Text Exploits

31,386 exploits tracked across all sources.

Sort: Activity Stars
CVE-2010-2038 EXPLOITDB text VERIFIED
gpEasy CMS 1.6.2 - Authenticated Stored Cross-Site Scripting via gpcontent Parameter
Cross-site scripting (XSS) vulnerability in include/tool/editing_files.php in gpEasy CMS 1.6.2 allows remote authenticated users, with Edit privileges, to inject arbitrary web script or HTML via the gpcontent parameter to index.php. NOTE: some of these details are obtained from third party information.
by High-Tech Bridge SA
CVE-2010-5046 EXPLOITDB text VERIFIED
ecoCMS - Cross-Site Scripting via Admin.php p Parameter
Cross-site scripting (XSS) vulnerability in admin.php in ecoCMS allows remote attackers to inject arbitrary web script or HTML via the p parameter.
by High-Tech Bridge SA
EIP-2026-106379 EXPLOITDB text VERIFIED
DB[CMS] 2.0.1 - SQL Injection
by Pokeng
EIP-2026-105352 EXPLOITDB text VERIFIED
B-Hind CMS (tiny_mce) - Arbitrary File Upload
by innrwrld & h00die
EIP-2026-119342 EXPLOITDB text VERIFIED
Abyss Web Server X1 - Cross-Site Request Forgery
by John Leitch
EIP-2026-112553 EXPLOITDB text VERIFIED
Tainos Webdesign (All Scripts) - SQL Injection / Cross-Site Scripting / HTML Injection
by CoBRa_21
EIP-2026-111403 EXPLOITDB text VERIFIED
PonVFTP - Insecure Cookie Authentication Bypass
by SkuLL-HackeR
EIP-2026-110804 EXPLOITDB text VERIFIED
PHP-Fusion 4.01 - SQL Injection
by Ma3sTr0-Dz
EIP-2026-110704 EXPLOITDB text VERIFIED
PHP Gamepage - SQL Injection
by v4lc0m87
EIP-2026-109773 EXPLOITDB text VERIFIED
MyNews CMS 1.0 - SQL Injection / Local File Inclusion / Cross-Site Scripting
by mr_me
EIP-2026-109462 EXPLOITDB text VERIFIED
MidiCart PHP/ASP - Arbitrary File Upload
by DigitALL
EIP-2026-108341 EXPLOITDB text VERIFIED
Joomla! Component com_event - SQL Injection
by anonymous
EIP-2026-108340 EXPLOITDB text VERIFIED
Joomla! Component com_event - Multiple Vulnerabilities
by ALTBTA
EIP-2026-108321 EXPLOITDB text VERIFIED
Joomla! Component com_crowdsource - SQL Injection
by ByEge
CVE-2010-2047 EXPLOITDB text VERIFIED
JE CMS 1.0.0 and 1.1 - SQL Injection via CategoryID Parameter
SQL injection vulnerability in index.php in JE CMS 1.0.0 and 1.1 allows remote attackers to execute arbitrary SQL commands via the categoryid parameter in a viewcategory action. NOTE: some of these details are obtained from third party information.
by AntiSecurity
EIP-2026-100487 EXPLOITDB text VERIFIED
Platnik 8.1.1 - Multiple SQL Injections
by podatnik386
CVE-2010-2016 EXPLOITDB text VERIFIED
Iceberg CMS - SQL Injection via p_id Parameter
SQL injection vulnerability in details.php in Iceberg CMS allows remote attackers to execute arbitrary SQL commands via the p_id parameter.
by cyberlog
EIP-2026-112552 EXPLOITDB text VERIFIED
Tainos - Multiple Vulnerabilities
by XroGuE
EIP-2026-109162 EXPLOITDB text VERIFIED
LinPHA 1.3.2 - 'rotate.php' Remote Command Execution
by Sn!pEr.S!Te Hacker
CVE-2010-2122 EXPLOITDB text VERIFIED
com_simpledownload < 0.9.6 - Path Traversal via Controller Parameter
Directory traversal vulnerability in the SimpleDownload (com_simpledownload) component before 0.9.6 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php.
by Xr0b0t
CVE-2010-2122 EXPLOITDB text VERIFIED
com_simpledownload < 0.9.6 - Path Traversal via Controller Parameter
Directory traversal vulnerability in the SimpleDownload (com_simpledownload) component before 0.9.6 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php.
by ALTBTA
EIP-2026-107703 EXPLOITDB text VERIFIED
I-Vision CMS - Cross-Site Scripting / SQL Injection
by Ariko-Security
EIP-2026-107087 EXPLOITDB text
File Thingie 2.5.5 - File Security Bypass
by Jeremiah Talamantes
EIP-2026-106804 EXPLOITDB text VERIFIED
EgO 0.7b - 'FCKeditor' Arbitrary File Upload
by ITSecTeam
EIP-2026-106321 EXPLOITDB text VERIFIED
Cybertek CMS - Local File Inclusion
by XroGuE