Text Exploits

31,386 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-116233 EXPLOITDB text VERIFIED
Serv-U FTP Server 11.1.0.3 - Denial of Service / Security Bypass
by Luigi Auriemma
EIP-2026-109394 EXPLOITDB text
Meditate Web Content Editor 'username_input' - SQL Injection
by Stefan Schurtz
CVE-2011-4918 EXPLOITDB text VERIFIED
Elxis CMS 2009.2-2009.3 Aphrodite < r2684 - Cross-Site Scripting via Task Parameter and PATH_INFO
Multiple cross-site scripting (XSS) vulnerabilities in Elxis CMS 2009.2, 2009.3 and 2009.3 Aphrodite before revision 2684 allow remote attackers to inject arbitrary web script or HTML via the (1) task parameter to elxis/index.php, and (2) PATH_INFO to elxis/administrator/index.php.
by Ewerson Guimaraes
CVE-2011-4918 EXPLOITDB text VERIFIED
Elxis CMS 2009.2-2009.3 Aphrodite < r2684 - Cross-Site Scripting via Task Parameter and PATH_INFO
Multiple cross-site scripting (XSS) vulnerabilities in Elxis CMS 2009.2, 2009.3 and 2009.3 Aphrodite before revision 2684 allow remote attackers to inject arbitrary web script or HTML via the (1) task parameter to elxis/index.php, and (2) PATH_INFO to elxis/administrator/index.php.
by Ewerson Guimaraes
CVE-2011-4722 EXPLOITDB text VERIFIED
Ipswitch TFTP Server 1.0.0.24 - Path Traversal via RRQ Filename Field
Directory traversal vulnerability in the TFTP Server 1.0.0.24 in Ipswitch WhatsUp Gold allows remote attackers to read arbitrary files via a .. (dot dot) in the Filename field of an RRQ operation.
by SecPod Research
CVE-2011-4720 EXPLOITDB text VERIFIED
Hillstone HS TFTP Server 1.3.2 - Denial of Service via Long Filename in RRQ or WRQ Operation
Hillstone HS TFTP Server 1.3.2 allows remote attackers to cause a denial of service (daemon crash) via a long filename in a (1) RRQ or (2) WRQ operation.
by SecPod Research
EIP-2026-114390 EXPLOITDB text VERIFIED
WSN Classifieds 6.2.12/6.2.18 - Multiple Vulnerabilities
by d3v1l
EIP-2026-108405 EXPLOITDB text VERIFIED
Joomla! Component com_jobprofile - SQL Injection
by kaMtiEz
CVE-2011-4800 EXPLOITDB text VERIFIED
Serv-U File Server < 11.1.0.5 - Authenticated Path Traversal via Dot-Dot-Colon-Slash Sequence
Directory traversal vulnerability in Serv-U FTP Server before 11.1.0.5 allows remote authenticated users to read and write arbitrary files, and list and create arbitrary directories, via a "..:/" (dot dot colon forward slash) in the (1) list, (2) put, or (3) get commands.
by kingcope
CVE-2011-4714 EXPLOITDB text
Virtual Vertex Muster < 6.1.2 - Path Traversal via Backslash Dot Dot in URL
Directory traversal vulnerability in Virtual Vertex Muster before 6.20 allows remote attackers to read arbitrary files via a \.. (backslash dot dot) in the URL.
by Nick Freeman
CVE-2011-4540 EXPLOITDB text VERIFIED
AtMail Open 1.04 - Cross-Site Scripting via func Parameter
Multiple cross-site scripting (XSS) vulnerabilities in AtMail Open (aka AtMail Open-Source edition) 1.04 allow remote attackers to inject arbitrary web script or HTML via the func parameter to (1) ldap.php or (2) search.php.
by Dognædis
EIP-2026-100965 EXPLOITDB text
FreeBSD - 'ftpd / ProFTPd' Remote Command Execution
by kingcope
EIP-2026-100347 EXPLOITDB text VERIFIED
Hero 3.69 - 'month' Cross-Site Scripting
by Gjoko Krstic
EIP-2026-113757 EXPLOITDB text VERIFIED
WordPress Plugin flash-album-gallery - 'facebook.php' Cross-Site Scripting
by Am!r
CVE-2011-5180 EXPLOITDB text VERIFIED
ZooEffect plugin 1.01 for WordPress - Cross-Site Scripting via Page Parameter
Cross-site scripting (XSS) vulnerability in wp-1pluginjquery.php in the ZooEffect plugin 1.01 for WordPress allows remote attackers to inject arbitrary web script or HTML via the page parameter. NOTE: some of these details are obtained from third party information. NOTE: this has been disputed by a third party.
