Text Exploits
31,386 exploits tracked across all sources.
Progitek Visionner Photos 2.0 - File Format Denial of Service
by antrhacks
Avast! Internet Security <5.0 - DoS
Integer overflow in aswFW.sys 5.0.594.0 in Avast! Internet Security 5.0 Korean Trial allows local users to cause a denial of service (memory corruption and panic) via a crafted IOCTL_ASWFW_COMM_PIDINFO_RESULTS DeviceIoControl request to \\.\aswFW.
by x90c
WordPress Plugin NextGEN Smooth Gallery 0.12 - Blind SQL Injection
by kaMtiEz
Joomla! Component com_jigsaw - 'Controller' Directory Traversal
by FL0RiX
MySQL 5.0.x < 5.0.93 and 5.1.x < 5.1.50 - SQL Injection via Executable Comment Feature
The executable comment feature in MySQL 5.0.x before 5.0.93 and 5.1.x before 5.1.50, when running in certain slave configurations in which the slave is running a newer version than the master, allows remote attackers to execute arbitrary SQL commands via custom comments.
by Libing Song
MySQL < 5.1.48 - Authenticated Denial of Service via ALTER DATABASE Command
MySQL before 5.1.48 allows remote authenticated users with alter database privileges to cause a denial of service (server crash and database loss) via an ALTER DATABASE command with a #mysql50# string followed by a . (dot), .. (dot dot), ../ (dot dot slash) or similar sequence, and an UPGRADE DATA DIRECTORY NAME command, which causes MySQL to move certain directories to the server data directory.
by Shane Bester
Apple iOS <4.0.2-3.2.2 - Privilege Escalation
Integer overflow in IOSurface in Apple iOS before 4.0.2 on the iPhone and iPod touch, and before 3.2.2 on the iPad, allows local users to gain privileges via vectors involving IOSurface properties, as demonstrated by JailbreakMe.
by jailbreakme
EMC Celerra Network Attached Storage - Unauthenticated Arbitrary File Access via NFS Requests
The EMC Celerra Network Attached Storage (NAS) appliance accepts external network traffic to IP addresses intended for an intranet network within the appliance, which allows remote attackers to read, create, or modify arbitrary files in the user data directory via NFS requests.
by Trustwave's SpiderLabs
MyIT CRM - Multiple Cross-Site Scripting Vulnerabilities
by Juan Manuel Garcia
MyIT CRM - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
by Juan Manuel Garcia
Joomla! com_camelcitydb2 2.2 - SQL Injection
SQL injection vulnerability in the CamelcityDB (com_camelcitydb2) component 2.2 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php.
by Amine_92
Intellinet IP Camera MNC-L10 - Authentication Bypass
by Magnefikko
Joomla! Component com_spielothek 1.6.9 - Multiple Blind SQL Injections
by Salvatore Fresta
Sourcefabric Campsite - Multiple Cross-Site Scripting Vulnerabilities
by High-Tech Bridge SA
Joomla! Component com_SimpleShop - SQL Injection
by UnD3rGr0unD W4rri0rZ
Joomla! Component com_pbbooking 1.0.4_3 - Multiple Blind SQL Injections
by Salvatore Fresta
Joomla! Component com_beamospetition - SQL Injection
by Forza-Dz
Zemana AntiLogger 'AntiLog32.sys' 1.5.2.755 - Local Privilege Escalation
by th_decoder
By Source