Exploitdb Exploits
31,344 exploits tracked across all sources.
LinPHA 1.3.2 - 'rotate.php' Remote Command Execution
by Sn!pEr.S!Te Hacker
Joelrowley Com Simpledownload - Path Traversal
Directory traversal vulnerability in the SimpleDownload (com_simpledownload) component before 0.9.6 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php.
by Xr0b0t
Joelrowley Com Simpledownload - Path Traversal
Directory traversal vulnerability in the SimpleDownload (com_simpledownload) component before 0.9.6 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php.
by ALTBTA
I-Vision CMS - Cross-Site Scripting / SQL Injection
by Ariko-Security
Apple Safari - Resource Management Error
Use-after-free vulnerability in Apple Safari 4.0.5 on Windows allows remote attackers to execute arbitrary code by using window.open to create a popup window for a crafted HTML document, and then calling the parent window's close method, which triggers improper handling of a deleted window object.
by Alexey Sintsov
M0r0n Com Mscomment - Path Traversal
Directory traversal vulnerability in the Moron Solutions MS Comment (com_mscomment) component 0.8.0b for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
by Xr0b0t
Joomla! Component com_camp - SQL Injection
by Kernel Security Group
CompactCMS 1.4.0 - 'tiny_mce' Arbitrary File Upload
by ITSecTeam
Alibaba Clone Platinum - 'about_us.php' SQL Injection
by CoBRa_21
Mozilla Firefox 3.6.3 / Safari 4.0.5 - Access Violation Exception and Unknown Exception
by Fredrik Nordberg Almroth
V-EVA Press Release Script - SQL Injection
SQL injection vulnerability in page.php in V-EVA Press Release Script allows remote attackers to execute arbitrary SQL commands via the id parameter.
by R3d-D3V!L
Planet Script 1.x - 'idomains.php' Cross-Site Scripting
by Mr.ThieF
Harmistechnology Com Jequoteform - Path Traversal
Directory traversal vulnerability in the JE Quotation Form (com_jequoteform) component 1.0b1 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the view parameter to index.php.
by ALTBTA
Joomla! com_jejob 1.0 - SQL Injection
SQL injection vulnerability in the JExtensions JE Job (com_jejob) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in an item action to index.php.
by Valentin
Harmistechnology Com Jeajaxeventcalendar - Path Traversal
Directory traversal vulnerability in the JE Ajax Event Calendar (com_jeajaxeventcalendar) component 1.0.1 and 1.0.3 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the view parameter to index.php. NOTE: some of these details are obtained from third party information.
by Valentin
Heaven Soft CMS 4.7 - 'photogallery_open.php' SQL Injection
by CoBRa_21
Alibaba Clone Platinum - '/buyer/index.php' SQL Injection
by GuN
Php - Format String Vulnerability
Multiple format string vulnerabilities in the phar extension in PHP 5.3 before 5.3.2 allow context-dependent attackers to obtain sensitive information (memory contents) and possibly execute arbitrary code via a crafted phar:// URI that is not properly handled by the (1) phar_stream_flush, (2) phar_wrapper_unlink, (3) phar_parse_url, or (4) phar_wrapper_open_url functions in ext/phar/stream.c; and the (5) phar_wrapper_open_dir function in ext/phar/dirstream.c, which triggers errors in the php_stream_wrapper_log_error function.
by Stefan Esser
VMware View <3.1.3 - XSS
Cross-site scripting (XSS) vulnerability in VMware View (formerly Virtual Desktop Manager or VDM) 3.1.x before 3.1.3 build 252693 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
by Alexey Sintsov
By Source