by Am!r
CVE-2011-4452 EXPLOITDB text
WikkaWiki 1.3.1 and 1.3.2 - Cross-Site Request Forgery in AdminUsers Component
Cross-site request forgery (CSRF) vulnerability in the AdminUsers component in WikkaWiki 1.3.1 and 1.3.2 allows remote attackers to hijack the authentication of administrators for requests that remove arbitrary user accounts via a delete operation, as demonstrated by an {{image}} action.
by EgiX
CVE-2011-4833 EXPLOITDB text VERIFIED
SugarCRM 6.1-6.1.6 6.2-6.2.3 6.3-6.3.0RC2 6.4-6.4.0beta - SQL Injection via Leads Module Parameters
Multiple SQL injection vulnerabilities in the Leads module in SugarCRM 6.1 before 6.1.7, 6.2 before 6.2.4, 6.3 before 6.3.0RC3, and 6.4 before 6.4.0beta1 allow remote attackers to execute arbitrary SQL commands via the (1) where and (2) order parameters in a get_full_list action to index.php.
by High-Tech Bridge SA
CVE-2011-5258 EXPLOITDB text VERIFIED
OrangeHRM < 2.6.11.2 - Cross-Site Scripting via uniqcode, isAdmin, or PATH_INFO
Multiple cross-site scripting (XSS) vulnerabilities in OrangeHRM before 2.6.11.2 allow remote attackers to inject arbitrary web script or HTML via the (1) uniqcode or (2) isAdmin parameter to index.php; or the (3) PATH_INFO to lib/controllers/centralcontroller.php.
by High-Tech Bridge SA
CVE-2011-5258 EXPLOITDB text VERIFIED
OrangeHRM < 2.6.11.2 - Cross-Site Scripting via uniqcode, isAdmin, or PATH_INFO
Multiple cross-site scripting (XSS) vulnerabilities in OrangeHRM before 2.6.11.2 allow remote attackers to inject arbitrary web script or HTML via the (1) uniqcode or (2) isAdmin parameter to index.php; or the (3) PATH_INFO to lib/controllers/centralcontroller.php.
by High-Tech Bridge SA
CVE-2011-5259 EXPLOITDB text VERIFIED
OrangeHRM < 2.6.11.2 - SQL Injection via CentralController id Parameter
SQL injection vulnerability in lib/controllers/CentralController.php in OrangeHRM before 2.6.11.2 allows remote attackers to execute arbitrary SQL commands via the id parameter.
by High-Tech Bridge SA
CVE-2011-5009 EXPLOITDB text VERIFIED
3S CoDeSys 3.4 SP4 Patch 2 - Denial of Service via Crafted HTTP Request
The CmpWebServer.dll module in the Control service in 3S CoDeSys 3.4 SP4 Patch 2 allows remote attackers to cause a denial of service (NULL pointer dereference) via (1) a crafted Content-Length in an HTTP POST or (2) an invalid HTTP request method.
by Luigi Auriemma
CVE-2011-5009 EXPLOITDB text VERIFIED
3S CoDeSys 3.4 SP4 Patch 2 - Denial of Service via Crafted HTTP Request
The CmpWebServer.dll module in the Control service in 3S CoDeSys 3.4 SP4 Patch 2 allows remote attackers to cause a denial of service (NULL pointer dereference) via (1) a crafted Content-Length in an HTTP POST or (2) an invalid HTTP request method.
by Luigi Auriemma
CVE-2011-4712 EXPLOITDB text VERIFIED
Oxide WebServer - Unauthenticated Path Traversal via Dot Dot Backslash
Directory traversal vulnerability in Oxide WebServer allows remote attackers to read arbitrary files via a ..\ (dot dot backslash) in an HTTP request.
by demonalex
CVE-2011-4714 EXPLOITDB text VERIFIED
Virtual Vertex Muster < 6.1.2 - Path Traversal via Backslash Dot Dot in URL
Directory traversal vulnerability in Virtual Vertex Muster before 6.20 allows remote attackers to read arbitrary files via a \.. (backslash dot dot) in the URL.
by Nick Freeman
CVE-2011-4878 EXPLOITDB text VERIFIED
Siemens WinCC flexible - Directory Traversal via URI
Directory traversal vulnerability in miniweb.exe in the HMI web server in Siemens WinCC flexible 2004, 2005, 2007, and 2008 before SP3; WinCC V11 (aka TIA portal) before SP2 Update 1; the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; and WinCC flexible Runtime allows remote attackers to read arbitrary files via a ..%5c (dot dot backslash) in a URI.
by Luigi Auriemma
By Source
All 31,386 Writeup 62,320 Exploitdb 50,076 Nomisec 22,421 Github 3,644 Metasploit 3,314 Vulncheck_xdb 929 Inthewild 514 Gitlab 479 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,581 ruby 6,005 c 3,628 perl 2,849 html 2,076 php 1,333 bash 462 java 371 c++ 261 javascript 229 shell 132 go 73 postscript 25 typescript 25