Php Exploits

1,334 exploits tracked across all sources.

Sort: Activity Stars
CVE-2009-2230 EXPLOITDB php VERIFIED
MyBB <1.4.7 - SQL Injection
SQL injection vulnerability in inc/datahandlers/user.php in MyBB (aka MyBulletinBoard) before 1.4.7 allows remote authenticated users to execute arbitrary SQL commands via the birthdayprivacy parameter.
by The:Paradox
EIP-2026-103585 EXPLOITDB php VERIFIED
Multiple HTTP Server - Low Bandwidth Denial of Service (2)
by evilrabbi
CVE-2009-2111 EXPLOITDB php VERIFIED
DB Top Sites 1.0 - Code Injection
Static code injection vulnerability in add_reg.php in DB Top Sites 1.0 allows remote attackers to inject arbitrary PHP code via a crafted (1) url and (2) location parameter.
by SirGod
EIP-2026-112270 EXPLOITDB php VERIFIED
Sniggabo CMS - 'article.php?id' SQL Injection
by Lidloses_Auge
CVE-2009-2261 EXPLOITDB php VERIFIED
PeaZIP <2.6.1-2.5.1 - Command Injection
PeaZIP 2.6.1, 2.5.1, and earlier on Windows allows user-assisted remote attackers to execute arbitrary commands via a .zip archive with a .txt file whose name contains | (pipe) characters and a command.
by Nine:Situations:Group
EIP-2026-111381 EXPLOITDB php VERIFIED
Podcast Generator 1.2 - Unauthorized Re-Installation
by StAkeR
CVE-2009-1915 EXPLOITDB php VERIFIED
ICQ 6.5 - Buffer Overflow
Stack-based buffer overflow in the URL Search Hook (ICQToolBar.dll) in ICQ 6.5 allows remote attackers to cause a denial of service (persistent crash) and possibly execute arbitrary code via an Internet shortcut .URL file containing a long URL parameter, which triggers a crash when browsing a folder that contains this file.
by Nine:Situations:Group
CVE-2011-4909 EXPLOITDB php VERIFIED
Joomla! < 1.5.11 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in Joomla! before 1.5.12 allow remote attackers to inject arbitrary web script or HTML via the HTTP_REFERER header to (1) components/com_content/views/article/tmpl/form.php, (2) components/com_user/controller.php, (3) plugins/system/legacy/html.php, or (4) templates/beez/html/com_content/article/form.php.
by Juan Galiana Lara
CVE-2009-4668 EXPLOITDB php VERIFIED
jetAudio <7.5.3.15 - Buffer Overflow
Stack-based buffer overflow in JetCast.exe 2.0.4.1109 in jetAudio 7.5.2 and 7.5.3.15 allows remote attackers to execute arbitrary code via a long ID3 tag in an MP3 file. NOTE: some of these details are obtained from third party information.
by Nine:Situations:Group
CVE-2009-4676 EXPLOITDB php VERIFIED
JetAudio <7.5.3.15 - Buffer Overflow
Stack-based buffer overflow in JetCast.exe 2.0.4.1109 in jetAudio 7.5.2 and 7.5.3.15 allows remote attackers to execute arbitrary code via a long title in a FLAC file. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by Nine:Situations:Group
EIP-2026-118795 EXPLOITDB php VERIFIED
Microsoft IIS 6.0 - WebDAV Remote Authentication Bypass
by racle
CVE-2009-1736 EXPLOITDB php VERIFIED
Joomla Com Gsticketsystem - SQL Injection
SQL injection vulnerability in the GridSupport (GS) Ticket System (com_gsticketsystem) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in a viewCategory action to index.php.
by InjEctOr5
EIP-2026-108093 EXPLOITDB php VERIFIED
Jieqi CMS 1.5 - Remote Code Execution
by Securitylab.ir
EIP-2026-107555 EXPLOITDB php VERIFIED
Harland Scripts 11 - Products Remote Command Execution
by G4N0K
CVE-2009-1774 EXPLOITDB php VERIFIED
Strawberry - Path Traversal
Directory traversal vulnerability in plugins/ddb/foot.php in Strawberry 1.1.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the file parameter to example/index.php. NOTE: this was originally reported as an issue affecting the do parameter, but traversal with that parameter might depend on a modified example/index.php. NOTE: some of these details are obtained from third party information.
