Text Exploits
31,386 exploits tracked across all sources.
zespia/pixiv_custom < 2.1.6 - Cross-Site Scripting via s Parameter
Cross-site scripting (XSS) vulnerability in the Pixiv Custom theme before 2.1.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter.
by SiteWatch
EvoLve < 1.2.6 - Cross-Site Scripting via s Parameter
Cross-site scripting (XSS) vulnerability in the EvoLve theme before 1.2.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter.
by SiteWatch
WordPress Elegant Grunge <1.0.4 - XSS
Cross-site scripting (XSS) vulnerability in the Elegant Grunge theme before 1.0.4 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter.
by SiteWatch
Atahualpa < 3.6.8 - Cross-Site Scripting via s Parameter
Cross-site scripting (XSS) vulnerability in the Atahualpa theme before 3.6.8 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter.
by SiteWatch
Joomla! < 1.7.0 - Multiple Cross-Site Scripting Vulnerabilities
by Aung Khant
Bitweaver 2.8.1 - Multiple Cross-Site Scripting Vulnerabilities
by Stefan Schurtz
Traq 2.2 - Multiple SQL Injections / Cross-Site Scripting
by High-Tech Bridge SA
timelive time and expense tracking 4.1.1 - Multiple Vulnerabilities
by Nathaniel Carew
ServersCheck Monitoring Software 8.8.x - Multiple Vulnerabilities
by Vulnerability-Lab
ARC Informatique PcVue <10.0 - Buffer Overflow
Buffer overflow in an unspecified ActiveX control in aipgctl.ocx in ARC Informatique PcVue 6.0 through 10.0, FrontVue, and PlantVue allows remote attackers to cause a denial of service via a crafted HTML document.
by Luigi Auriemma
WordPress Plugin Mingle Forum 1.0.31 - SQL Injection
by Miroslav Stampar
Vanira CMS - 'vtpidshow' SQL Injection
by kurdish hackers team
redmind Online-Shop / E-Commerce-System - SQL Injection
by Indonesian BlackCoder
Newgen OmniDocs - Unauthenticated Permission Bypass via FolderRights or UserIndex Parameter
Newgen OmniDocs allows remote attackers to bypass intended access restrictions via (1) a modified FolderRights parameter to doccab/doclist.jsp, which leads to arbitrary permission changes; or (2) a modified UserIndex parameter to doccab/userprofile/editprofile.jsp, which selects the settings page of an arbitrary user.
by Sohil Garg
Adobe ColdFusion 7 - Multiple Cross-Site Scripting Vulnerabilities
by MustLive
WordPress Plugin BuddyPress 1.2.10 / WordPress Theme DEV Blogs Mu 1.2.6 (WordPress 3.1.4) - Regular Subscriber HTML Injection
by knull
S9Y Serendipity Freetag-plugin 3.23 - 'serendipity[tagview]' Cross-Site Scripting
by Stefan Schurtz
Joomla! Component Biitatemplateshop - 'groups' SQL Injection
by BHG Security Group
By Source