Explore CVEs related to SQL Injection vulnerabilities, filtered by published year. This list is sorted by most recent disclosures first and supports filtering by CVSS and EPSS risk scores.
Includes the most recent vulnerability disclosures and trends, helping security teams quickly identify high-risk issues and exploitation likelihood.
You're viewing SQL Injection CVEs published in 2011. View full CVE list
| CVE | Description | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|
| CVE-2010-5022 | SQL injection vulnerability in the JExtensions JE Story Submit (com_jesubmit) component 1.4 for Joomla! allows remote attackers to execute arbitrary SQL commands via the view parameter to index.php. | 7.5 | 0.93% | 2011-11-02 | 2026-06-16 |
| CVE-2010-5021 | SQL injection vulnerability in view_group.asp in Digital Interchange Document Library 5.8.5 allows remote attackers to execute arbitrary SQL commands via the intGroupID parameter. | 7.5 | 1.22% | 2011-11-02 | 2026-06-16 |
| CVE-2010-5020 | SQL injection vulnerability in index.php in NetArt Media iBoutique 4.0 allows remote attackers to execute arbitrary SQL commands via the page parameter. | 7.5 | 1.00% | 2011-11-02 | 2026-06-16 |
| CVE-2010-5019 | SQL injection vulnerability in view_photo.php in 2daybiz Online Classified Script allows remote attackers to execute arbitrary SQL commands via the alb parameter. | 7.5 | 2.09% | 2011-11-02 | 2026-06-16 |
| CVE-2010-5017 | SQL injection vulnerability in stats.php in Elite Gaming Ladders 3.0 allows remote attackers to execute arbitrary SQL commands via the account parameter. | 7.5 | 1.05% | 2011-11-02 | 2026-06-16 |
| CVE-2010-5016 | SQL injection vulnerability in matchdb.php in Elite Gaming Ladders 3.5 and earlier allows remote attackers to execute arbitrary SQL commands via the match parameter. | 7.5 | 1.01% | 2011-11-02 | 2026-06-16 |
| CVE-2010-5015 | SQL injection vulnerability in view_photo.php in 2daybiz Network Community Script allows remote attackers to execute arbitrary SQL commands via the alb parameter. | 7.5 | 1.05% | 2011-11-02 | 2026-06-16 |
| CVE-2010-5014 | SQL injection vulnerability in standings.php in Elite Gaming Ladders 3.5 allows remote attackers to execute arbitrary SQL commands via the ladder[id] parameter. | 7.5 | 1.01% | 2011-11-02 | 2026-06-16 |
| CVE-2010-5013 | SQL injection vulnerability in listing_detail.asp in Mckenzie Creations Virtual Real Estate Manager (VRM) 3.5 allows remote attackers to execute arbitrary SQL commands via the Lid parameter. | 7.5 | 1.22% | 2011-11-02 | 2026-06-16 |
| CVE-2010-5012 | SQL injection vulnerability in new.php in DaLogin 2.2 and 2.2.5 allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: some of these details are obtained from third party information. | 7.5 | 1.22% | 2011-11-02 | 2026-06-16 |
| CVE-2010-5011 | SQL injection vulnerability in schoolmv2/html/studentmain.php in SchoolMation 2.3 allows remote attackers to execute arbitrary SQL commands via the session parameter. | 7.5 | 1.04% | 2011-11-02 | 2026-06-16 |
| CVE-2010-5009 | SQL injection vulnerability in index.php in UTStats Beta 4 and earlier allows remote attackers to execute arbitrary SQL commands via the pid parameter in a matchp action. | 7.5 | 1.22% | 2011-11-02 | 2026-06-16 |
| CVE-2010-5008 | SQL injection vulnerability in pages/contact_list_mail_form.asp in BrightSuite Groupware 5.4 allows remote attackers to execute arbitrary SQL commands via the ContactID parameter. | 7.5 | 1.05% | 2011-11-02 | 2026-06-16 |
| CVE-2010-5006 | SQL injection vulnerability in googlemap/index.php in EMO Realty Manager allows remote attackers to execute arbitrary SQL commands via the cat1 parameter. | 7.5 | 1.19% | 2011-11-02 | 2026-06-16 |
| CVE-2010-5004 | SQL injection vulnerability in searchvote.php in 2daybiz Polls (aka Advanced Poll) Script allows remote attackers to execute arbitrary SQL commands via the category parameter. | 7.5 | 0.93% | 2011-11-02 | 2026-06-16 |
| CVE-2010-5000 | SQL injection vulnerability in login/login_index.php in MCLogin System 1.1 and 1.2 allows remote attackers to execute arbitrary SQL commands via the myusername parameter (aka Username field) in a do_login action. NOTE: some of these details are obtained from third party information. | 7.5 | 1.05% | 2011-11-02 | 2026-06-16 |
| CVE-2010-4997 | SQL injection vulnerability in index.php in OlyKit Swoopo Clone 2010 allows remote attackers to execute arbitrary SQL commands via the id parameter in a product action. | 7.5 | 0.93% | 2011-11-02 | 2026-06-16 |
| CVE-2010-5003 | SQL injection vulnerability in the AutarTimonial (com_autartimonial) component 1.0.8 for Joomla! allows remote attackers to execute arbitrary SQL commands via the limit parameter in an autartimonial action to index.php. NOTE: some of these details are obtained from third party information. | 7.5 | 1.63% | 2011-11-01 | 2026-06-16 |
| CVE-2010-5001 | SQL injection vulnerability in view.php in esoftpro Online Contact Manager 3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 | 1.01% | 2011-11-01 | 2026-06-16 |
| CVE-2010-4999 | SQL injection vulnerability in index.php in esoftpro Online Photo Pro 2.0 allows remote attackers to execute arbitrary SQL commands via the section parameter. | 7.5 | 1.01% | 2011-11-01 | 2026-06-16 |