Text Exploits
31,386 exploits tracked across all sources.
NP_Twitter Plugin 0.8-0.9 - Remote Code Execution via DIR_PLUGINS Parameter
PHP remote file inclusion vulnerability in nucleus/plugins/NP_Twitter.php in the NP_Twitter Plugin 0.8 and 0.9 for Nucleus, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the DIR_PLUGINS parameter. NOTE: some of these details are obtained from third party information.
by AntiSecurity
NP_Gallery plugin 0.94 - SQL Injection via id Parameter
SQL injection vulnerability in index.php in the NP_Gallery plugin 0.94 for Nucleus allows remote attackers to execute arbitrary SQL commands via the id parameter in a plugin action.
by AntiSecurity
MileHigh Creative - SQL Injection / Cross-Site Scripting / HTML Injection
by XroGuE
Cosmos Solutions CMS - 'id=' / 'page=' SQL Injection
by gendenk
com_mycar 1.0 - Cross-Site Scripting via modveh Parameter
Cross-site scripting (XSS) vulnerability in the My Car (com_mycar) component 1.0 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the modveh parameter to index.php.
by Valentin
Realtor WebSite System E-Commerce - idfestival SQL Injection
by CoBRa_21
Realtor Real Estate Agent - 'news.php' SQL Injection
by v3n0m
Realtor Real Estate Agent - 'idproperty' SQL Injection
by v3n0m
com_mycar 1.0 - SQL Injection via Pagina Parameter
SQL injection vulnerability in the My Car (com_mycar) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the pagina parameter to index.php.
by Valentin
Joomla! com_jejob 1.0 - SQL Injection
SQL injection vulnerability in the JExtensions JE Job (com_jejob) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in an item action to index.php.
by v3n0m
Joomla! com_bfquiztrial <1.3.1 - SQL Injection
SQL injection vulnerability in the BF Quiz (com_bfquiztrial) component before 1.3.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in a bfquiztrial action to index.php.
by Valentin
ImpressPages CMS 1.0x - 'admin.php' Multiple SQL Injections
by High-Tech Bridge SA
Toronja CMS - HTML / Cross-Site Scripting Injection
by CoBRa_21
Realtor WebSite System E-Commerce - SQL Injection
by cyberlog
PPhlogger 2.2.5 - 'trace.php' Remote Command Execution
by Sn!pEr.S!Te Hacker
parlic Design - SQL Injection / Cross-Site Scripting / HTML Injection
by XroGuE
Joomla! Component com_mediqna 1.1 - Local File Inclusion
by kaMtiEz
Hampshire Trading Standards Script - SQL Injection
by Mr.P3rfekT
By Source