Explore CVEs related to SQL Injection vulnerabilities, filtered by published year. This list is sorted by most recent disclosures first and supports filtering by CVSS and EPSS risk scores.
Includes the most recent vulnerability disclosures and trends, helping security teams quickly identify high-risk issues and exploitation likelihood.
You're viewing SQL Injection CVEs published in 2011. View full CVE list
| CVE | Description | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|
| CVE-2010-4996 | SQL injection vulnerability in ogp_show.php in esoftpro Online Guestbook Pro 5.1 allows remote attackers to execute arbitrary SQL commands via the search parameter. | 7.5 | 1.02% | 2011-11-01 | 2026-06-16 |
| CVE-2010-4995 | SQL injection vulnerability in the NeoRecruit (com_neorecruit) component 1.6.4 for Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter in an offer_view action to index.php, a different vector than CVE-2007-4506. | 7.5 | 1.22% | 2011-11-01 | 2026-06-16 |
| CVE-2010-4994 | SQL injection vulnerability in the Jobs Pro component 1.6.4 for Joomla! allows remote attackers to execute arbitrary SQL commands via the detailed_results parameter to search_jobs.html. | 7.5 | 1.22% | 2011-11-01 | 2026-06-16 |
| CVE-2010-4993 | SQL injection vulnerability in the eventcal (com_eventcal) component 1.6.4 for Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter to index.php. | 7.5 | 1.04% | 2011-11-01 | 2026-06-16 |
| CVE-2010-4992 | SQL injection vulnerability in the Payments Plus component 2.1.5 for Joomla! allows remote attackers to execute arbitrary SQL commands via the type parameter to add.html. | 7.5 | 1.04% | 2011-11-01 | 2026-06-16 |
| CVE-2010-4991 | SQL injection vulnerability in the NinjaMonials (com_ninjamonials) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter in a display action to index.php. | 7.5 | 1.00% | 2011-11-01 | 2026-06-16 |
| CVE-2010-4990 | SQL injection vulnerability in the Front-edit Address Book (com_addressbook) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter in a contact action to index.php. | 7.5 | 1.01% | 2011-11-01 | 2026-06-16 |
| CVE-2010-4989 | SQL injection vulnerability in main.asp in Ziggurat Farsi CMS allows remote attackers to execute arbitrary SQL commands via the grp parameter. | 7.5 | 1.00% | 2011-11-01 | 2026-06-16 |
| CVE-2010-4987 | SQL injection vulnerability in default.asp in KMSoft Guestbook (aka GBook) allows remote attackers to execute arbitrary SQL commands via the p parameter. | 7.5 | 1.01% | 2011-11-01 | 2026-06-16 |
| CVE-2010-4986 | SQL injection vulnerability in detail.php in Simple Document Management System (SDMS) allows remote attackers to execute arbitrary SQL commands via the doc_id parameter. | 7.5 | 0.93% | 2011-11-01 | 2026-06-16 |
| CVE-2010-4984 | SQL injection vulnerability in notes.php in My Kazaam Notes Management System allows remote attackers to execute arbitrary SQL commands via vectors involving the "Enter Reference Number Below" text box. | 7.5 | 1.04% | 2011-11-01 | 2026-06-16 |
| CVE-2010-4983 | SQL injection vulnerability in profile.php in iScripts CyberMatch 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 | 1.22% | 2011-11-01 | 2026-06-16 |
| CVE-2010-4982 | SQL injection vulnerability in address_book/contacts.php in My Kazaam Address & Contact Organizer allows remote attackers to execute arbitrary SQL commands via the var1 parameter. | 7.5 | 1.02% | 2011-11-01 | 2026-06-16 |
| CVE-2010-4981 | SQL injection vulnerability in trackads.php in YourFreeWorld Banner Management allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: some of these details are obtained from third party information. | 7.5 | 1.05% | 2011-11-01 | 2026-06-16 |
| CVE-2010-4980 | SQL injection vulnerability in packagedetails.php in iScripts ReserveLogic 1.0 allows remote attackers to execute arbitrary SQL commands via the pid parameter. | 7.5 | 2.42% | 2011-11-01 | 2026-06-16 |
| CVE-2010-4979 | SQL injection vulnerability in image/view.php in CANDID allows remote attackers to execute arbitrary SQL commands via the image_id parameter. | 7.5 | 1.01% | 2011-11-01 | 2026-06-16 |
| CVE-2010-4977 | SQL injection vulnerability in menu.php in the Canteen (com_canteen) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the mealid parameter to index.php. | 7.5 | 15.25% | 2011-11-01 | 2026-06-16 |
| CVE-2010-4975 | SQL injection vulnerability in the Techjoomla SocialAds For JomSocial (com_socialads) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the ads description field in a showad action to index.php. | 7.5 | 1.00% | 2011-11-01 | 2026-06-16 |
| CVE-2010-4974 | SQL injection vulnerability in info.php in BrotherScripts (BS) and ScriptsFeed Auto Dealer allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 | 1.22% | 2011-11-01 | 2026-06-16 |
| CVE-2010-4972 | SQL injection vulnerability in index.php in YPNinc JokeScript allows remote attackers to execute arbitrary SQL commands via the ypncat_id parameter. | 7.5 | 1.22% | 2011-11-01 | 2026-06-16 |