by [AVT]
CVE-2009-1743 EXPLOITDB php VERIFIED
Pinnaclesys Pinnacle Studio - Path Traversal
Directory traversal vulnerability in InstallHFZ.exe 6.5.201.0 in Pinnacle Hollywood Effects 6, a module in Pinnacle Systems Pinnacle Studio 12, allows remote attackers to create and overwrite arbitrary files via a filename containing a ..\ (dot dot backslash) sequence in a Hollywood FX Compressed Archive (.hfz) file. NOTE: this can be leveraged for code execution by decompressing a file to a Startup folder. NOTE: some of these details are obtained from third party information.
by Nine:Situations:Group
CVE-2009-1744 EXPLOITDB php VERIFIED
Pinnaclesys Pinnacle Studio - Path Traversal
InstallHFZ.exe 6.5.201.0 in Pinnacle Hollywood Effects 6, a module in Pinnacle Systems Pinnacle Studio 12, allows remote attackers to cause a denial of service (application crash) via a crafted Hollywood FX Compressed Archive (.hfz) file.
by Nine:Situations:Group
CVE-2009-1818 EXPLOITDB php VERIFIED
Maxcms - SQL Injection
SQL injection vulnerability in admin/admin_manager.asp in MaxCMS 2.0 allows remote attackers to execute arbitrary SQL commands via an m_username cookie in an add action.
by Securitylab.ir
CVE-2009-1677 EXPLOITDB php VERIFIED
Bitweaver < 2.6 - Code Injection
Multiple static code injection vulnerabilities in the saveFeed function in rss/feedcreator.class.php in Bitweaver 2.6 and earlier allow (1) remote authenticated users to inject arbitrary PHP code into files by placing PHP sequences into the account's "display name" setting and then invoking boards/boards_rss.php, and might allow (2) remote attackers to inject arbitrary PHP code into files via the HTTP Host header in a request to boards/boards_rss.php.
by Nine:Situations:Group
CVE-2009-1669 EXPLOITDB php VERIFIED
Smarty - Improper Input Validation
The smarty_function_math function in libs/plugins/function.math.php in Smarty 2.6.22 allows context-dependent attackers to execute arbitrary commands via shell metacharacters in the equation attribute of the math function. NOTE: some of these details are obtained from third party information.
by Nine:Situations:Group
CVE-2009-1678 EXPLOITDB php VERIFIED
Bitweaver < 2.6 - Path Traversal
Directory traversal vulnerability in the saveFeed function in rss/feedcreator.class.php in Bitweaver 2.6 and earlier allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) in the version parameter to boards/boards_rss.php.
by Nine:Situations:Group
CVE-2010-3870 EXPLOITDB php VERIFIED
Php < 5.2.14 - Improper Input Validation
The utf8_decode function in PHP before 5.3.4 does not properly handle non-shortest form UTF-8 encoding and ill-formed subsequences in UTF-8 data, which makes it easier for remote attackers to bypass cross-site scripting (XSS) and SQL injection protection mechanisms via a crafted string.
CVE-2009-1911 EXPLOITDB php VERIFIED
QuiXplorer <2.3.2 - Path Traversal
Directory traversal vulnerability in .include/init.php (aka admin/_include/init.php) in QuiXplorer 2.3.2 and earlier, as used in TinyWebGallery (TWG) 1.7.6 and earlier, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang parameter to admin/index.php.
by EgiX
EIP-2026-103553 EXPLOITDB php VERIFIED
Mortbay Jetty 7.0.0-pre5 Dispatcher Servlet - Denial of Service
by ikki
CVE-2009-1659 EXPLOITDB php VERIFIED
Intelliants Elitius - Unrestricted File Upload
Unrestricted file upload vulnerability in admin/uploadimage.php in eLitius 1.0 allows remote attackers to bypass intended access restrictions and upload and execute arbitrary files via an avatar file with an accepted Content-Type such as image/gif, then requesting the file in admin/banners/.
by G4N0K
By Source
All 1,334 Exploitdb 50,123 Writeup 46,593 Nomisec 21,119 Metasploit 3,189 Github 2,225 Vulncheck_xdb 900 Inthewild 518 Gitlab 438 Gitee 415 Patchapalooza 312
By Language
text 31,341 ruby 5,920 python 5,728 c 3,550 perl 2,854 html 2,054 php 1,334 bash 459 java 359 javascript 256 c++ 245 shell 68 go 41 postscript 25 xml 24