Exploitdb Exploits
31,344 exploits tracked across all sources.
Diem 5.1.2 - Multiple Cross-Site Scripting Vulnerabilities
by High-Tech Bridge SA
AJ Square AJ Article 3.0 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in index.php in AJ Square AJ Article 3.0 allow remote attackers to inject arbitrary web script or HTML via the (1) emailid, (2) fname, (3) lname, (4) company, (5) address1, (6) address2, (7) city, (8) state, (9) zipcode, (10) phone, and (11) fax parameters in an update action. NOTE: some of these details are obtained from third party information.
by Sid3^effects
Oracle Fusion Middleware - Confidentiality Integrity
Package/Privilege: Plugins for Apache, Sun and IIS web servers Unspecified vulnerability in the WebLogic Server component in Oracle Fusion Middleware 7.0 SP7, 8.1 SP6, 9.0, 9.1, 9.2 MP3, 10.0 MP2, 10.3.2, and 10.3.3 allows remote attackers to affect confidentiality and integrity, related to IIS.
by Timothy D. Morgan
Oracle Fusion Middleware <10.3 - Info Disclosure
Unspecified vulnerability in the Oracle Business Process Management component in Oracle Fusion Middleware 5.7 MP3, 6.0 MP5, and 10.3 MP2 allows remote attackers to affect integrity, related to BPM.
by Markot
Corel Presentations X5 15.0.0.357 - 'shw' Buffer Preoccupation (PoC)
by LiquidWorm
Joomla! Component healthstats - Persistent Cross-Site Scripting
by Sid3^effects
Joomla! Component EasyBlog - Persistent Cross-Site Scripting
by Sid3^effects
Asterisk Recording Interface 0.7.15/0.10 - Multiple Vulnerabilities
by TurboBorland
Libtiff - Improper Input Validation
The TIFFReadDirectory function in LibTIFF 3.9.0 does not properly validate the data types of codec-specific tags that have an out-of-order position in a TIFF file, which allows remote attackers to cause a denial of service (application crash) via a crafted file, a different vulnerability than CVE-2010-2481.
by Tom Lane
RunCMS 2.1 - 'magpie_debug.php' Cross-Site Scripting
by John Leitch
CSSTidy 1.3 - 'css_optimiser.php' Cross-Site Scripting
by John Leitch
Mac's CMS 1.1.4 - 'SearchString' Cross-Site Scripting
by 10n1z3d
My Kazaam Notes Management System - SQL Injection
SQL injection vulnerability in notes.php in My Kazaam Notes Management System allows remote attackers to execute arbitrary SQL commands via vectors involving the "Enter Reference Number Below" text box.
by L0rd CrusAd3r
Edge PHP Clickbank Affiliate Marketplace Script - SQL Injection
SQL injection vulnerability in index.php in Edge PHP Clickbank Affiliate Marketplace Script (CBQuick) allows remote attackers to execute arbitrary SQL commands via the search parameter.
by L0rd CrusAd3r
Sillaj time tracking tool - Authentication Bypass
by L0rd CrusAd3r
My Kazaam Notes Management System - XSS
Cross-site scripting (XSS) vulnerability in notes.php in My Kazaam Notes Management System allows remote attackers to inject arbitrary web script or HTML via vectors involving the "Enter Reference Number Below" text box.
by L0rd CrusAd3r
My Kazaam Address & Contact Organizer - SQL Injection
SQL injection vulnerability in address_book/contacts.php in My Kazaam Address & Contact Organizer allows remote attackers to execute arbitrary SQL commands via the var1 parameter.
by v3n0m
Joomla! com_redshop 1.0 - SQL Injection
SQL injection vulnerability in the redSHOP Component (com_redshop) 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the pid parameter to index.php.
by v3n0m
Joomla! Component Rapid-Recipe - Persistent Cross-Site Scripting
by Sid3^effects
Joomla! Component Rapid-Recipe - HTML Injection
by Sid3^effects
By Source