Text Exploits

31,386 exploits tracked across all sources.

Sort: Activity Stars
CVE-2010-4843 EXPLOITDB text
PHP Web Scripts Ad Manager Pro 3.0 - SQL Injection
SQL injection vulnerability in website-page.php in PHP Web Scripts Ad Manager Pro 3.0 allows remote attackers to execute arbitrary SQL commands via the pageId parameter.
by R4dc0re
CVE-2010-4619 EXPLOITDB text VERIFIED
Mafya Oyun Scrpti - SQL Injection via profil.php id Parameter
SQL injection vulnerability in profil.php in Mafya Oyun Scrpti (aka Mafia Game Script) allows remote attackers to execute arbitrary SQL commands via the id parameter.
by DeadLy DeMon
CVE-2010-4617 EXPLOITDB text VERIFIED
JotLoader 2.2.1 - Path Traversal via Section Parameter
Directory traversal vulnerability in the JotLoader (com_jotloader) component 2.2.1 for Joomla! allows remote attackers to read arbitrary files via directory traversal sequences in the section parameter to index.php.
by v3n0m
EIP-2026-107867 EXPLOITDB text VERIFIED
Inout Webmail Script - Persistent Cross-Site Scripting
by Sid3^effects
EIP-2026-100305 EXPLOITDB text
Elcom CommunityManager.NET - Authentication Bypass
by Sense of Security
EIP-2026-108695 EXPLOITDB text VERIFIED
Joomla! Component JE Auto - Local File Inclusion
by Sid3^effects
CVE-2010-4615 EXPLOITDB text VERIFIED
Oto Galeri Sistemi 1.0 - SQL Injection via arac or marka Parameter
Multiple SQL injection vulnerabilities in Oto Galeri Sistemi 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) arac parameter to carsdetail.asp and the (2) marka parameter to twohandscars.asp.
by DeadLy DeMon
EIP-2026-111943 EXPLOITDB text VERIFIED
SchuldnerBeratung - SQL Injection
by DeadLy DeMon
CVE-2010-4845 EXPLOITDB text VERIFIED
MH Products Projekt Shop - SQL Injection
Multiple SQL injection vulnerabilities in MH Products Projekt Shop allow remote attackers to execute arbitrary SQL commands via the (1) ts parameter to details.php and possibly the (2) ilceler parameter to index.php.
by DeadLy DeMon
CVE-2010-4846 EXPLOITDB text VERIFIED
MH Products Pay Pal Shop Digital - SQL Injection
SQL injection vulnerability in view_item.php in MH Products Pay Pal Shop Digital allows remote attackers to execute arbitrary SQL commands via the ItemID parameter.
by DeadLy DeMon
EIP-2026-109376 EXPLOITDB text
MCFileManager Plugin for TinyMCE 3.2.2.3 - Arbitrary File Upload
by Vladimir Vorontsov
CVE-2010-4619 EXPLOITDB text VERIFIED
Mafya Oyun Scrpti - SQL Injection via profil.php id Parameter
SQL injection vulnerability in profil.php in Mafya Oyun Scrpti (aka Mafia Game Script) allows remote attackers to execute arbitrary SQL commands via the id parameter.
by DeadLy DeMon
CVE-2010-4614 EXPLOITDB text VERIFIED
Ero Auktion 2010 - SQL Injection via item.php id Parameter
SQL injection vulnerability in item.php in Ero Auktion 2010 allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2010-0723.
by DeadLy DeMon
CVE-2010-4842 EXPLOITDB text VERIFIED
MHP DownloadScript <2.2 - SQL Injection
SQL injection vulnerability in admin/login.php in MHP DownloadScript (aka MH Products Download Center) 2.2 allows remote attackers to execute arbitrary SQL commands via the Name parameter. NOTE: some of these details are obtained from third party information.
by DeadLy DeMon
EIP-2026-118251 EXPLOITDB text VERIFIED
Alt-N WebAdmin 3.3.3 - Remote Source Code Information Disclosure
by wsn1983
EIP-2026-118062 EXPLOITDB text
ViRobot Desktop 5.5 and Server 3.5 < 2008.8.1.1 - Local Privilege Escalation
by MJ0011
EIP-2026-117703 EXPLOITDB text
NProtect Anti-Virus 2007 < 2010.5.11.1 - Local Privilege Escalation
by MJ0011
EIP-2026-117141 EXPLOITDB text
ESTsoft ALYac Anti-Virus 1.5 < 5.0.1.2 - Local Privilege Escalation
by MJ0011
EIP-2026-116746 EXPLOITDB text
AhnLab V3 Internet Security 8.0 < 1.2.0.4 - Local Privilege Escalation
by MJ0011
EIP-2026-112323 EXPLOITDB text VERIFIED
Softbiz PHP Joke Site Software - Multiple SQL Injections
by v3n0m
EIP-2026-112301 EXPLOITDB text VERIFIED
Social Share - Multiple Cross-Site Scripting Vulnerabilities
by Aliaksandr Hartsuyeu
CVE-2010-4275 EXPLOITDB text
Radius Manager 3.8.0 - Authenticated Cross-Site Scripting via Name or Descr Parameter
Multiple cross-site scripting (XSS) vulnerabilities in Radius Manager 3.8.0 allow remote authenticated administrators to inject arbitrary web script or HTML via the (1) name or (2) descr parameter in an (a) update_usergroup or a (b) store_nas action to admin.php.
by Rodrigo Rubira Branco
CVE-2010-4275 EXPLOITDB text VERIFIED
Radius Manager 3.8.0 - Authenticated Cross-Site Scripting via Name or Descr Parameter
Multiple cross-site scripting (XSS) vulnerabilities in Radius Manager 3.8.0 allow remote authenticated administrators to inject arbitrary web script or HTML via the (1) name or (2) descr parameter in an (a) update_usergroup or a (b) store_nas action to admin.php.
by Rodrigo Rubira Branco
CVE-2010-4847 EXPLOITDB text VERIFIED
MH Products MHP Downloadshop - SQL Injection
SQL injection vulnerability in view_item.php in MH Products MHP Downloadshop allows remote attackers to execute arbitrary SQL commands via the ItemID parameter.
by Easy Laster
CVE-2010-4721 EXPLOITDB text VERIFIED
Immo Makler - SQL Injection via News.php ID Parameter
SQL injection vulnerability in news.php in Immo Makler allows remote attackers to execute arbitrary SQL commands via the id parameter.
by Easy Laster
By Source
All 31,386 Writeup 62,526 Exploitdb 50,076 Nomisec 22,480 Github 3,713 Metasploit 3,315 Vulncheck_xdb 930 Inthewild 514 Gitlab 480 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,614 ruby 6,006 c 3,635 perl 2,849 html 2,076 php 1,333 bash 462 java 371 c++ 261 javascript 231 shell 137 go 73 postscript 25 typescript 25