Exploitdb Exploits

1,269 exploits tracked across all sources.

Sort: Activity Stars
CVE-2007-2824 EXPLOITDB php VERIFIED
AlstraSoft E-Friends <4.21 - SQL Injection
SQL injection vulnerability in paypal.php in AlstraSoft E-Friends 4.21 and earlier allows remote attackers to execute arbitrary SQL commands via the pack parameter in a paypal action for index.php.
by BlackHawk
CVE-2007-2667 EXPLOITDB php VERIFIED
VImpX ActiveX <4.7.3 - RCE
Buffer overflow in the DB Software Laboratory VImpX ActiveX control in VImpX.ocx 4.7.3 allows remote attackers to execute arbitrary code via a long LogFile parameter.
by rgod
CVE-2007-2715 EXPLOITDB php VERIFIED
Snaps! Gallery 1.4.4 - Auth Bypass
Admin/users.php in Snaps! Gallery 1.4.4 allows remote attackers to change arbitrary usernames and passwords via the (1) username, or the (2) password and password2 parameters in an edit action.
by Dj7xpl
CVE-2007-2647 EXPLOITDB php VERIFIED
Monalbum 0.8.7 - Code Injection
Static code injection vulnerability in admin/admin_configuration.php in Monalbum 0.8.7 allows remote authenticated users to inject arbitrary PHP code into the conf/config.inc.php file via the (1) gadm_pass, (2) gadm_user, (3) gcfgHote, (4) gcfgPass, (5) gcfgUser, (6) gclassement_rep, (7) gcontour, (8) gfond, (9) ggd_version, (10) ghome, (11) ghor, (12) gimg_copyright, (13) glangage, (14) gmenu_visible, (15) gmini_hasard, (16) gordre_rep, (17) gpage, (18) gracine, (19) grech_inactive, (20) grep_mini, (21) grepertoire, (22) gsite, (23) gslide, (24) gtitre, (25) guse_copyright, (26) gversion, (27) gvert, or (28) gcfgBase parameter.
by Dj7xpl
CVE-2007-2556 EXPLOITDB php VERIFIED
Nuked-klaN <1.7.6 - SQL Injection
SQL injection vulnerability in Nuked-klaN 1.7.6 allows remote attackers to execute arbitrary SQL commands via the X-Forwarded-For (X_FORWARDED_FOR) HTTP header, as demonstrated by a request to the /nk/ URI.
by DarkFig
CVE-2007-2538 EXPLOITDB php VERIFIED
RunCms <1.5.2 - SQL Injection
SQL injection vulnerability in class/debug/debug_show.php in RunCms 1.5.2 and earlier allows remote attackers to execute arbitrary SQL commands via the executed_queries array parameter.
by rgod
CVE-2007-2539 EXPLOITDB php VERIFIED
RunCms <1.5.2 - Info Disclosure
The show_files function in RunCms 1.5.2 and earlier allows remote attackers to obtain sensitive information (file existence and file metadata) via unspecified vectors.
by rgod
CVE-2007-2537 EXPLOITDB php VERIFIED
NPDS <5.10 - SQL Injection
Multiple SQL injection vulnerabilities in mainfile.php in NPDS 5.10 and earlier allow remote authenticated users to execute arbitrary SQL commands via a (1) nickname or (2) Id in a cookie, or (3) the X-Forwarded-For (X_FORWARDED_FOR) HTTP header.
by Gu1ll4um3r0m41n
EIP-2026-114509 EXPLOITDB php VERIFIED
YaPiG 0.95b - Remote Code Execution
by Dj7xpl
CVE-2007-2493 EXPLOITDB php VERIFIED
FAQ & RULES <2.0.0 - RCE
PHP remote file inclusion vulnerability in faq.php in the FAQ & RULES 2.0.0 and earlier module for mxBB allows remote attackers to execute arbitrary PHP code via a URL in the module_root_path parameter.
by bd0rk
EIP-2026-111563 EXPLOITDB php VERIFIED
psipuss 1.0 - 'editusers.php' Remote Change Admin Password
by Dj7xpl
CVE-2007-2430 EXPLOITDB php VERIFIED
TCExam <4.0.011 - RCE
shared/code/tce_tmx.php in TCExam 4.0.011 and earlier allows remote attackers to create arbitrary PHP files in cache/ by placing file contents and directory traversal manipulations into a SessionUserLang cookie to public/code/index.php.
by rgod
CVE-2007-2431 EXPLOITDB php VERIFIED
TCExam <4.0.011 - XSS
Dynamic variable evaluation vulnerability in shared/config/tce_config.php in TCExam 4.0.011 and earlier allows remote attackers to conduct cross-site scripting (XSS) and possibly other attacks by modifying critical variables such as $_SERVER, as demonstrated by injecting web script via the _SERVER[SCRIPT_NAME] parameter.
