Text Exploits
31,337 exploits tracked across all sources.
MTP Poll 1.0 - Multiple Cross-Site Scripting Vulnerabilities
by LiquidWorm
MTP Image Gallery 1.0 - 'edit_photos.php?title' Cross-Site Scripting
by LiquidWorm
MTP Guestbook 1.0 - Multiple Cross-Site Scripting Vulnerabilities
by LiquidWorm
JForum 2.1.9 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in jforum.page in JForum 2.1.9 allow remote attackers to inject arbitrary web script or HTML via the (1) action, (2) match_type, (3) sort_by, or (4) start parameters.
by ZeroDayLab
WiFilet 1.2 iPad iPhone - Multiple Vulnerabilities
by Vulnerability-Lab
Smart-flv - XSS
Multiple cross-site scripting (XSS) vulnerabilities in jwplayer.swf in the smart-flv plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) link or (2) playerready parameter.
by Henri Salo
phpMyRecipes - Multiple HTML Injection Vulnerabilities
by PDS
AirDrive HD 1.6 iPad iPhone - Multiple Vulnerabilities
by Vulnerability-Lab
Photodex ProShow Producer - Multiple DLL Loading Arbitrary Code Execution Vulnerabilities
by Julien Ahrens
File Manager - HTML Injection / Local File Inclusion
by Benjamin Kunz Mejri
Alt-N MDaemon WorldClient 13.0.3 - Multiple Vulnerabilities
by QSecure & Demetris Papapetrou
Alt-N MDaemon 12.5.6/13.0.3 - Email Body HTML/JS Injection
by QSecure & Demetris Papapetrou
RTTucson Quotations Database Script - Authentication Bypass
by cr4wl3r
PHPMyRecipes 1.2.2 - 'viewrecipe.php?r_id' SQL Injection
by cr4wl3r
PHPmyGallery 1.5 - Local File Disclosure / Cross-Site Scripting
by TheMirkin
Glfusion < 1.2.2.pl3 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in glFusion before 1.2.2.pl4 allow remote attackers to inject arbitrary web script or HTML via the (1) subject parameter to profiles.php; (2) address1, (3) address2, (4) calendar_type, (5) city, (6) state, (7) title, (8) url, or (9) zipcode parameter to calendar/index.php; (10) title or (11) url parameter to links/index.php; or (12) PATH_INFO to admin/plugins/mediagallery/xppubwiz.php/.
by High-Tech Bridge SA
Zeroclipboard < 1.0.7 - XSS
Cross-site scripting (XSS) vulnerability in ZeroClipboard before 1.1.4 allows remote attackers to inject arbitrary web script or HTML via "the clipText returned from the flash object," a different vulnerability than CVE-2013-1808.
by MustLive
Caseproof Prettylinks < 1.6.2 - XSS
Cross-site scripting (XSS) vulnerability in open-flash-chart.swf in Open Flash Chart (aka Open-Flash Chart), as used in the Pretty Link Lite plugin before 1.6.3 for WordPress, JNews (com_jnews) component 8.0.1 for Joomla!, and CiviCRM 3.1.0 through 4.2.9 and 4.3.0 through 4.3.3, allows remote attackers to inject arbitrary web script or HTML via the get-data parameter.
by hiphop
RTTucson Quotations Database - Multiple Vulnerabilities
by 3spi0n
By Source