Text Exploits
31,386 exploits tracked across all sources.
Cyberhost - SQL Injection via default.asp id Parameter
SQL injection vulnerability in default.asp in Cyberhost allows remote attackers to execute arbitrary SQL commands via the id parameter.
by redst0rm
3Com* iMC (Intelligent Management Center) - Traversal File Retrieval
by Richard Brain
3Com* iMC (Intelligent Management Center) - Cross-Site Scripting / Information Disclosure Flaws
by Richard Brain
Sun Solaris 10 - Nested Directory Tree Local Denial of Service
by Maksymilian Arciemowicz
Sun Solaris 10 - 'in.ftpd' Long Command Handling Security
by Maksymilian Arciemowicz
Specialized Data Systems Parent Connect 2010.04.11 - Multiple SQL Injections
by epixoip
jv2_folder_gallery 3.1 - Remote Code Execution via lang_file Parameter
PHP remote file inclusion vulnerability in gallery.php in JV2 Folder Gallery 3.1 allows remote attackers to execute arbitrary PHP code via a URL in the lang_file parameter.
by Sn!pEr.S!Te Hacker
ConPresso 4.0.7 - SQL Injection via Firma.php ID Parameter
SQL injection vulnerability in firma.php in Bartels Schone ConPresso 4.0.7 allows remote attackers to execute arbitrary SQL commands via the id parameter.
by Gamoscu
Apache Axis2 1.4.1-1.5.1 - Cross-Site Scripting via Modules Parameter
Cross-site scripting (XSS) vulnerability in axis2-admin/axis2-admin/engagingglobally in the administration console in Apache Axis2/Java 1.4.1, 1.5.1, and possibly other versions, as used in SAP Business Objects 12, 3com IMC, and possibly other products, allows remote attackers to inject arbitrary web script or HTML via the modules parameter. NOTE: some of these details are obtained from third party information.
by Richard Brain
ComponentOne VSFlexGrid 7/8 - 'Archive()' method Remote Buffer Overflow
by Ma3sTr0-Dz
webYourPhotos 6.05 - 'index.php' Remote File Inclusion
by Sn!pEr.S!Te Hacker
Snipe Gallery 3.1.5 - Remote Code Execution via cfg_admin_path Parameter
Multiple PHP remote file inclusion vulnerabilities in Snipe Gallery 3.1.5 allow remote attackers to execute arbitrary PHP code via a URL in the cfg_admin_path parameter to (1) index.php, (2) view.php, (3) image.php, (4) search.php, (5) admin/index.php, (6) admin/gallery/index.php, (7) admin/gallery/view.php, (8) admin/gallery/gallery.php, (9) admin/gallery/image.php, and (10) admin/gallery/crop.php.
by Sn!pEr.S!Te Hacker
Snipe Gallery 3.1.5 - Remote Code Execution via cfg_admin_path Parameter
Multiple PHP remote file inclusion vulnerabilities in Snipe Gallery 3.1.5 allow remote attackers to execute arbitrary PHP code via a URL in the cfg_admin_path parameter to (1) index.php, (2) view.php, (3) image.php, (4) search.php, (5) admin/index.php, (6) admin/gallery/index.php, (7) admin/gallery/view.php, (8) admin/gallery/gallery.php, (9) admin/gallery/image.php, and (10) admin/gallery/crop.php.
by Sn!pEr.S!Te Hacker
NPDS REvolution 10.02 - 'admin.php' Cross-Site Request Forgery
by High-Tech Bridge SA
Lisk CMS 4.4 - 'id' Multiple Cross-Site Scripting / SQL Injections
by High-Tech Bridge SA
U.S.Robotics USR5463 0.06 Firmware - 'setup_ddns.exe' HTML Injection
by SH4V
McAfee Email Gateway 6.7.1 - 'systemWebAdminConfig.do' Remote Security Bypass
by Nahuel Grisolia
By Source