Text Exploits
31,364 exploits tracked across all sources.
Website Auction Marketplace - SQL Injection
Website Auction Marketplace 2.0.5 has SQL Injection via the search.php cat_id parameter.
by Ihsan Sencan
CVSS 9.8
Simple Chatting System - Unrestricted File Upload
Simple Chatting System 1.0 allows Arbitrary File Upload via view/my_profile.php, which places files under uploads/.
by Ihsan Sencan
CVSS 7.5
Realestate Crowdfunding Script - SQL Injection
Realestate Crowdfunding Script 2.7.2 has SQL Injection via the single-cause.php pid parameter.
by Ihsan Sencan
CVSS 9.8
Nearbuy Clone Script - SQL Injection
Nearbuy Clone Script 3.2 has SQL Injection via the category_list.php search parameter.
by Ihsan Sencan
CVSS 9.8
Thumbtack Clone - SQL Injection
FS Thumbtack Clone 1.0 has SQL Injection via the browse-category.php cat parameter or the browse-scategory.php sc parameter.
by Ihsan Sencan
CVSS 9.8
Stackoverflow-clone - SQL Injection
FS Stackoverflow Clone 1.0 has SQL Injection via the /question keywords parameter.
by Ihsan Sencan
CVSS 9.8
Shutterstock Clone - SQL Injection
FS Shutterstock Clone 1.0 has SQL Injection via the /Category keywords parameter.
by Ihsan Sencan
CVSS 9.8
Quibids Clone - SQL Injection
FS Quibids Clone 1.0 has SQL Injection via the itechd.php productid parameter.
by Ihsan Sencan
CVSS 9.8
Olx Clone - SQL Injection
FS Olx Clone 1.0 has SQL Injection via the subpage.php scat parameter or the message.php pid parameter.
by Ihsan Sencan
CVSS 9.8
Monster Clone - SQL Injection
FS Monster Clone 1.0 has SQL Injection via the Employer_Details.php id parameter.
by Ihsan Sencan
CVSS 9.8
Makemytrip Clone - SQL Injection
FS Makemytrip Clone 1.0 has SQL Injection via the show-flight-result.php fl_orig or fl_dest parameter.
by Ihsan Sencan
CVSS 9.8
Event Calendar Category Script - SQL Injection
Event Search Script 1.0 has SQL Injection via the /event-list city parameter.
by Ihsan Sencan
CVSS 9.8
Entrepreneur Job Portal Script - SQL Injection
Entrepreneur Job Portal Script 2.0.6 has SQL Injection via the jobsearch_all.php rid1 parameter.
by Ihsan Sencan
CVSS 9.8
Entrepreneur Dating Script - SQL Injection
Entrepreneur Dating Script 2.0.1 has SQL Injection via the search_result.php marital, gender, country, or profileid parameter.
by Ihsan Sencan
CVSS 9.8
E-commerce Mlm Software - SQL Injection
E-commerce MLM Software 1.0 has SQL Injection via the service_detail.php pid parameter, event_detail.php eventid parameter, or news_detail.php newid parameter.
by Ihsan Sencan
CVSS 9.8
Domainsale Php Script - SQL Injection
DomainSale PHP Script 1.0 has SQL Injection via the domain.php id parameter.
by Ihsan Sencan
CVSS 9.8
Doctor Search Script - SQL Injection
Doctor Search Script 1.0 has SQL Injection via the /list city parameter.
by Ihsan Sencan
CVSS 9.8
Consumer Complaints Clone Script - SQL Injection
Consumer Complaints Clone Script 1.0 has SQL Injection via the other-user-profile.php id parameter.
by Ihsan Sencan
CVSS 9.8
Co-work Space Search Script - SQL Injection
Co-work Space Search Script 1.0 has SQL Injection via the /list city parameter.
by Ihsan Sencan
CVSS 9.8
Cms Auditor Website - SQL Injection
CMS Auditor Website 1.0 has SQL Injection via the PATH_INFO to /news-detail.
by Ihsan Sencan
CVSS 9.8
Kindergarten - Elementary School Listing Script - SQL Injection
Child Care Script 1.0 has SQL Injection via the /list city parameter.
by Ihsan Sencan
CVSS 9.8
Chartered Accountant Booking Script - SQL Injection
Chartered Accountant Booking Script 1.0 has SQL Injection via the /service-list city parameter.
by Ihsan Sencan
CVSS 9.8
Cab Booking Script - SQL Injection
Cab Booking Script 1.0 has SQL Injection via the /service-list city parameter.
by Ihsan Sencan
CVSS 9.8
OpenEMR 5.0.0 - OS Command Injection / Cross-Site Scripting
by SEC Consult
OpenEMR 5.0.0 - OS Command Injection / Cross-Site Scripting
by SEC Consult
By Source