Exploitdb Exploits
31,394 exploits tracked across all sources.
Friends in War Make or Break 1.3 - Authentication Bypass
by d3b4g
Baby Gekko < 1.2.2 - Cross-Site Scripting via Admin ID or Login Credentials
Multiple cross-site scripting (XSS) vulnerabilities in Baby Gekko before 1.2.2f allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter to admin/index.php or the (2) username or (3) password parameter in blocks/loginbox/loginbox.template.php to index.php. NOTE: some of these details are obtained from third party information.
by High-Tech Bridge SA
myre_business_directory - SQL Injection via links.php cat Parameter
SQL injection vulnerability in links.php in MYRE Business Directory allows remote attackers to execute arbitrary SQL commands via the cat parameter.
by d3b4g
MYRE Vacation Rental Software - SQL Injection via Garage or Bathrooms Parameter
Multiple SQL injection vulnerabilities in MYRE Vacation Rental Software allow remote attackers to execute arbitrary SQL commands via the (1) garage1 or (2) bathrooms1 parameter to vacation/1_mobile/search.php, or (3) unspecified input to vacation/widgate/request_more_information.php.
by d3b4g
MYRE Realty Manager - SQL Injection via bathrooms1 Parameter
Multiple SQL injection vulnerabilities in MYRE Realty Manager allow remote attackers to execute arbitrary SQL commands via the bathrooms1 parameter to (1) demo2/search.php or (2) search.php.
by d3b4g
Narcissus backend.php - release Parameter Command Injection
Narcissus is vulnerable to remote code execution via improper input handling in its image configuration workflow. Specifically, the backend.php script fails to sanitize the release parameter before passing it to the configure_image() function. This function invokes PHP’s passthru() with the unsanitized input, allowing attackers to inject arbitrary system commands. Exploitation occurs via a crafted POST request, resulting in command execution under the web server’s context.
by dun
Novell Groupwise Internet Agent - LDAP BIND Request Overflow
by Francis Provencher
MYRE Vacation Rental Software - Cross-Site Scripting via link_idd Parameter
Cross-site scripting (XSS) vulnerability in vacation/1_mobile/alert_members.php in MYRE Vacation Rental Software allows remote attackers to inject arbitrary web script or HTML via the link_idd parameter in a login action.
by d3b4g
MYRE Business Directory - Cross-Site Scripting via Search Look Parameter
Cross-site scripting (XSS) vulnerability in search.php in MYRE Business Directory allows remote attackers to inject arbitrary web script or HTML via the look parameter.
by d3b4g
myre_realty_manager - Cross-Site Scripting via search.php cat_id1 Parameter
Cross-site scripting (XSS) vulnerability in search.php in MYRE Realty Manager allows remote attackers to inject arbitrary web script or HTML via the cat_id1 parameter.
by d3b4g
friendsinwar FAQ Manager - SQL Injection / Authentication Bypass
by d3b4g
dotProject <= 2.0.1 - Remote File Inclusion via baseDir and dPconfig Parameters
Multiple PHP remote file include vulnerabilities in dotProject 2.0.1 and earlier, when register_globals is enabled, allow remote attackers to execute arbitrary commands via the baseDir parameter in (1) db_adodb.php, (2) db_connect.php, (3) session.php, (4) vw_usr_roles.php, (5) calendar.php, (6) date_format.php, and (7) tasks/gantt.php; and the dPconfig[root_dir] parameter in (8) projects/gantt.php, (9) gantt2.php, and (10) vw_files.php. NOTE: the vendor disputes this issue, stating that the product documentation clearly recommends that the system administrator disable register_globals, and that the check.php script warns against this setting. Also, the vendor says that the protection.php/siteurl vector is incorrect because protection.php does not exist in the product
by dun
CVSS 5.6
Zoner Photo Studio 15 b3 - Buffer Overflow (PoC)
by Vulnerability-Lab
libtiff < 3.9.5 - Heap-based Buffer Overflow in OJPEG Decoder
Heap-based buffer overflow in tif_ojpeg.c in the OJPEG decoder in LibTIFF before 3.9.5 allows remote attackers to execute arbitrary code via a crafted TIFF file.
by Francis Provencher
IrfanView - '.RLE' Image Decompression Buffer Overflow
by Francis Provencher
Eventy CMS 1.8 Plus - Multiple Vulnerabilities
by Vulnerability-Lab
Bananadance Wiki b2.2 - Multiple Vulnerabilities
by Vulnerability-Lab
WordPress Plugin PHP Event Calendar - 'cid' SQL Injection
by Ashiyane Digital Security Team
WordPress Plugin Eco-annu - 'eid' SQL Injection
by Ashiyane Digital Security Team
ESRI ArcGIS Server 10.1 - Authenticated SQL Injection via REST Service Query Where Parameter
SQL injection vulnerability in ESRI ArcGIS 10.1 allows remote authenticated users to execute arbitrary SQL commands via the where parameter to a query URI for a REST service.
by anonymous
By Source