Exploitdb Exploits

1,269 exploits tracked across all sources.

Sort: Activity Stars
CVE-2006-0821 EXPLOITDB php VERIFIED
Bxcp - SQL Injection
SQL injection vulnerability in index.php in BXCP 0.299 allows remote attackers to execute arbitrary SQL commands via the tid parameter.
by x128
EIP-2026-106169 EXPLOITDB php VERIFIED
Coppermine Photo Gallery 1.4.3 - Remote Command Execution
by rgod
CVE-2006-0786 EXPLOITDB php VERIFIED
PHPKIT 1.6.1 Release 2 - Code Injection
Incomplete blacklist vulnerability in include.php in PHPKIT 1.6.1 Release 2 and earlier, with allow_url_fopen enabled, allows remote attackers to conduct PHP remote file include attacks via a path parameter that specifies a (1) UNC share or (2) ftps URL, which bypasses the check for "http://", "ftp://", and "https://" URLs.
by rgod
CVE-2006-0791 EXPLOITDB php VERIFIED
DreamCost HostAdmin - RCE
PHP remote file inclusion vulnerability in index.php in DreamCost HostAdmin allows remote attackers to include arbitrary files via the $path variable, which is not initialized before use.
by ReZEN
CVE-2006-0728 EXPLOITDB php VERIFIED
Webspell < 4.01.00 - SQL Injection
SQL injection vulnerability in search.php in webSPELL 4.01.00 and earlier allows remote attackers to inject arbitrary SQL commands via the title_op parameter.
by x128
CVE-2006-0750 EXPLOITDB php VERIFIED
Supersmashbrothers Army System - SQL Injection
SQL injection vulnerability in army.php in supersmashbrothers (SSB) Army System 2.1.0 for Invision Power Board (IPB) allows remote attackers to execute arbitrary SQL commands via the userstat parameter in an army action to index.php.
by fRoGGz
CVE-2006-0714 EXPLOITDB php VERIFIED
Flyspray - Path Traversal
Directory traversal vulnerability in the installation file (sql/install-0.9.7.php) in Flyspray 0.9.7 allows remote attackers to include arbitrary files via a .. (dot dot) sequence in the adodbpath parameter.
by rgod
EIP-2026-106886 EXPLOITDB php VERIFIED
EnterpriseGS 1.0 rc4 - Remote Command Execution
by rgod
CVE-2006-0687 EXPLOITDB php VERIFIED
DocMGR 0.54.2 - Code Injection
process.php in DocMGR 0.54.2 does not initialize the $siteModInfo variable when a direct request is made, which allows remote attackers to include arbitrary local files or possibly remote files via a modified includeModule and siteModInfo variable.
by rgod
CVE-2006-1793 EXPLOITDB php VERIFIED
runCMS <1.2 - Path Traversal
Directory traversal vulnerability in runCMS 1.2 and earlier allows remote attackers to read arbitrary files via the bbPath[path] parameter to (1) class.forumposts.php and (2) forumpollrenderer.php. NOTE: this issue is closely related to CVE-2006-0659.
by rgod
CVE-2006-0942 EXPLOITDB php VERIFIED
Pwsphp < 1.2.3 - SQL Injection
SQL injection vulnerability in profil.php in PwsPHP 1.2.3, and possibly earlier versions, allows remote attackers to execute arbitrary SQL commands via the aff_news_form parameter, a different vulnerability than CVE-2005-1509.
by papipsycho
CVE-2006-0658 EXPLOITDB php VERIFIED
FCKeditor <2.2 - RCE
Incomplete blacklist vulnerability in connector.php in FCKeditor 2.0 and 2.2, as used in products such as RunCMS, allows remote attackers to upload and execute arbitrary script files by giving the files specific extensions that are not listed in the Config[DeniedExtensions][File], such as .php.txt.
by rgod
CVE-2006-0626 EXPLOITDB php VERIFIED
Spip - SQL Injection
SQL injection vulnerability in spip_acces_doc.php3 in SPIP 1.8.2g and earlier allows remote attackers to execute arbitrary SQL commands via the file parameter.
by rgod
CVE-2006-0644 EXPLOITDB php VERIFIED
Cpg-nuke Dragonfly Cms - Path Traversal
Multiple directory traversal vulnerabilities in install.php in CPG-Nuke Dragonfly CMS (aka CPG Dragonfly CMS) 9.0.6.1 allow remote attackers to include and execute arbitrary local files via directory traversal sequences and a NUL (%00) character in (1) the newlang parameter and (2) the installlang parameter in a cookie, as demonstrated by using error.php to insert malicious code into a log file, or uploading a malicious .png file, which is then included using install.php.
