Text Exploits

EIP-2026-108312 EXPLOITDB text VERIFIED

Joomla! Component com_community - 'userid' SQL Injection

by Ne0 H4ck3R

View

EIP-2026-107586 EXPLOITDB text VERIFIED

HESK 2.2 - Multiple Cross-Site Scripting Vulnerabilities

by High-Tech Bridge SA

View

EIP-2026-103903 EXPLOITDB text VERIFIED

foomatic-gui python-foomatic 0.7.9.4 - 'pysmb.py' Arbitrary Shell Command Execution

by daveb

View

EIP-2026-100164 EXPLOITDB text VERIFIED

BESNI OKUL PORTAL - 'sayfa.asp' Cross-Site Scripting

by Err0R

View

EIP-2026-100152 EXPLOITDB text VERIFIED

Ataccan E-Ticaret Scripti - 'id' SQL Injection

by Err0R

View

EIP-2026-112186 EXPLOITDB text VERIFIED

SiteGenius - Blind SQL Injection

by AutoRUN & dR.sqL

View

EIP-2026-109726 EXPLOITDB text VERIFIED

MyBB MyTabs Plugin - SQL Injection

by AutoRUN & dR.sqL

View

EIP-2026-109725 EXPLOITDB text VERIFIED

MyBB MyTabs Plugin - 'tab' SQL Injection

by AutoRUN & dR.sqL

View

CVE-2013-0332 EXPLOITDB text

ZoneMinder 1.24.x - Path Traversal via View Request or Action Parameter

Multiple directory traversal vulnerabilities in ZoneMinder 1.24.x before 1.24.4 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) view, (2) request, or (3) action parameter.

by iye

View

EIP-2026-106281 EXPLOITDB text VERIFIED

Curverider Elgg 1.7.9 - Multiple Cross-Site Scripting Vulnerabilities

by Aung Khant

View

EIP-2026-106028 EXPLOITDB text

CMSPro! 2.08 - Cross-Site Request Forgery

by Xadpritox

View

EIP-2026-104080 EXPLOITDB text VERIFIED

Skype 5.3 - 'Mobile Phone' HTML Injection

by noptrix

View

EIP-2026-108812 EXPLOITDB text

Joomla! Component obSuggest - Local File Inclusion

by v3n0m

View

EIP-2026-106451 EXPLOITDB text

Digital Scribe 1.5 - register_form()' Multiple POST Cross-Site Scripting Vulnerabilities

by LiquidWorm

View

EIP-2026-109157 EXPLOITDB text VERIFIED

Link Station Pro - Multiple Vulnerabilities

by $#4d0\/\/[r007k17]

View

CVE-2011-2745 EXPLOITDB text VERIFIED

Chyrp < 2.0 - Authenticated Arbitrary PHP File Upload via swfupload Extension

upload_handler.php in the swfupload extension in Chyrp 2.0 and earlier relies on client-side JavaScript code to restrict the file extensions of uploaded files, which allows remote authenticated users to upload a .php file, and consequently execute arbitrary PHP code, via a write_post action to the default URI under admin/.

by Wireghoul

View

CVE-2011-2744 EXPLOITDB text VERIFIED

Chyrp < 2.1 - Remote File Inclusion via Action Parameter

Directory traversal vulnerability in Chyrp 2.1 and earlier allows remote attackers to include and execute arbitrary local files via a ..%2F (encoded dot dot slash) in the action parameter to the default URI.

by Wireghoul

View

CVE-2011-2780 EXPLOITDB text VERIFIED

Chyrp < 2.0 - Path Traversal via File Parameter in gz.php

Directory traversal vulnerability in includes/lib/gz.php in Chyrp 2.0 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter, a different vulnerability than CVE-2011-2744.

by Wireghoul

View

EIP-2026-102500 EXPLOITDB text

ManageEngine ServiceDesk Plus 8.0 Build 8013 - Multiple Cross-Site Scripting Vulnerabilities

by Narendra Shinde

View

EIP-2026-118941 EXPLOITDB text VERIFIED

MyWebServer 1.0.3 - Arbitrary File Download

by X-h4ck

View

EIP-2026-115060 EXPLOITDB text VERIFIED

Citrix XenApp / XenDesktop XML Service - Heap Corruption

by n.runs AG

View

EIP-2026-115059 EXPLOITDB text VERIFIED

Citrix XenApp / XenDesktop - Stack Buffer Overflow

by n.runs AG

View

CVE-2011-2403 EXPLOITDB text VERIFIED

HP Network Automation 7.2x, 7.5x, 7.6x, 9.0, 9.10 - Authenticated SQL Injection

SQL injection vulnerability in HP Network Automation 7.2x, 7.5x, 7.6x, 9.0, and 9.10 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

by anonymous

View

EIP-2026-100549 EXPLOITDB text VERIFIED

Sitecore CMS 6.4.1 - 'url' Open Redirection

by Tom Neaves

View

EIP-2026-118903 EXPLOITDB text VERIFIED

MinaliC WebServer 2.0 - Remote Source Disclosure

by X-h4ck

View