Exploitdb Exploits

EIP-2026-108525 EXPLOITDB text VERIFIED

Joomla! Component com_sar_news - 'id' SQL Injection

by LynX

View

EIP-2026-108238 EXPLOITDB text

Joomla! Component ChronoForms - Blind SQL Injection

by _mlk_

View

EIP-2026-108237 EXPLOITDB text

Joomla! Component ChronoConnectivity - Blind SQL Injection

by _mlk_

View

EIP-2026-107590 EXPLOITDB text

Hexjector 1.0.7.2 - Persistent Cross-Site Scripting

by hexon

View

EIP-2026-107589 EXPLOITDB text VERIFIED

Hexjector 1.0.7.2 - 'hexjector.php' Cross-Site Scripting

by hexon

View

EIP-2026-106401 EXPLOITDB text VERIFIED

Delivering Digital Media CMS - SQL Injection

by Dr.0rYX & Cr3W-DZ

View

EIP-2026-100590 EXPLOITDB text VERIFIED

Ticimax E-Ticaret - SQL Injection

by Neuromancer

View

EIP-2026-114389 EXPLOITDB text VERIFIED

WsCMS - Multiple SQL Injections

by cyberlog

View

EIP-2026-114388 EXPLOITDB text VERIFIED

wsCMS - 'news.php' Cross-Site Scripting

by cyberlog

View

CVE-2010-2146 EXPLOITDB text VERIFIED

Graviton-mediatech Visitor Logger - Code Injection

PHP remote file inclusion vulnerability in banned.php in Visitor Logger allows remote attackers to execute arbitrary PHP code via a URL in the VL_include_path parameter.

by bd0rk

View

EIP-2026-111648 EXPLOITDB text

QuickTalk 1.2 - Source Code Disclosure

by indoushka

View

EIP-2026-110551 EXPLOITDB text VERIFIED

Persian E107 - Cross-Site Scripting

by indoushka

View

EIP-2026-109650 EXPLOITDB text VERIFIED

MusicBox - SQL Injection

by titanichacker

View

CVE-2009-4599 EXPLOITDB text

JS Jobs 1.0.5.6 - SQL Injection

Multiple SQL injection vulnerabilities in the JS Jobs (com_jsjobs) component 1.0.5.6 for Joomla! allow remote attackers to execute arbitrary SQL commands via (1) the md parameter in an employer view_company action to index.php or (2) the oi parameter in an employer view_job action to index.php.

by d0lc3

View

EIP-2026-108355 EXPLOITDB text VERIFIED

Joomla! Component com_g2bridge - Local File Inclusion

by akatsuchi

View

EIP-2026-106653 EXPLOITDB text VERIFIED

e107 0.7.21 full - Remote File Inclusion / Cross-Site Scripting

by indoushka

View

CVE-2010-2159 EXPLOITDB text VERIFIED

Dameng DM Database Server - Memory Corruption

Dameng DM Database Server allows remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via unspecified vectors related to the SP_DEL_BAK_EXPIRED procedure in wdm_dll.dll, which triggers memory corruption.

by Shennan Wang HuaweiSymantec SRT

View

EIP-2026-100474 EXPLOITDB text VERIFIED

Patient folder (THEME ASP) - SQL Injection

by SA H4x0r

View

EIP-2026-118609 EXPLOITDB text

GoAheaad WebServer - Source Code Disclosure

by Sil3nt_Dre4m

View

CVE-2010-2144 EXPLOITDB text VERIFIED

Zeeways Ebay Clone Auction Script - XSS

Cross-site scripting (XSS) vulnerability in signinform.php in Zeeways eBay Clone Auction Script allows remote attackers to inject arbitrary web script or HTML via the msg parameter. NOTE: some of these details are obtained from third party information.

by XroGuE

View

CVE-2010-2143 EXPLOITDB text VERIFIED

Symphony - Path Traversal

Directory traversal vulnerability in index.php in Symphony CMS 2.0.7 allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the mode parameter.

by AntiSecurity

View

EIP-2026-111570 EXPLOITDB text VERIFIED

PTC Site's - Remote Code Execution / Cross-Site Scripting

by CrazyMember

View

EIP-2026-110385 EXPLOITDB text VERIFIED

osCommerce Online Merchant 2.2 - File Disclosure / Authentication Bypass

by Flyff666

View

EIP-2026-110384 EXPLOITDB text

osCommerce Online Merchant 2.2 - Arbitrary File Upload

by MasterGipy

View

EIP-2026-108504 EXPLOITDB text

Joomla! Component com_quran - SQL Injection

by r3m1ck

View