Exploitdb Exploits
2,809 exploits tracked across all sources.
fuzzylime CMS <3.01 - Path Traversal
Directory traversal vulnerability in blog.php in fuzzylime (cms) 3.01, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the file parameter. NOTE: it was later reported that 3.01a is also affected.
by Cod3rZ
Triton CMS Pro < 1.0.6 - SQL Injection via X-Forwarded-For Header
SQL injection vulnerability in Triton CMS Pro allows remote attackers to execute arbitrary SQL commands via the X-Forwarded-For HTTP header.
by girex
SmartPPC and SmartPPC Pro - SQL Injection via idDirectory Parameter
SQL injection vulnerability in directory.php in SmartPPC and SmartPPC Pro allows remote attackers to execute arbitrary SQL commands via the idDirectory parameter.
by ka0x
Neutrino Atomic Edition 0.8.4 - Path Traversal
Directory traversal vulnerability in index.php in Neutrino Atomic Edition 0.8.4 allows remote attackers to read and modify files, as demonstrated by manipulating data/sess.php in (1) usb and (2) del_pag actions. NOTE: this can be leveraged for code execution by performing an upload that bypasses the intended access restrictions that were implemented in sess.php.
by Ams
fuzzylime (cms) 3.01 and 3.01a - Path Traversal via commupdate.php s Parameter or newsheads.php heads Parameter
Multiple directory traversal vulnerabilities in fuzzylime (cms) 3.01 and 3.01a allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in (1) the s parameter to code/commupdate.php in a count action or (2) the heads parameter to code/newsheads.php. NOTE: the blog.php vector is already covered by CVE-2008-3164.
by Cod3rZ
fuzzylime CMS <3.01 - Path Traversal
Directory traversal vulnerability in blog.php in fuzzylime (cms) 3.01, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the file parameter. NOTE: it was later reported that 3.01a is also affected.
by Cod3rZ
Apple QuickTime <7.3.1 - Buffer Overflow
Stack-based buffer overflow in Apple QuickTime before 7.3.1, as used in QuickTime Player on Windows XP and Safari on Mac OS X, allows remote Real Time Streaming Protocol (RTSP) servers to execute arbitrary code via an RTSP response with a long Content-Type header.
by krafty
fuzzylime_cms < 3.01 - Path Traversal via RSS p Parameter
Directory traversal vulnerability in rss.php in fuzzylime (cms) 3.01a and earlier, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the p parameter, as demonstrated using content.php, a different vector than CVE-2007-4805.
by Ams
Joomla! Component altas 1.0 - Multiple SQL Injections
by Houssamix
WebBlizzard CMS - SQL Injection via Page Parameter
SQL injection vulnerability in index.php in WebBlizzard CMS allows remote attackers to execute arbitrary SQL commands via the page parameter.
by Bl@ckbe@rD
Joomla! Component QuickTime VR 0.1 - SQL Injection
by Houssamix
Joomla! Component is 1.0.1 - Multiple SQL Injections
by Houssamix
Novell GroupWise Messenger < 2.0.3 HP1 - Remote Code Execution via Spoofed Server Response
Multiple stack-based buffer overflows in Novell GroupWise Messenger (GWIM) Client before 2.0.3 HP1 for Windows allow remote attackers to execute arbitrary code via "spoofed server responses" that contain a long string after the NM_A_SZ_TRANSACTION_ID field name.
by Francisco Amato
BareNuked CMS 1.1.0 - SQL Injection
SQL injection vulnerability in admin/index.php in BareNuked CMS 1.1.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the password parameter.
by CWH Underground
AShop Deluxe 4.x - SQL Injection via Catalogue.php Cat Parameter
SQL injection vulnerability in catalogue.php in AShop Deluxe 4.x allows remote attackers to execute arbitrary SQL commands via the cat parameter.
by n0c0py
Joomla com_xewebtv - SQL Injection via id Parameter
SQL injection vulnerability in the Xe webtv (com_xewebtv) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action to index.php.
by His0k4
Mambo Component Articles - 'artid' Blind SQL Injection
by Ded MustD!e
BitTorrent < 6.0.3 - Denial of Service via Malformed HTTP Range Header
The Web UI interface in (1) BitTorrent before 6.0.3 build 8642 and (2) uTorrent before 1.8beta build 10524 allows remote attackers to cause a denial of service (application crash) via an HTTP request with a malformed Range header.
by Exodus
BlogPHP 2.0 - Privilege Escalation via Email Parameter in Register Action
index.php in BlogPHP 2.0 allows remote attackers to gain administrator privileges via a crafted email parameter in a register2 action.
by Cod3rZ
IGSuite 3.2.4 - SQL Injection via formid Parameter
SQL injection vulnerability in cgi-bin/igsuite in IGSuite 3.2.4 allows remote attackers to execute arbitrary SQL commands via the formid parameter.
by Guido Landi
Scientific Image DataBase 0.41 - SQL Injection via projects.php id Parameter
SQL injection vulnerability in projects.php in Scientific Image DataBase 0.41 allows remote attackers to execute arbitrary SQL commands via the id parameter.
by t0pP8uZz
le.cms < 1.4 - Unauthenticated Arbitrary File Upload via admin/upload.php
admin/upload.php in le.cms 1.4 and earlier allows remote attackers to bypass administrative authentication, and upload and execute arbitrary files in images/, via a nonzero value for the submit0 parameter in conjunction with filenames in the filename and upload parameters.
by t0pP8uZz
By Source