Text Exploits

EIP-2026-113303 EXPLOITDB text VERIFIED

Webify (Multiple Products) - Multiple HTML Injection / Local File Inclusions

by snup

View

EIP-2026-112087 EXPLOITDB text VERIFIED

Simple Document Management System 1.1.5 - Multiple SQL Injections

by JosS

View

EIP-2026-110683 EXPLOITDB text VERIFIED

PHP Decoda 3.3.1 - Local File Inclusion

by Number 7

View

EIP-2026-109987 EXPLOITDB text VERIFIED

Nuked Klan SP CMS 4.5 - SQL Injection

by Vulnerability-Lab

View

EIP-2026-109909 EXPLOITDB text VERIFIED

News Script PHP 1.2 - Multiple Vulnerabilities

by Vulnerability-Lab

View

EIP-2026-107958 EXPLOITDB text VERIFIED

iScripts EasyCreate 2.0 - Multiple Vulnerabilities

by Vulnerability-Lab

View

EIP-2026-101786 EXPLOITDB text

Huawei HG866 - Authentication Bypass

by hkm

View

EIP-2026-113944 EXPLOITDB text VERIFIED

WordPress Plugin ORGanizer - Multiple Vulnerabilities

by MustLive

View

EIP-2026-108690 EXPLOITDB text VERIFIED

Joomla! Component JCal Pro Calendar - SQL Injection

by Taurus Omar

View

EIP-2026-104951 EXPLOITDB text VERIFIED

ADICO - 'index.php' Script SQL Injection

by Ibrahim El-Sayed

View

CVE-2012-1661 EXPLOITDB text

ESRI ArcMap < 10.0.2.3200 - Arbitrary VBA Code Execution via Crafted Map File

ESRI ArcMap 9 and ArcGIS 10.0.2.3200 and earlier does not properly prompt users before executing embedded VBA macros, which allows user-assisted remote attackers to execute arbitrary VBA code via a crafted map (.mxd) file.

by Boston Cyber Defense

View

EIP-2026-112516 EXPLOITDB text VERIFIED

Swoopo Gold Shop CMS 8.4.56 - Multiple Web Vulnerabilities

by Vulnerability-Lab

View

EIP-2026-112407 EXPLOITDB text

Squirrelcart Cart Shop 3.3.4 - Multiple Web Vulnerabilities

by Vulnerability-Lab

View

EIP-2026-112094 EXPLOITDB text VERIFIED

Simple Forum PHP - Multiple SQL Injections

by Vulnerability Research Laboratory

View

EIP-2026-109865 EXPLOITDB text VERIFIED

NetArt Media Jobs Portal - SQL Injection

by Ibrahim El-Sayed

View

CVE-2012-4258 EXPLOITDB text VERIFIED

MYRE Real Estate Software 2012 Q2 - SQL Injection via link_idd or userid Parameter

Multiple SQL injection vulnerabilities in MYRE Real Estate Software (2012 Q2) allow remote attackers to execute arbitrary SQL commands via the (1) link_idd parameter to 1_mobile/listings.php or (2) userid parameter to 1_mobile/agentprofile.php.

by Vulnerability-Lab

View

EIP-2026-105771 EXPLOITDB text VERIFIED

Cells Blog CMS 1.1 - Multiple Web Vulnerabilities

by Vulnerability-Lab

View

EIP-2026-102426 EXPLOITDB text VERIFIED

Squiz CMS - Multiple Cross-Site Scripting / XML External Entity Injection Vulnerabilities

by Nadeem Salim

View

CVE-2012-1038 EXPLOITDB text VERIFIED

Juniper Networks MSS <7.6.3-7.7.1-7.5.3-7.4-7.3 - XSS

Cross-site scripting (XSS) vulnerability in the WebAAA login functionality (wba_login.html) in Juniper Networks Mobility System Software (MSS) 7.6.x before 7.6.3, 7.7.x before 7.7.1, 7.5.x before 7.5.3, and other unspecified versions before 7.4 and 7.3 allows remote attackers to inject arbitrary web script or HTML via a crafted parameter name.

by Craig Lambert

View

EIP-2026-119307 EXPLOITDB text VERIFIED

XAMPP for Windows 1.7.7 - Multiple Cross-Site Scripting / SQL Injections

by Sangteamtham

View

EIP-2026-115814 EXPLOITDB text VERIFIED

Microsoft Windows OpenType Font - File Format Denial of Service

by Cr4sh

View

CVE-2012-6649 EXPLOITDB CRITICAL text VERIFIED

WordPress WP GPX Maps Plugin 1.1.21 - Remote Code Execution via Unrestricted File Upload

WordPress WP GPX Maps Plugin 1.1.21 allows remote attackers to execute arbitrary PHP code via improper file upload.

by Adrien Thierry

CVSS 9.8

View

EIP-2026-114155 EXPLOITDB text VERIFIED

WordPress Plugin User Meta 1.1.1 - Arbitrary File Upload

by Adrien Thierry

View

EIP-2026-114121 EXPLOITDB text VERIFIED

WordPress Plugin Top Quark Architecture 2.10 - Arbitrary File Upload

by Adrien Thierry

View

EIP-2026-114036 EXPLOITDB text VERIFIED

WordPress Plugin SfBrowser 1.4.5 - Arbitrary File Upload

by Adrien Thierry

View