Exploitdb Exploits
31,344 exploits tracked across all sources.
eliteCMS 1.01 - Multiple Cross-Site Scripting Vulnerabilities
by 10n1z3d
Edge PHP Clickbank Affiliate Marketplace Script - XSS
Cross-site scripting (XSS) vulnerability in index.php in Edge PHP Clickbank Affiliate Marketplace Script (CBQuick) allows remote attackers to inject arbitrary web script or HTML via the search parameter.
by L0rd CrusAd3r
Yappa 3.1.2 - 'yappa.php' Multiple Remote Command Execution Vulnerabilities
by Sn!pEr.S!Te Hacker
WordPress Plugin Firestats 1.6.5 - Multiple Cross-Site Scripting Vulnerabilities
by Jelmer de Hen
WordPress Plugin Firestats - Remote Configuration File Download
by Jelmer de Hen
SimpNews <2.47.03 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in news.php in SimpNews 2.47.03 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) layout and (2) sortorder parameters.
by MustLive
Real Estate Manager 1.0.1 - 'index.php' Cross-Site Scripting
by bi0
Joomla! com_quickfaq 1.0.3 - SQL Injection
SQL injection vulnerability in the QuickFAQ (com_quickfaq) component 1.0.3 for Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter in a category action to index.php.
by RoAd_KiLlEr
Joomla! Component Minify4Joomla! - Arbitrary File Upload / Persistent Cross-Site Scripting
by Sid3^effects
Oracle Mysql - Denial of Service
storage/innobase/dict/dict0crea.c in mysqld in Oracle MySQL 5.1 before 5.1.49 allows remote authenticated users to cause a denial of service (assertion failure) by modifying the (1) innodb_file_format or (2) innodb_file_per_table configuration parameters for the InnoDB storage engine, then executing a DDL statement.
by Elena Stepanova
Microsoft Outlook Web Access <SP2 - CSRF
Cross-site request forgery (CSRF) vulnerability in Microsoft Outlook Web Access (owa/ev.owa) 2007 through SP2 allows remote attackers to hijack the authentication of e-mail users for requests that perform Outlook requests, as demonstrated by setting the auto-forward rule.
by Rosario Valotta
EA Battlefield 2 < 2.1.50 - Path Traversal
Multiple directory traversal vulnerabilities in the Refractor 2 engine, as used in Battlefield 2 1.50 (1.5.3153-802.0) and earlier, and Battlefield 2142 (1.10.48.0) and earlier, allow remote servers to overwrite arbitrary files on the client via "..\" (dot dot backslash) sequences in URLs for the (1) sponsor or (2) community logos, and other URLs related to (3) DemoDownloadURL, (4) DemoIndexURL and (5) CustomMapsURL.
by Luigi Auriemma
Microsoft Windows - 'cmd.exe' Unicode Buffer Overflow (SEH)
by bitform
Ghost Recon Advanced Warfighter - Integer Overflow / Array Indexing Overflow
by Luigi Auriemma
osCSS <1.2.2 - XSS
Cross-site scripting (XSS) vulnerability in admin/currencies.php in osCSS 1.2.2, and probably earlier versions, allows remote attackers to inject arbitrary web script or HTML via the page parameter.
by High-Tech Bridge SA
Joomla! - Path Traversal
Directory traversal vulnerability in the Music Manager component for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the cid parameter to album.html.
by Sid3^effects
By Source