Exploitdb Exploits
31,344 exploits tracked across all sources.
NPDS REvolution 10.02 - 'admin.php' Cross-Site Request Forgery
by High-Tech Bridge SA
Lisk CMS 4.4 - 'id' Multiple Cross-Site Scripting / SQL Injections
by High-Tech Bridge SA
U.S.Robotics USR5463 0.06 Firmware - 'setup_ddns.exe' HTML Injection
by SH4V
McAfee Email Gateway 6.7.1 - 'systemWebAdminConfig.do' Remote Security Bypass
by Nahuel Grisolia
Google Chrome < 4.1.249.1063 - Access Control
The Google URL Parsing Library (aka google-url or GURL) in Google Chrome before 4.1.249.1064 allows remote attackers to bypass the Same Origin Policy via unspecified vectors.
by Jordi Chancel
SoftDirec 1.05 - 'delete_confirm.php' Cross-Site Scripting
by indoushka
V-eva Shopzilla Affiliate Script Php - XSS
Cross-site scripting (XSS) vulnerability in search.php in V-EVA Shopzilla Affiliate Script PHP allows remote attackers to inject arbitrary web script or HTML via the s parameter.
by Andrea Bocchetti
Com Perchacategoriestree - Path Traversal
Directory traversal vulnerability in the Percha Multicategory Article (com_perchacategoriestree) component 0.6 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php.
by AntiSecurity
Com Perchaimageattach - Path Traversal
Directory traversal vulnerability in the Percha Image Attach (com_perchaimageattach) component 1.1 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php.
by AntiSecurity
Com Perchagallery - Path Traversal
Directory traversal vulnerability in the Percha Gallery (com_perchagallery) component 1.6 Beta for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php.
by AntiSecurity
Com Perchafieldsattach - Path Traversal
Directory traversal vulnerability in the Percha Fields Attach (com_perchafieldsattach) component 1.x for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php.
by AntiSecurity
Com Perchadownloadsattach - Path Traversal
Directory traversal vulnerability in the Percha Downloads Attach (com_perchadownloadsattach) component 1.1 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php.
by AntiSecurity
Joomla! Component com_horses - 'id' SQL Injection
by Kernel Security Group
Debliteck Dbcart - SQL Injection
SQL injection vulnerability in article.php in Debliteck DBCart allows remote attackers to execute arbitrary SQL commands via the id parameter.
by v3n0m
Caucho Resin - Cross-Site Scripting via digest_realm or digest_username Parameters
Multiple cross-site scripting (XSS) vulnerabilities in resin-admin/digest.php in Caucho Technology Resin Professional 3.1.5, 3.1.10, 4.0.6, and possibly other versions allow remote attackers to inject arbitrary web script or HTML via the (1) digest_realm or (2) digest_username parameters. NOTE: some of these details are obtained from third party information.
by xuanmumu
C99Shell 1.0 Pre-Release build 16 (Web Shell) - 'ch99.php' Cross-Site Scripting
by indoushka
Palo Alto Networks Firewall < 3.0.8 - XSS
Cross-site scripting (XSS) vulnerability in esp/editUser.esp in the Palo Alto Networks firewall 3.0.x before 3.0.9 and 3.1.x before 3.1.1 allows remote attackers to inject arbitrary web script or HTML via the role parameter.
by Jeromie Jackson
McAfee Email Gateway - Web Administration Broken Access Control
by Nahuel Grisolia
By Source