Text Exploits
31,386 exploits tracked across all sources.
gpEasy CMS 1.6.2 - Authenticated Stored Cross-Site Scripting via gpcontent Parameter
Cross-site scripting (XSS) vulnerability in include/tool/editing_files.php in gpEasy CMS 1.6.2 allows remote authenticated users, with Edit privileges, to inject arbitrary web script or HTML via the gpcontent parameter to index.php. NOTE: some of these details are obtained from third party information.
by High-Tech Bridge SA
ecoCMS - Cross-Site Scripting via Admin.php p Parameter
Cross-site scripting (XSS) vulnerability in admin.php in ecoCMS allows remote attackers to inject arbitrary web script or HTML via the p parameter.
by High-Tech Bridge SA
B-Hind CMS (tiny_mce) - Arbitrary File Upload
by innrwrld & h00die
Abyss Web Server X1 - Cross-Site Request Forgery
by John Leitch
Tainos Webdesign (All Scripts) - SQL Injection / Cross-Site Scripting / HTML Injection
by CoBRa_21
PonVFTP - Insecure Cookie Authentication Bypass
by SkuLL-HackeR
MyNews CMS 1.0 - SQL Injection / Local File Inclusion / Cross-Site Scripting
by mr_me
Joomla! Component com_event - Multiple Vulnerabilities
by ALTBTA
JE CMS 1.0.0 and 1.1 - SQL Injection via CategoryID Parameter
SQL injection vulnerability in index.php in JE CMS 1.0.0 and 1.1 allows remote attackers to execute arbitrary SQL commands via the categoryid parameter in a viewcategory action. NOTE: some of these details are obtained from third party information.
by AntiSecurity
Iceberg CMS - SQL Injection via p_id Parameter
SQL injection vulnerability in details.php in Iceberg CMS allows remote attackers to execute arbitrary SQL commands via the p_id parameter.
by cyberlog
LinPHA 1.3.2 - 'rotate.php' Remote Command Execution
by Sn!pEr.S!Te Hacker
com_simpledownload < 0.9.6 - Path Traversal via Controller Parameter
Directory traversal vulnerability in the SimpleDownload (com_simpledownload) component before 0.9.6 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php.
by Xr0b0t
com_simpledownload < 0.9.6 - Path Traversal via Controller Parameter
Directory traversal vulnerability in the SimpleDownload (com_simpledownload) component before 0.9.6 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php.
by ALTBTA
I-Vision CMS - Cross-Site Scripting / SQL Injection
by Ariko-Security
By Source