MustLive

110 exploits Active since Dec 2005
EIP-2026-109641 EXPLOITDB text WRITEUP
Multiple WordPress WooThemes Themes - 'test.php' Cross-Site Scripting
CVE-2007-3555 EXPLOITDB text WORKING POC
Moodle - XSS
Cross-site scripting (XSS) vulnerability in index.php in Moodle 1.7.1 allows remote attackers to inject arbitrary web script or HTML via a style expression in the search parameter, a different vulnerability than CVE-2004-1424.
EIP-2026-109691 EXPLOITDB text WRITEUP
MyBB 1.4/1.6 - Multiple Vulnerabilities
CVE-2008-4092 EXPLOITDB text WORKING POC
Myphpnuke < 1.8.8_8 - SQL Injection
SQL injection vulnerability in printfeature.php in myPHPNuke (MPN) before 1.8.8_8rc2 allows remote attackers to execute arbitrary SQL commands via the artid parameter.
CVE-2008-4089 EXPLOITDB text WRITEUP
Myphpnuke < 1.8.8_8 - XSS
Cross-site scripting (XSS) vulnerability in print.php in myPHPNuke (MPN) before 1.8.8_8rc2 allows remote attackers to inject arbitrary web script or HTML via the sid parameter.
EIP-2026-109788 EXPLOITDB text WORKING POC
MySITE - SQL Injection / Cross-Site Scripting
EIP-2026-109368 EXPLOITDB text WORKING POC
MC Content Manager 10.1.1 - Multiple Cross-Site Scripting Vulnerabilities
EIP-2026-109367 EXPLOITDB text WORKING POC
MC Content Manager 10.1 - SQL Injection / Cross-Site Scripting
EIP-2026-109166 EXPLOITDB text WRITEUP
LIOOSYS CMS - SQL Injection / Information Disclosure
EIP-2026-109377 EXPLOITDB text WORKING POC
MCImageManager - Multiple Vulnerabilities
CVE-2009-4112 EXPLOITDB text WORKING POC
Cacti <0.8.7e - Privilege Escalation
Cacti 0.8.7e and earlier allows remote authenticated administrators to gain privileges by modifying the "Data Input Method" for the "Linux - Get Memory Usage" setting to contain arbitrary commands.
EIP-2026-108754 EXPLOITDB text WORKING POC
Joomla! Component Joomulus 2.0 - 'tagcloud.swf' Cross-Site Scripting
CVE-2009-4157 EXPLOITDB text WORKING POC
Joomla! com_proofreader <1.0 RC9 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in index.php in the ProofReader (com_proofreader) component 1.0 RC9 and earlier for Joomla! allow remote attackers to inject arbitrary web script or HTML via the URI, which is not properly handled in (1) 404 or (2) error pages.
CVE-2012-3351 EXPLOITDB MEDIUM text WORKING POC
Longtailvideo JW Player < 5.10.2295 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in LongTail Video JW Player through 5.10.2295 allow remote attackers to inject arbitrary web script or HTML via the (1) link, (2) logo.link, or (3) aboutlink parameter, or a nested URI scheme name for (4) javascript, (5) asfunction, or (6) vbscript.
CVSS 6.1
EIP-2026-108921 EXPLOITDB text WORKING POC
Joostina 1.3 - 'index.php' Cross-Site Scripting
CVE-2007-5427 EXPLOITDB text WORKING POC
Joomla Com Search Component < 1.0.13 - XSS
Cross-site scripting (XSS) vulnerability in the com_search component in Joomla! 1.0.13 and earlier allows remote attackers to inject arbitrary web script or HTML via the searchword parameter. NOTE: this might be related to CVE-2007-4189.1.
EIP-2026-108189 EXPLOITDB text WORKING POC
Joomla! Component 3D Cloud - 'tagcloud.swf' Cross-Site Scripting
EIP-2026-108589 EXPLOITDB text WRITEUP
Joomla! Component com_vxdate - Multiple Vulnerabilities
EIP-2026-108436 EXPLOITDB text WRITEUP
Joomla! Component com_mailto - Multiple Cross-Site Scripting Vulnerabilities
EIP-2026-108174 EXPLOITDB text WRITEUP
Joomla! 1.5.x - 404 Error Page Cross-Site Scripting
EIP-2026-107106 EXPLOITDB text WRITEUP
Firebook - 'index.html' Cross-Site Scripting
EIP-2026-107107 EXPLOITDB text WORKING POC
Firebook - Multiple Cross-Site Scripting / Directory Traversal Vulnerabilities
EIP-2026-106972 EXPLOITDB text WORKING POC
ExpressionEngine 1.2.1 - HTTP Response Splitting / Cross-Site Scripting
EIP-2026-106593 EXPLOITDB text WORKING POC
Drupal Module Cumulus 5.x-1.1/6.x-1.4 - 'tagcloud' Cross-Site Scripting
EIP-2026-106659 EXPLOITDB text WRITEUP
e107 0.7.x - CAPTCHA Security Bypass / Cross-Site Scripting