Exploitdb Exploits

EIP-2026-104802 EXPLOITDB text

1024 CMS 1.1.0 Beta - 'force_download.php' Local File Inclusion

by Sangyun YOO

View

EIP-2026-112181 EXPLOITDB text VERIFIED

Site@School 2.4.10 - '/index.php' Cross-Site Scripting / SQL Injection

by Stefan Schurtz

View

EIP-2026-108916 EXPLOITDB text

Joomla! Plugin NoNumber Framework - Multiple Vulnerabilities

by jdc

View

EIP-2026-101190 EXPLOITDB text VERIFIED

Check Point UTM-1 Edge and Safe 8.2.43 - Multiple Vulnerabilities

by Richard Brain

View

EIP-2026-113585 EXPLOITDB text VERIFIED

WordPress Plugin BackWPUp 2.1.4 - Code Execution

by Sense of Security

View

CVE-2011-4066 EXPLOITDB text

Gnuboard <4.33.02 - SQL Injection

SQL injection vulnerability in bbs/tb.php in Gnuboard 4.33.02 and earlier allows remote attackers to execute arbitrary SQL commands via the PATH_INFO.

by flyh4t

View

EIP-2026-106539 EXPLOITDB text

Dominant Creature BBG/RPG Browser Game - Persistent Cross-Site Scripting

by M.Jock3R

View

EIP-2026-105263 EXPLOITDB text VERIFIED

asgbookPHP 1.9 - 'index.php' Cross-Site Scripting

by indoushka

View

CVE-2012-1239 EXPLOITDB text VERIFIED

Toshibatec E-studio-167 With Network ... - Access Control

The TopAccess web-based management interface on TOSHIBA TEC e-Studio multi-function peripheral (MFP) devices with firmware 30x through 302, 35x through 354, and 4xx through 421 allows remote attackers to bypass authentication and obtain administrative privileges via unspecified vectors.

by Deral Heiland PercX

View

EIP-2026-111845 EXPLOITDB text

Ruubikcms 1.1.0 - '/extra/image.php' Local File Inclusion

by Sangyun YOO

View

EIP-2026-113951 EXPLOITDB text

WordPress Plugin Photo Album Plus 4.1.1 - SQL Injection

by Skraps

View

CVE-2011-4559 EXPLOITDB text VERIFIED

Vtiger Crm < 5.2.1 - SQL Injection

SQL injection vulnerability in the Calendar module in vTiger CRM 5.2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the onlyforuser parameter in an index action to index.php.

by Aung Khant

View

EIP-2026-119056 EXPLOITDB text VERIFIED

PROMOTIC 8.1.3 - Multiple Vulnerabilities

by Luigi Auriemma

View

EIP-2026-114422 EXPLOITDB text VERIFIED

Xenon - 'id' Multiple SQL Injections

by m3rciL3Ss

View

EIP-2026-113641 EXPLOITDB text

WordPress Plugin Contact Form 2.7.5 - SQL Injection

by Skraps

View

CVE-2011-4520 EXPLOITDB text VERIFIED

Microsys Promotic < 8.1.4 - Memory Corruption

Heap-based buffer overflow in an ActiveX component in MICROSYS PROMOTIC before 8.1.5 allows remote attackers to cause a denial of service via a crafted web page.

by Luigi Auriemma

View

CVE-2011-2003 EXPLOITDB text VERIFIED

Microsoft Windows - Buffer Overflow

Buffer overflow in win32k.sys in the kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote attackers to execute arbitrary code via a crafted .fon file, aka "Font Library File Buffer Overrun Vulnerability."

by Byoungyoung Lee

View

EIP-2026-113983 EXPLOITDB text VERIFIED

WordPress Plugin Pretty Link 1.4.56 - Multiple Cross-Site Scripting Vulnerabilities

by High-Tech Bridge SA

View

EIP-2026-103474 EXPLOITDB text VERIFIED

G-WAN 2.10.6 - Buffer Overflow (Denial of Service) (PoC)

by Fredrik Widlund

View

EIP-2026-113781 EXPLOITDB text VERIFIED

WordPress Plugin GD Star Rating 1.9.10 - SQL Injection

by Miroslav Stampar

View

EIP-2026-109724 EXPLOITDB text

MyBB MyStatus 3.1 - SQL Injection

by Mario_Vs

View

EIP-2026-108537 EXPLOITDB text VERIFIED

Joomla! Component com_sgicatalog 1.0 - 'id' SQL Injection

by BHG Security Center

View

EIP-2026-105641 EXPLOITDB text VERIFIED

BugFree 2.1.3 - Multiple Cross-Site Scripting Vulnerabilities

by High-Tech Bridge SA

View

EIP-2026-118704 EXPLOITDB text VERIFIED

JBoss AS 2.0 - Remote Command Execution

by kingcope

View

EIP-2026-114266 EXPLOITDB text

WordPress Plugin WP-SpamFree Spam Plugin - SQL Injection

by cheki

View