Text Exploits
31,386 exploits tracked across all sources.
Readymade Video Sharing Script 3.2 - SQL Injection via Report Videos Array Parameter
Readymade Video Sharing Script 3.2 has SQL Injection via the single-video-detail.php report_videos array parameter.
by Ihsan Sencan
CVSS 9.8
Readymade PHP Classified Script 3.3 - SQL Injection via Categories Subctid or Mctid Parameter
Readymade PHP Classified Script 3.3 has SQL Injection via the /categories subctid or mctid parameter.
by Ihsan Sencan
CVSS 9.8
Professional Service Script 1.0 - SQL Injection via City Parameter
Professional Service Script 1.0 has SQL Injection via the service-list city parameter.
by Ihsan Sencan
CVSS 9.8
PHP Multivendor Ecommerce 1.0 - SQL Injection via single_detail.php or category.php
PHP Multivendor Ecommerce 1.0 has SQL Injection via the single_detail.php sid parameter, or the category.php searchcat or chid1 parameter.
by Ihsan Sencan
CVSS 9.8
Online Exam Test Application Script 1.6 - SQL Injection via exams.php sort parameter
Online Exam Test Application Script 1.6 has SQL Injection via the exams.php sort parameter.
by Ihsan Sencan
CVSS 9.8
Muslim Matrimonial Script 3.02 - SQL Injection via success-story.php succid Parameter
Muslim Matrimonial Script 3.02 has SQL Injection via the success-story.php succid parameter.
by Ihsan Sencan
CVSS 9.8
Multivendor Penny Auction Clone Script 1.0 - SQL Injection via PATH_INFO to Detail URI
Multivendor Penny Auction Clone Script 1.0 has SQL Injection via the PATH_INFO to the /detail URI.
by Ihsan Sencan
CVSS 9.8
Multireligion Responsive Matrimonial 4.7.2 - SQL Injection via success-story.php succid Parameter
Multireligion Responsive Matrimonial 4.7.2 has SQL Injection via the success-story.php succid parameter.
by Ihsan Sencan
CVSS 9.8
Multiplex Movie Theater Booking Script 3.1.5 - SQL Injection via moid or eid Parameter
Multiplex Movie Theater Booking Script 3.1.5 has SQL Injection via the trailer-detail.php moid parameter, show-time.php moid parameter, or event-detail.php eid parameter.
by Ihsan Sencan
CVSS 9.8
MLM Forex Market Plan Script 2.0.4 - SQL Injection via news_detail.php newid or event_detail.php eventid Parameter
MLM Forex Market Plan Script 2.0.4 has SQL Injection via the news_detail.php newid parameter or the event_detail.php eventid parameter.
by Ihsan Sencan
CVSS 9.8
MLM Forced Matrix 2.0.9 - SQL Injection via News Detail newid Parameter
MLM Forced Matrix 2.0.9 has SQL Injection via the news-detail.php newid parameter.
by Ihsan Sencan
CVSS 9.8
Lawyer Search Script 1.1 - SQL Injection via City Parameter
Lawyer Search Script 1.1 has SQL Injection via the /lawyer-list city parameter.
by Ihsan Sencan
CVSS 9.8
Laundry Booking Script 1.0 - SQL Injection via City Parameter
Laundry Booking Script 1.0 has SQL Injection via the /list city parameter.
by Ihsan Sencan
CVSS 9.8
Kickstarter Clone Script 2.0 - SQL Injection via investcalc.php projid Parameter
Kickstarter Clone Script 2.0 has SQL Injection via the investcalc.php projid parameter.
by Ihsan Sencan
CVSS 9.8
Hot Scripts Clone 3.1 - SQL Injection via Categories Subctid or Mctid Parameter
Hot Scripts Clone 3.1 has SQL Injection via the /categories subctid or mctid parameter.
by Ihsan Sencan
CVSS 9.8
Groupon Clone Script 3.01 - SQL Injection via city_ajax.php state_id Parameter
Groupon Clone Script 3.01 has SQL Injection via the city_ajax.php state_id parameter.
by Ihsan Sencan
CVSS 9.8
Freelance Website Script 2.0.6 - SQL Injection via jobdetails.php pr_id or searchbycat_list.php catid Parameter
Freelance Website Script 2.0.6 has SQL Injection via the jobdetails.php pr_id parameter or the searchbycat_list.php catid parameter.
by Ihsan Sencan
CVSS 9.8
Foodspotting Clone Script 1.0 - SQL Injection via Quicksearch q Parameter
Foodspotting Clone Script 1.0 has SQL Injection via the quicksearch.php q parameter.
by Ihsan Sencan
CVSS 9.8
Food Order Script 1.0 - SQL Injection via City Parameter
Food Order Script 1.0 has SQL Injection via the /list city parameter.
by Ihsan Sencan
CVSS 9.8
Facebook Clone Script 1.0 - SQL Injection via Friend-Profile ID Parameter
Facebook Clone Script 1.0 has SQL Injection via the friend-profile.php id parameter.
by Ihsan Sencan
CVSS 8.8
Entrepreneur Bus Booking Script 3.0.4 - SQL Injection via Booker Details Sourcebus Parameter
Entrepreneur Bus Booking Script 3.0.4 has SQL Injection via the booker_details.php sourcebus parameter.
by Ihsan Sencan
CVSS 9.8
Car Rental Script 2.0.4 - SQL Injection via countrycode1.php val Parameter
Car Rental Script 2.0.4 has SQL Injection via the countrycode1.php val parameter.
by Ihsan Sencan
CVSS 9.8
Advanced World Database 2.0.5 - SQL Injection via city.php or state.php Parameter
Advanced World Database 2.0.5 has SQL Injection via the city.php country or state parameter, or the state.php country parameter.
by Ihsan Sencan
CVSS 9.8
Advanced Real Estate Script 4.0.7 - SQL Injection via Search Parameters
Advanced Real Estate Script 4.0.7 has SQL Injection via the search-results.php Projectmain, proj_type, searchtext, sell_price, or maxprice parameter.
by Ihsan Sencan
CVSS 9.8
Safari Webkit Proxy Object Type Confusion
An issue was discovered in certain Apple products. iOS before 11.2 is affected. tvOS before 11.2 is affected. watchOS before 4.2 is affected. The issue involves the "IOSurface" component. It allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
by Google Security Research
CVSS 7.8
By Source