Exploitdb Exploits
31,344 exploits tracked across all sources.
Micronetsoft Rental Property Mgmt <1.0 - SQL Injection
SQL injection vulnerability in detail.asp in Micronetsoft Rental Property Management Website 1.0 allows remote attackers to execute arbitrary SQL commands via the ad_ID parameter.
by L0rd CrusAd3r
DMXReady Members Area Manager - Persistent Cross-Site Scripting
by L0rd CrusAd3r
chillyCMS 1.1.3 - SQL Injection
SQL injection vulnerability in core/showsite.php in chillyCMS 1.1.3 allows remote attackers to execute arbitrary SQL commands via the name parameter. NOTE: some of these details are obtained from third party information.
by AmnPardaz
Softbiz Article Directory Script - SQL Injection
SQL injection vulnerability in article_details.php in Softbiz Article Directory Script allows remote attackers to execute arbitrary SQL commands via the sbiz_id parameter.
by h4ck3r
iJoomla Magazine <3.0.1 - RCE
PHP remote file inclusion vulnerability in iJoomla Magazine (com_magazine) component 3.0.1 for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the config parameter to magazine.functions.php.
by LoSt.HaCkEr
Joomla! com_clantools 1.2.3 - SQL Injection
Multiple SQL injection vulnerabilities in the Clantools (com_clantools) component 1.2.3 for Joomla! allow remote attackers to execute arbitrary SQL commands via the (1) squad or (2) showgame parameter to index.php.
by Solidmedia
Joomla! com_clantools 1.2.3 - SQL Injection
Multiple SQL injection vulnerabilities in the Clantools (com_clantools) component 1.2.3 for Joomla! allow remote attackers to execute arbitrary SQL commands via the (1) squad or (2) showgame parameter to index.php.
by Solidmedia
chillyCMS 1.1.3 - XSS
Cross-site scripting (XSS) vulnerability in core/showsite.php in chillyCMS 1.1.3 allows remote attackers to inject arbitrary web script or HTML via the name parameter (aka the username field). NOTE: some of these details are obtained from third party information.
by AmnPardaz
DMXReady Polling Booth Manager - SQL Injection
SQL injection vulnerability in inc_pollingboothmanager.asp in DMXReady Polling Booth Manager allows remote attackers to execute arbitrary SQL commands via the QuestionID parameter in a results action.
by L0rd CrusAd3r
PHP Classifieds Ads - SQL Injection
SQL injection vulnerability in classi/detail.php in PHP Classifieds Ads allows remote attackers to execute arbitrary SQL commands via the sid parameter.
by h4ck3r
PHP Classifieds 7.3 - RCE
PHP remote file inclusion vulnerability in tools/phpmailer/class.phpmailer.php in PHP Classifieds 7.3 allows remote attackers to execute arbitrary PHP code via a URL in the lang_path parameter.
by alsa7r
FFDshow - Overflow (SEH) Exception Leading to Null Pointer on Read
by Matthew Bergin
Pligg CMS 1.0.4 - SQL Injection / Cross-Site Scripting
by Bogdan Calin
NuSOAP 0.9.5 - XSS
Cross-site scripting (XSS) vulnerability in NuSOAP 0.9.5, as used in MantisBT and other products, allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to an arbitrary PHP script that uses NuSOAP classes.
by Bogdan Calin
TBDev 2.0 - Remote File Inclusion / SQL Injection
by Inj3ct0r
OneCMS 2.6.1 - XSS
Cross-site scripting (XSS) vulnerability in index.php in OneCMS 2.6.1 allows remote attackers to inject arbitrary web script or HTML via the view parameter.
by anT!-Tr0J4n
CMS WebManager-Pro <8.1 - SQL Injection
SQL injection vulnerability in c.php in CMS WebManager-Pro before 8.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.
by MustLive
By Source