Text Exploits

31,386 exploits tracked across all sources.

Sort: Activity Stars
CVE-2010-2314 EXPLOITDB text
NP_Twitter Plugin 0.8-0.9 - Remote Code Execution via DIR_PLUGINS Parameter
PHP remote file inclusion vulnerability in nucleus/plugins/NP_Twitter.php in the NP_Twitter Plugin 0.8 and 0.9 for Nucleus, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the DIR_PLUGINS parameter. NOTE: some of these details are obtained from third party information.
by AntiSecurity
CVE-2010-5041 EXPLOITDB text VERIFIED
NP_Gallery plugin 0.94 - SQL Injection via id Parameter
SQL injection vulnerability in index.php in the NP_Gallery plugin 0.94 for Nucleus allows remote attackers to execute arbitrary SQL commands via the id parameter in a plugin action.
by AntiSecurity
EIP-2026-109468 EXPLOITDB text VERIFIED
MileHigh Creative - SQL Injection / Cross-Site Scripting / HTML Injection
by XroGuE
EIP-2026-109330 EXPLOITDB text VERIFIED
Marketing Web Design - Multiple Vulnerabilities
by XroGuE
EIP-2026-106174 EXPLOITDB text VERIFIED
Cosmos Solutions CMS - SQL Injection
by cyberlog
EIP-2026-106173 EXPLOITDB text VERIFIED
Cosmos Solutions CMS - 'id=' / 'page=' SQL Injection
by gendenk
EIP-2026-105027 EXPLOITDB text VERIFIED
Aim Web Design - Multiple Vulnerabilities
by XroGuE
CVE-2010-2147 EXPLOITDB text VERIFIED
com_mycar 1.0 - Cross-Site Scripting via modveh Parameter
Cross-site scripting (XSS) vulnerability in the My Car (com_mycar) component 1.0 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the modveh parameter to index.php.
by Valentin
EIP-2026-111712 EXPLOITDB text VERIFIED
Realtor WebSite System E-Commerce - idfestival SQL Injection
by CoBRa_21
EIP-2026-111711 EXPLOITDB text VERIFIED
Realtor Real Estate Agent - 'news.php' SQL Injection
by v3n0m
EIP-2026-111710 EXPLOITDB text VERIFIED
Realtor Real Estate Agent - 'idproperty' SQL Injection
by v3n0m
CVE-2010-2148 EXPLOITDB text VERIFIED
com_mycar 1.0 - SQL Injection via Pagina Parameter
SQL injection vulnerability in the My Car (com_mycar) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the pagina parameter to index.php.
by Valentin
EIP-2026-108709 EXPLOITDB text VERIFIED
Joomla! Component JE Poll - 'pollid' SQL Injection
by v3n0m
CVE-2010-5028 EXPLOITDB text VERIFIED
Joomla! com_jejob 1.0 - SQL Injection
SQL injection vulnerability in the JExtensions JE Job (com_jejob) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in an item action to index.php.
by v3n0m
CVE-2010-5032 EXPLOITDB text VERIFIED
Joomla! com_bfquiztrial <1.3.1 - SQL Injection
SQL injection vulnerability in the BF Quiz (com_bfquiztrial) component before 1.3.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in a bfquiztrial action to index.php.
by Valentin
EIP-2026-107812 EXPLOITDB text VERIFIED
ImpressPages CMS 1.0x - 'admin.php' Multiple SQL Injections
by High-Tech Bridge SA
EIP-2026-106008 EXPLOITDB text VERIFIED
CMScout 2.08 - Cross-Site Scripting
by XroGuE
EIP-2026-112749 EXPLOITDB text VERIFIED
Toronja CMS - SQL Injection
by cyberlog
EIP-2026-112748 EXPLOITDB text VERIFIED
Toronja CMS - HTML / Cross-Site Scripting Injection
by CoBRa_21
EIP-2026-111713 EXPLOITDB text VERIFIED
Realtor WebSite System E-Commerce - SQL Injection
by cyberlog
EIP-2026-111456 EXPLOITDB text VERIFIED
PPhlogger 2.2.5 - 'trace.php' Remote Command Execution
by Sn!pEr.S!Te Hacker
EIP-2026-110482 EXPLOITDB text VERIFIED
parlic Design - SQL Injection / Cross-Site Scripting / HTML Injection
by XroGuE
EIP-2026-108442 EXPLOITDB text VERIFIED
Joomla! Component com_mediqna 1.1 - Local File Inclusion
by kaMtiEz
EIP-2026-107550 EXPLOITDB text VERIFIED
Hampshire Trading Standards Script - SQL Injection
by Mr.P3rfekT
EIP-2026-107428 EXPLOITDB text VERIFIED
GlobalWebTek Design - SQL Injection
by cyberlog