by rgod
CVE-2006-0583 EXPLOITDB php VERIFIED
Clever Copy - SQL Injection
SQL injection vulnerability in mailarticle.php in Clever Copy 3.0 and earlier allows remote attackers to execute arbitrary SQL commands via the ID parameter.
by rgod
CVE-2006-0565 EXPLOITDB php VERIFIED
Gerrit VAN Aaken Loudblog < 0.4 - Code Injection
PHP remote file include vulnerability in inc/backend_settings.php in Loudblog 0.4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the $GLOBALS[path] parameter.
by rgod
CVE-2006-0097 EXPLOITDB php VERIFIED
Php - Memory Corruption
Stack-based buffer overflow in the create_named_pipe function in libmysql.c in PHP 4.3.10 and 4.4.x before 4.4.3 for Windows allows attackers to execute arbitrary code via a long (1) arg_host or (2) arg_unix_socket argument, as demonstrated by a long named pipe variable in the host argument to the mysql_connect function.
by mercenary
CVE-2005-4593 EXPLOITDB php VERIFIED
phpDocumentor <1.3.0 rc4 - RCE
PHP remote file inclusion vulnerability in phpDocumentor 1.3.0 rc4 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary code via a URL in the (1) FORUM[LIB] parameter in Documentation/tests/bug-559668.php and (2) the root_dir parameter in docbuilder/file_dialog.php.
by rgod
CVE-2005-4554 EXPLOITDB php VERIFIED
DEV web management system <1.5 - SQL Injection
Multiple SQL injection vulnerabilities in DEV web management system 1.5 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) cat parameter in an openforum action (openforum.php) in index.php, (2) cat parameter in getfile.php, and (3) target parameter in download_now.php.
by rgod
CVE-2005-4468 EXPLOITDB php VERIFIED
PHPGedView <3.3.7 - RCE
PHP remote file include vulnerability in help_text_vars.php in PHPGedView 3.3.7 and earlier allows remote attackers to execute arbitrary code via a URL in the PGV_BASE_DIRECTORY parameter.
by rgod
CVE-2005-4318 EXPLOITDB php VERIFIED
Limbo CMS <1.0.4.2 - SQL Injection
SQL injection vulnerability in index.php in Limbo CMS 1.0.4.2 and earlier, with register_globals off, allows remote attackers to execute arbitrary SQL commands via the _SERVER[REMOTE_ADDR] parameter, which modifies the underlying $_SERVER variable.
by rgod
CVE-2005-4213 EXPLOITDB php VERIFIED
Coinsoft Technologies Phpcoin - SQL Injection
SQL injection vulnerability in mod.php in phpCOIN 1.2.2 allows remote attackers to execute arbitrary SQL commands via the phpcoinsessid cookie.
by rgod
CVE-2005-4449 EXPLOITDB php VERIFIED
FlatNuke 2.5.6 - Code Injection
verify.php in FlatNuke 2.5.6 allows remote authenticated administrators to modify arbitrary PHP files by setting the file parameter to an arbitrary file and injecting the code into the body parameter. NOTE: if a FlatNuke administrator is normally assumed to be able to modify arbitrary content, then this issue does not cross privilege boundaries and would not be a vulnerability.
by rgod
CVE-2005-4140 EXPLOITDB php VERIFIED
Website Baker - SQL Injection
SQL injection vulnerability in admin/login/index.php in Website Baker 2.6.0 allows remote attackers to execute arbitrary SQL commands via the username parameter, as used by the user field.
by rgod
CVE-2005-4087 EXPLOITDB php VERIFIED
SugarCRM <4.0 - RCE
PHP remote file include vulnerability in acceptDecline.php in Sugar Suite Open Source Customer Relationship Management (SugarCRM) 4.0 beta and earlier allows remote attackers to execute arbitrary PHP code via a URL in the beanFiles array parameter.
by rgod
By Source
All 1,269 Exploitdb 50,121 Writeup 46,717 Nomisec 21,135 Metasploit 3,189 Github 2,247 Vulncheck_xdb 900 Inthewild 518 Gitlab 439 Gitee 415 Patchapalooza 312
By Language
text 31,341 ruby 5,920 python 5,737 c 3,550 perl 2,854 html 2,054 php 1,334 bash 459 java 359 javascript 260 c++ 247 shell 68 go 41 postscript 25 xml 24