by rgod
CVE-2007-2191 EXPLOITDB php VERIFIED
Freepbx - XSS
Multiple cross-site scripting (XSS) vulnerabilities in freePBX 2.2.x allow remote attackers to inject arbitrary web script or HTML via the (1) From, (2) To, (3) Call-ID, (4) User-Agent, and unspecified other SIP protocol fields, which are stored in /var/log/asterisk/full and displayed by admin/modules/logfiles/asterisk-full-log.php.
by XenoMuta
CVE-2007-2257 EXPLOITDB php VERIFIED
Fully Modded phpBB2 - RCE
PHP remote file inclusion vulnerability in subscp.php in Fully Modded phpBB2 allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
by HACKERS PAL
CVE-2007-2141 EXPLOITDB php VERIFIED
ShoutPro 1.5.2 - Code Injection
Direct static code injection vulnerability in shoutbox.php in ShoutPro 1.5.2 allows remote attackers to inject arbitrary PHP code into shouts.php via the shout parameter.
by Gammarays
CVE-2007-2081 EXPLOITDB php VERIFIED
MyBlog <0.9.8 - Auth Bypass
MyBlog 0.9.8 and earlier allows remote attackers to bypass authentication requirements via the admin cookie parameter to certain admin files, as demonstrated by admin/settings.php.
by BlackHawk
CVE-2007-2079 EXPLOITDB php VERIFIED
Xampp Apache Distribution < 1.6.0a - Buffer Overflow
The ADONewConnection Connect function in adodb.php in XAMPP 1.6.0a and earlier for Windows uses untrusted input for the database server hostname, which allows remote attackers to trigger a library buffer overflow and execute arbitrary code via a long host parameter, or have other unspecified impact. NOTE: it could be argued that this is an issue in mssql_connect (CVE-2007-1411.1) in PHP, or an issue in the ADOdb Library, and the proper fix should be in one of these products; if so, then this should not be treated as a vulnerability in XAMPP.
by rgod
CVE-2007-2080 EXPLOITDB php VERIFIED
Xampp Apache Distribution - SQL Injection
Multiple SQL injection vulnerabilities in XAMPP 1.6.0a for Windows allow remote attackers to execute arbitrary SQL commands via unspecified vectors in certain test scripts.
by rgod
CVE-2007-2320 EXPLOITDB php VERIFIED
Papoo < 3.02 - SQL Injection
SQL injection vulnerability in kontakt.php in Papoo 3.02 and earlier allows remote attackers to execute arbitrary SQL commands via the menuid parameter, a different vector than CVE-2005-4478.
by Kacper
CVE-2007-2299 EXPLOITDB php VERIFIED
Frogss Cms < 0.7 - SQL Injection
Multiple SQL injection vulnerabilities in Frogss CMS 0.7 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) dzial parameter to (a) katalog.php, or the (2) t parameter to (b) forum.php or (c) forum/viewtopic.php, different vectors than CVE-2006-4536.
by Kacper
CVE-2007-2149 EXPLOITDB php VERIFIED
Chatness <2.5.3 - Privilege Escalation
Stephen Craton (aka WiredPHP) Chatness 2.5.3 and earlier stores usernames and unencrypted passwords in (1) classes/vars.php and (2) classes/varstuff.php, and recommends 0666 or 0777 permissions for these files, which allows local users to gain privileges by reading the files, and allows remote attackers to obtain credentials via a direct request for admin/options.php.
by Gammarays
EIP-2026-111580 EXPLOITDB php VERIFIED
PunBB 1.2.14 - Remote Code Execution
by DarkFig
CVE-2007-2003 EXPLOITDB php VERIFIED
InoutMailingListManager <3.1 - Open Redirect
InoutMailingListManager 3.1 and earlier sends a Location redirect header but does not exit after an authorization check fails, which allows remote attackers to access certain restricted functionality, and upload and execute arbitrary PHP code, by ignoring the redirect.
by BlackHawk
CVE-2007-2002 EXPLOITDB php VERIFIED
InoutMailingListManager <3.1 - RCE
InoutMailingListManager 3.1 and earlier allows remote attackers to access certain restricted functionality, and upload and execute arbitrary PHP code, by setting an arbitrary admin cookie.
by BlackHawk
By Source
All 1,269 Exploitdb 50,121 Writeup 46,628 Nomisec 21,129 Metasploit 3,189 Github 2,234 Vulncheck_xdb 900 Inthewild 518 Gitlab 438 Gitee 415 Patchapalooza 312
By Language
text 31,341 ruby 5,920 python 5,729 c 3,550 perl 2,854 html 2,054 php 1,334 bash 459 java 359 javascript 260 c++ 246 shell 68 go 41 postscript 25 xml 24