Text Exploits

31,386 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-104302 EXPLOITDB text VERIFIED
Kryn.cms 6.0 - Cross-Site Request Forgery / HTML Injection
by TurboBorland
CVE-2010-5029 EXPLOITDB text
ecomat_cms 5.0 - SQL Injection via Index.php Show Parameter
SQL injection vulnerability in index.php in Ecomat CMS 5.0 allows remote attackers to execute arbitrary SQL commands via the show parameter in a web action.
by High-Tech Bridge SA
CVE-2010-1931 EXPLOITDB text VERIFIED
CubeCart 4.3.4-4.3.9 - SQL Injection via shipKey Parameter
SQL injection vulnerability in includes/content/cart.inc.php in CubeCart PHP Shopping cart 4.3.4 through 4.3.9 allows remote attackers to execute arbitrary SQL commands via the shipKey parameter to index.php.
by Core Security
EIP-2026-102690 EXPLOITDB text VERIFIED
Mumble Murmur 1.2 - Denial of Service
by Luigi Auriemma
CVE-2010-2626 EXPLOITDB text VERIFIED
Miyabi CGI Tools SEO Links 1.02 - Remote Command Execution via fn Parameter
index.pl in Miyabi CGI Tools SEO Links 1.02 allows remote attackers to execute arbitrary commands via shell metacharacters in the fn command. NOTE: some of these details are obtained from third party information.
by Marshall Whittaker
EIP-2026-100361 EXPLOITDB text VERIFIED
Iatek PortalApp 3.3/4.0 - 'login.asp' Multiple Cross-Site Scripting Vulnerabilities
by High-Tech Bridge SA
CVE-2010-2684 EXPLOITDB text VERIFIED
Customer Paradigm PageDirector CMS - SQL Injection
SQL injection vulnerability in index.php in Customer Paradigm PageDirector CMS allows remote attackers to execute arbitrary SQL commands via the id parameter.
by Tr0y-x
EIP-2026-112940 EXPLOITDB text VERIFIED
V-EVA Classified Script 5.1 - 'classified_img.php' SQL Injection
by Sid3^effects
EIP-2026-111573 EXPLOITDB text VERIFIED
PTCPay GEN4 - 'buyupg.php' SQL Injection
by Dark.Man
CVE-2010-2685 EXPLOITDB text VERIFIED
Customer Paradigm PageDirector CMS - Auth Bypass
siteadmin/adduser.php in Customer Paradigm PageDirector CMS does not properly restrict access, which allows remote attackers to bypass intended restrictions and add administrative users via a direct request.
by Tr0y-x
EIP-2026-109868 EXPLOITDB text VERIFIED
Netartmedia iBoutique.MALL - SQL Injection
by Sid3^effects
EIP-2026-109793 EXPLOITDB text VERIFIED
MySpace Clone 2010 - SQL Injection / Cross-Site Scripting
by L0rd CrusAd3r
EIP-2026-107829 EXPLOITDB text
iNet Online Community - Blind SQL Injection
by JaMbA
EIP-2026-107698 EXPLOITDB text
I-net Multi User Email Script - SQL Injection
by Sid3^effects
EIP-2026-106743 EXPLOITDB text VERIFIED
eBay Clone Script 2010 - 'showcategory.php' SQL Injection
by L0rd CrusAd3r
EIP-2026-106286 EXPLOITDB text VERIFIED
Customer Paradigm PageDirector - 'id' SQL Injection
by Tr0y-x
EIP-2026-105948 EXPLOITDB text VERIFIED
Clix'N'Cash Clone 2010 - 'index.php' SQL Injection
by L0rd CrusAd3r
EIP-2026-105510 EXPLOITDB text VERIFIED
BlaherTech Placeto CMS - 'Username' SQL Injection
by S.W.T
EIP-2026-104458 EXPLOITDB text VERIFIED
Subdreamer Pro 3.0.4 - CMS Upload
by Battousai
EIP-2026-104169 EXPLOITDB text VERIFIED
Applicure dotDefender 4.01-3 - Persistent Cross-Site Scripting
by EnableSecurity
EIP-2026-101213 EXPLOITDB text VERIFIED
D-Link DAP-1160 Wireless Access Point - DCC Protocol Security Bypass
by Cristofaro Mune
CVE-2010-4997 EXPLOITDB text VERIFIED
OlyKit Swoopo Clone 2010 - SQL Injection
SQL injection vulnerability in index.php in OlyKit Swoopo Clone 2010 allows remote attackers to execute arbitrary SQL commands via the id parameter in a product action.
by L0rd CrusAd3r
CVE-2010-2611 EXPLOITDB text VERIFIED
i-netsolution Job Search Engine - SQL Injection via show_search_result.php keyword parameter
SQL injection vulnerability in show_search_result.php in i-netsolution Job Search Engine allows remote attackers to execute arbitrary SQL commands via the keyword parameter.
by Sid3^effects
EIP-2026-107697 EXPLOITDB text VERIFIED
I-Net MLM Script Engine - SQL Injection
by Sid3^effects
EIP-2026-105768 EXPLOITDB text VERIFIED
Ceica-GW - 'login.php' Cross-Site Scripting
by indoushka