Text Exploits

31,364 exploits tracked across all sources.

Sort: Activity Stars

CVE-2017-17873 EXPLOITDB CRITICAL text VERIFIED

Vanguard Marketplace Digital Products Php - SQL Injection

Vanguard Marketplace Digital Products PHP 1.4 has SQL Injection via the PATH_INFO to the /p URI.

by Ihsan Sencan

CVSS 9.8

View

CVE-2017-17874 EXPLOITDB HIGH text

Vanguard Marketplace Digital Products Php - Unrestricted File Upload

Vanguard Marketplace Digital Products PHP 1.4 allows arbitrary file upload via an "Add a new product" or "Add a product preview" action, which can make a .php file accessible under a uploads/ URI.

by Ihsan Sencan

CVSS 8.8

View

CVE-2017-17634 EXPLOITDB CRITICAL text VERIFIED

Single Theater Booking Script - SQL Injection

Single Theater Booking Script 3.2.1 has SQL Injection via the findcity.php q parameter.

by Ihsan Sencan

CVSS 9.8

View

CVE-2017-17629 EXPLOITDB CRITICAL text VERIFIED

Secure E-commerce Script - SQL Injection

Secure E-commerce Script 2.0.1 has SQL Injection via the category.php searchmain or searchcat parameter, or the single_detail.php sid parameter.

by Ihsan Sencan

CVSS 9.8

View

CVE-2017-17641 EXPLOITDB CRITICAL text VERIFIED

Resume Clone Script - SQL Injection

Resume Clone Script 2.0.5 has SQL Injection via the preview.php id parameter.

by Ihsan Sencan

CVSS 9.8

View

CVE-2017-17628 EXPLOITDB CRITICAL text VERIFIED

Responsive Realestate Script - SQL Injection

Responsive Realestate Script 3.2 has SQL Injection via the property-list tbud parameter.

by Ihsan Sencan

CVSS 9.8

View

CVE-2017-17632 EXPLOITDB CRITICAL text VERIFIED

Responsive Events And Movie Ticket Booking Script - SQL Injection

Responsive Events And Movie Ticket Booking Script 3.2.1 has SQL Injection via the findcity.php q parameter.

by Ihsan Sencan

CVSS 9.8

View

CVE-2017-17627 EXPLOITDB CRITICAL text VERIFIED

Readymade Video Sharing Script - SQL Injection

Readymade Video Sharing Script 3.2 has SQL Injection via the single-video-detail.php report_videos array parameter.

by Ihsan Sencan

CVSS 9.8

View

CVE-2017-17626 EXPLOITDB CRITICAL text VERIFIED

Readymade Php Classified Script - SQL Injection

Readymade PHP Classified Script 3.3 has SQL Injection via the /categories subctid or mctid parameter.

by Ihsan Sencan

CVSS 9.8

View

CVE-2017-17625 EXPLOITDB CRITICAL text VERIFIED

ON Demand Marketplace Script - SQL Injection

Professional Service Script 1.0 has SQL Injection via the service-list city parameter.

by Ihsan Sencan

CVSS 9.8

View

CVE-2017-17624 EXPLOITDB CRITICAL text VERIFIED

Php Multivendor Ecommerce - SQL Injection

PHP Multivendor Ecommerce 1.0 has SQL Injection via the single_detail.php sid parameter, or the category.php searchcat or chid1 parameter.

by Ihsan Sencan

CVSS 9.8

View

CVE-2017-17622 EXPLOITDB CRITICAL text VERIFIED

Online Exam Test Application Script - SQL Injection

Online Exam Test Application Script 1.6 has SQL Injection via the exams.php sort parameter.

by Ihsan Sencan

CVSS 9.8

View

CVE-2017-17639 EXPLOITDB CRITICAL text VERIFIED

Muslim Matrimonial Script - SQL Injection

Muslim Matrimonial Script 3.02 has SQL Injection via the success-story.php succid parameter.

by Ihsan Sencan

CVSS 9.8

View

CVE-2017-17621 EXPLOITDB CRITICAL text VERIFIED

Multivendor Penny Auction Clone Script - SQL Injection

Multivendor Penny Auction Clone Script 1.0 has SQL Injection via the PATH_INFO to the /detail URI.

by Ihsan Sencan

CVSS 9.8

View

CVE-2017-17631 EXPLOITDB CRITICAL text VERIFIED

Multireligion Responsive Matrimonial - SQL Injection

Multireligion Responsive Matrimonial 4.7.2 has SQL Injection via the success-story.php succid parameter.

by Ihsan Sencan

CVSS 9.8

View

CVE-2017-17633 EXPLOITDB CRITICAL text VERIFIED

Multiplex Movie Theater Booking Script - SQL Injection

Multiplex Movie Theater Booking Script 3.1.5 has SQL Injection via the trailer-detail.php moid parameter, show-time.php moid parameter, or event-detail.php eid parameter.

by Ihsan Sencan

CVSS 9.8

View

CVE-2017-17635 EXPLOITDB CRITICAL text

Mlm Forex Market Plan Script - SQL Injection

MLM Forex Market Plan Script 2.0.4 has SQL Injection via the news_detail.php newid parameter or the event_detail.php eventid parameter.

by Ihsan Sencan

CVSS 9.8

View

CVE-2017-17636 EXPLOITDB CRITICAL text VERIFIED

Mlm Forced Matrix - SQL Injection

MLM Forced Matrix 2.0.9 has SQL Injection via the news-detail.php newid parameter.

by Ihsan Sencan

CVSS 9.8

View

CVE-2017-17620 EXPLOITDB CRITICAL text VERIFIED

Lawyer Search Script - SQL Injection

Lawyer Search Script 1.1 has SQL Injection via the /lawyer-list city parameter.

by Ihsan Sencan

CVSS 9.8

View

CVE-2017-17619 EXPLOITDB CRITICAL text VERIFIED

Laundry Booking Script - SQL Injection

Laundry Booking Script 1.0 has SQL Injection via the /list city parameter.

by Ihsan Sencan

CVSS 9.8

View

CVE-2017-17618 EXPLOITDB CRITICAL text VERIFIED

Kickstarter Clone Script - SQL Injection

Kickstarter Clone Script 2.0 has SQL Injection via the investcalc.php projid parameter.

by Ihsan Sencan

CVSS 9.8

View

CVE-2017-17612 EXPLOITDB CRITICAL text VERIFIED

Hot Scripts Clone - SQL Injection

Hot Scripts Clone 3.1 has SQL Injection via the /categories subctid or mctid parameter.

by Ihsan Sencan

CVSS 9.8

View

CVE-2017-17638 EXPLOITDB CRITICAL text VERIFIED

Groupon Clone Script - SQL Injection

Groupon Clone Script 3.01 has SQL Injection via the city_ajax.php state_id parameter.

by Ihsan Sencan

CVSS 9.8

View

CVE-2017-17613 EXPLOITDB CRITICAL text VERIFIED

Freelance Website Script - SQL Injection

Freelance Website Script 2.0.6 has SQL Injection via the jobdetails.php pr_id parameter or the searchbycat_list.php catid parameter.

by Ihsan Sencan

CVSS 9.8

View

CVE-2017-17617 EXPLOITDB CRITICAL text VERIFIED

Foodspotting Clone Script - SQL Injection

Foodspotting Clone Script 1.0 has SQL Injection via the quicksearch.php q parameter.

by Ihsan Sencan

CVSS 9.8

View

By Source

All 31,364

By Language

text 31,364