Exploitdb Exploits
31,344 exploits tracked across all sources.
Habari 0.6.5 - Multiple Cross-Site Scripting Vulnerabilities
by High-Tech Bridge SA
FreeNAS 0.7.2.5543 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
by db.pub.mail
Mitel Audio and Web Conferencing (AWC) - Arbitrary Shell Command Injection
by Jan Fry
Mhonarc - Resource Management Error
MHonArc 2.6.16 allows remote attackers to cause a denial of service (CPU consumption) via start tags that are placed within other start tags, as demonstrated by a <bo<bo<bo<bo<body>dy>dy>dy>dy> sequence, a different vulnerability than CVE-2010-4524.
by anonymous
Social Share - 'postid' SQL Injection
by Aliaksandr Hartsuyeu
PHP Web Scripts Ad Manager Pro 3.0 - SQL Injection
SQL injection vulnerability in website-page.php in PHP Web Scripts Ad Manager Pro 3.0 allows remote attackers to execute arbitrary SQL commands via the pageId parameter.
by R4dc0re
Webscripti Mafya Oyun Scrpti - SQL Injection
SQL injection vulnerability in profil.php in Mafya Oyun Scrpti (aka Mafia Game Script) allows remote attackers to execute arbitrary SQL commands via the id parameter.
by DeadLy DeMon
Kanich Com Jotloader - Path Traversal
Directory traversal vulnerability in the JotLoader (com_jotloader) component 2.2.1 for Joomla! allows remote attackers to read arbitrary files via directory traversal sequences in the section parameter to index.php.
by v3n0m
Inout Webmail Script - Persistent Cross-Site Scripting
by Sid3^effects
Elcom CommunityManager.NET - Authentication Bypass
by Sense of Security
Joomla! Component JE Auto - Local File Inclusion
by Sid3^effects
Iskenderaltuntas Oto Galeri Sistemi - SQL Injection
Multiple SQL injection vulnerabilities in Oto Galeri Sistemi 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) arac parameter to carsdetail.asp and the (2) marka parameter to twohandscars.asp.
by DeadLy DeMon
MH Products Projekt Shop - SQL Injection
Multiple SQL injection vulnerabilities in MH Products Projekt Shop allow remote attackers to execute arbitrary SQL commands via the (1) ts parameter to details.php and possibly the (2) ilceler parameter to index.php.
by DeadLy DeMon
MH Products Pay Pal Shop Digital - SQL Injection
SQL injection vulnerability in view_item.php in MH Products Pay Pal Shop Digital allows remote attackers to execute arbitrary SQL commands via the ItemID parameter.
by DeadLy DeMon
MCFileManager Plugin for TinyMCE 3.2.2.3 - Arbitrary File Upload
by Vladimir Vorontsov
Webscripti Mafya Oyun Scrpti - SQL Injection
SQL injection vulnerability in profil.php in Mafya Oyun Scrpti (aka Mafia Game Script) allows remote attackers to execute arbitrary SQL commands via the id parameter.
by DeadLy DeMon
Mhproducts Ero Auktion - SQL Injection
SQL injection vulnerability in item.php in Ero Auktion 2010 allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2010-0723.
by DeadLy DeMon
MHP DownloadScript <2.2 - SQL Injection
SQL injection vulnerability in admin/login.php in MHP DownloadScript (aka MH Products Download Center) 2.2 allows remote attackers to execute arbitrary SQL commands via the Name parameter. NOTE: some of these details are obtained from third party information.
by DeadLy DeMon
Alt-N WebAdmin 3.3.3 - Remote Source Code Information Disclosure
by wsn1983
ViRobot Desktop 5.5 and Server 3.5 < 2008.8.1.1 - Local Privilege Escalation
by MJ0011
NProtect Anti-Virus 2007 < 2010.5.11.1 - Local Privilege Escalation
by MJ0011
By Source