerabilities myColex Multiple SQL Injection and Cross Site Scripting Vulnerabilities PHPenpals "ID" Parameter Remote SQL Injection Vulnerability Custom T-shirt Design "id" SQL Injection and Cross Site Scripting Issues Submitter Script "uNev" and "uJelszo" Remote SQL Injection Vulnerability MaxCMS "m_username" Parameter Remote SQL Injection Vulnerability Family Connections Multiple Parameter SQL Injection Vulnerabilities Dokeos Remote SQL Injection and Cross Site Scripting Vulnerabilities BIGACE CMS "username" Parameter Remote SQL Injection Vulnerability uTopic "rating" Parameter Handling Remote SQL Injection Vulnerability Luxbum "username" Parameter Remote SQL Injection Vulnerability RTWebalbum "AlbumId" Parameter Remote SQL Injection Vulnerability BluSky CMS "news_id" Parameter Remote SQL Injection Vulnerability Drupal News Page Keywords Processing SQL Injection Vulnerability New 5 Star Rating "myusername" Parameter Remote SQL Injection Vulnerability Creasito "username" Parameter Remote SQL Injection Vulnerability FunGamez SQL Injection and Local File Inclusion Vulnerabilities WysGui CMS "admin_pages" Remote SQL Injection Vulnerability EZ Webitor "txtUserId" and "txtPassword" SQL Injection Vulnerability Seditio CMS Events Plugin "c" Remote SQL Injection Vulnerability Q2 Solutions ConnX "txtEmail" Remote SQL Injection Vulnerability BookJoomlas for Joomla "gbid" Remote SQL Injection Vulnerability TYPO3 Extensions Information Disclosure and Injection Vulnerabilities Debian Security Update Fixes Auth2db SQL Injection Vulnerability PHP Petition Signing Script Remote SQL Injection Vulnerabilities Simply Classified "category_id" Parameter SQL Injection Vulnerability Media Entertainment Script "id" Remote SQL Injection Vulnerability PHPizabi Remote Code Execution and SQL Injection Vulnerabilities PHPCMS2008 "q" Parameter Handling Remote SQL Injection Vulnerability fMoblog Plugin for WordPress "id" Remote SQL Injection Vulnerability GDL (Gdl Digital Library) "node" Remote SQL Injection Vulnerability PHPRunner "SearchField" Parameter Remote SQL Injection Vulnerabilities phpComasy "entry_id" Parameter Remote SQL Injection Vulnerability Kim Websites "username" Parameter Remote SQL Injection Vulnerability JogjaCamp JProfile Gold "id_news" Remote SQL Injection Vulnerability BannerManager "username" and "password" SQL Injection Vulnerability Newsletter Manager Plus.Attach Remote SQL Injection Vulnerability PenPal "username" and "password" Remote SQL Injection Vulnerability XGuestBook "user" Parameter Remote SQL Injection Vulnerability My_eGallery for MDPro "pid" Remote SQL Injection Vulnerability taifajobs "jobid" Parameter Handling Remote SQL Injection Vulnerability SimpleCMMS Multiple Parameter Remote SQL Injection Vulnerabilities Graugon Forum "id" Parameter Remote SQL Injection Vulnerability Grestul Username and Password Remote SQL Injection Vulnerability MemHT Portal "deletenewpm" and "deletepm" SQL Injection Vulnerabilities PowerMovieList SQL Injection and Cross Site Scripting Vulnerabilities Graugon Gallery SQL Injection and Cross Site Scripting Vulnerabilities Fluorine Halite "id" Parameter Remote SQL Injection Vulnerability BlueBird "username" and "passwd" Remote SQL Injection Vulnerabilities MyNews "username" and "passwd" Remote SQL Injection Vulnerabilities Auth PHP "username" and "passwd" Remote SQL Injection Vulnerabilities PHP Director "searching" Parameter Remote SQL Injection Vulnerability A Better Member-Based ASP Photo Gallery SQL Injection Vulnerability BusinessSpace "id" Parameter Remote SQL Injection Vulnerability w3bcms Multiple Parameter Remote SQL Injection Vulnerabilities IF-CMS "id" Parameter Handling Remote SQL Injection Vulnerability CafeEngine "catid" Parameter Remote SQL Injection Vulnerability ProFTPD Data Processing Remote SQL Injection Vulnerability Fedora Security Update Fixes GLPI Multiple SQL