Text Exploits
31,386 exploits tracked across all sources.
bbPress 1.0.2 - Cross-Site Request Forgery (Change Admin Password)
by saudi0hacker
id Software id Tech 4 Engine - 'key' Packet Remote Code Execution
by Luigi Auriemma
EDItran Communications Platform (editcp) 4.1 - Remote Buffer Overflow
by Pedro Andujar
TCW PHP Album 1.0 - SQL Injection via Album Parameter
SQL injection vulnerability in photos/index.php in TCW PHP Album 1.0 allows remote attackers to execute arbitrary SQL commands via the album parameter.
by L0rd CrusAd3r
WordPress Plugin Simple:Press 4.3.0 - SQL Injection
by ADEO Security
TCW PHP Album 1.0 - Cross-Site Scripting via Album Parameter
Cross-site scripting (XSS) vulnerability in photos/index.php in TCW PHP Album 1.0 allows remote attackers to inject arbitrary web script or HTML via the album parameter.
by L0rd CrusAd3r
phpFaber CMS 2.0.5 - Multiple Cross-Site Scripting Vulnerabilities
by prodigy
phpaaCms 0.3.1 UTF-8 - SQL Injection via show.php id Parameter
SQL injection vulnerability in show.php in phpaaCms 0.3.1 UTF-8, and possibly other versions, allows remote attackers to execute arbitrary SQL commands via the id parameter.
by Shafiq-Ur-Rehman
phpaaCms 0.3.1 UTF-8 - SQL Injection via list.php id Parameter
SQL injection vulnerability in list.php in phpaaCms 0.3.1 UTF-8, and possibly other versions, allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: some of these details are obtained from third party information.
by CoBRa_21
ninjaforge ninjamonials - SQL Injection via Itemid Parameter
SQL injection vulnerability in the NinjaMonials (com_ninjamonials) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter in a display action to index.php.
by Sid3^effects
Joomla! Component Front-End Article Manager System - Arbitrary File Upload
by Sid3^effects
com_addressbook - SQL Injection via Itemid Parameter
SQL injection vulnerability in the Front-edit Address Book (com_addressbook) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter in a contact action to index.php.
by Sid3^effects
esoftpro Online Photo Pro 2.0 - SQL Injection
SQL injection vulnerability in index.php in esoftpro Online Photo Pro 2.0 allows remote attackers to execute arbitrary SQL commands via the section parameter.
by L0rd CrusAd3r
Esoftpro Online Guestbook Pro 5.1 - SQL Injection
SQL injection vulnerability in ogp_show.php in esoftpro Online Guestbook Pro 5.1 allows remote attackers to execute arbitrary SQL commands via the search parameter.
by L0rd CrusAd3r
Esoftpro Online Contact Manager 3.0 - SQL Injection
SQL injection vulnerability in view.php in esoftpro Online Contact Manager 3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.
by L0rd CrusAd3r
Techjoomla com_socialads - SQL Injection via Ads Description Field
SQL injection vulnerability in the Techjoomla SocialAds For JomSocial (com_socialads) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the ads description field in a showad action to index.php.
by Sid3^effects
Joomla! com_eventcal <1.6.4 - SQL Injection
SQL injection vulnerability in the eventcal (com_eventcal) component 1.6.4 for Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter to index.php.
by RoAd_KiLlEr
Joomla! Component com_seyret - Local File Inclusion
by Cooler_ unix
iScripts MultiCart 2.2 - Multiple SQL Injections
by Salvatore Fresta
By Source