Injection Vulnerabilities Chipmunk Blog "username" Remote SQL Injection Vulnerability GameScript Remote SQL Injection and Local File Inclusion Vulnerabilities Community CMS "id" Parameter Remote SQL Injection Vulnerability Max.Blog "id" Parameter Handling Remote SQL Injection Vulnerability SHOP-INET "grid" Parameter Remote SQL Injection Vulnerability Flash Magazine Deluxe for Joomla Remote SQL Injection Vulnerability ClickAuction "txtEmail" Parameter Remote SQL Injection Vulnerability Groone GLinks "cat" Parameter Remote SQL Injection Vulnerability Wazzum Dating Software "userid" Remote SQL Injection Vulnerability PHP-CMS "username" Parameter Remote SQL Injection Vulnerability Gempar Script Toko Online "cat_id" Remote SQL Injection Vulnerability E-ShopSystem Multiple Parameter Remote SQL Injection Vulnerabilities ITLPoll "id" Parameter Handling Remote SQL Injection Vulnerability Mod-auth-mysql Data Processing Remote SQL Injection Vulnerability Portfol Component for Joomla "vcatid" SQL Injection Vulnerability SocialEngine "classifiedcat_id" Parameter SQL Injection Vulnerability Kroax for PHP-Fusion "comment_id" Parameter SQL Injection Vulnerability Weight Loss Recipe Book "admin-login.php" SQL Injection Vulnerability BKWorks ProPHP Username Remote SQL Injection Vulnerability phpMDJ "id_animateur" Parameter Remote SQL Injection Vulnerability DZcms "pcat" Parameter Handling Remote SQL Injection Vulnerability Fast Guest Book "uname" Parameter Remote SQL Injection Vulnerability PHP Auction System SQL Injection and Cross Site Scripting Vulnerabilities Phoca Documentation for Joomla Remote SQL Injection Vulnerability Na_newsdescription for Joomla Remote SQL Injection Vulnerability plx Autoreminder "id" Parameter Remote SQL Injection Vulnerability PhpMesFilms "id" Parameter Remote SQL Injection Vulnerability WSN Guest "search" Parameter Remote SQL Injection Vulnerability webSPELL "id" Parameter Handling Remote SQL Injection Vulnerability GForge "create()" Comment Handling Remote SQL Injection Vulnerability StormBoard "id" Parameter Handling Remote SQL Injection Vulnerability Low Cost Hotels for Joomla "id" Parameter SQL Injection Vulnerability Joomla Hotel Booking "id" Parameter SQL Injection Vulnerability TYPO3 Extensions Cross Site Scripting and SQL Injection Vulnerabilities WEC Discussion for TYPO3 Cross Site Scripting and SQL Injection Issues Fedora Security Update Fixes Drupal-Views SQL Injection Vulnerability 100 last CVE   CVE-2015-6535 CVE-2015-6513 CVE-2015-5532 CVE-2015-5472 CVE-2015-5471 CVE-2015-5469 CVE-2015-5461 CVE-2015-5078 CVE-2015-4634 CVE-2015-4628 CVE-2015-4454 CVE-2015-4342 CVE-2015-4109 CVE-2015-4010 CVE-2015-3637 CVE-2015-3173 CVE-2015-2973 CVE-2015-2967 CVE-2015-2665 CVE-2015-0715 CVE-2015-0270 CVE-2014-9506 CVE-2014-9442 CVE-2014-9388 CVE-2014-9305 CVE-2014-9280 CVE-2014-9272 CVE-2014-9271 CVE-2014-9270 CVE-2014-9269 CVE-2014-9220 CVE-2014-9173 CVE-2014-9096 CVE-2014-9095 CVE-2014-9089 CVE-2014-9057 CVE-2014-8988 CVE-2014-8987 CVE-2014-8986 CVE-2014-8810 CVE-2014-8598 CVE-2014-8596 CVE-2014-8554 CVE-2014-8553 CVE-2014-8089 CVE-2014-7871 CVE-2014-7146 CVE-2014-6387 CVE-2014-6316 CVE-2014-5308 CVE-2014-5262 CVE-2014-5261 CVE-2014-4858 CVE-2014-4002 CVE-2014-3210 CVE-2014-3119 CVE-2014-2709 CVE-2014-2708 CVE-2014-2540 CVE-2014-2326 CVE-2014-1619 CVE-2014-1466 CVE-2014-0794 CVE-2013-6875 CVE-2013-6839 CVE-2013-6164 CVE-2013-6163 CVE-2013-5743 CVE-2013-5589 CVE-2013-5588 CVE-2013-3527 CVE-2013-1804 CVE-2013-1803 CVE-2012-5849 CVE-2012-5454 CVE-2012-5453 CVE-2012-5169 CVE-2012-5168 CVE-2012-5167 CVE-2012-4990 CVE-2012-4989 CVE-2012-4773 CVE-2012-4772 CVE-2012-4771 CVE-2012-4602 CVE-2012-4601 CVE-2012-3840 CVE-2012-3839 CVE-2012-2962 CVE-2012-2937 CVE-2012-2936 CVE-2012-2436 CVE-2012-2435 CVE-2012-1781 CVE-2012-1780 CVE-2012-1673 CVE-2012-1665 CVE-2012-1664 CVE-2012-0995 CVE-2012-0994    Risk level  Low