Text Exploits

31,386 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-108088 EXPLOITDB text VERIFIED
JForum 2.08 - BBCode Color Tag HTML Injection
by Giorgio Fedon
EIP-2026-106351 EXPLOITDB text VERIFIED
damianov.net Shoutbox - Cross-Site Scripting
by Valentin Hoebel
EIP-2026-105501 EXPLOITDB text
BlaB! Lite 0.5 - Remote File Inclusion
by Sn!pEr.S!Te Hacker
EIP-2026-102736 EXPLOITDB text VERIFIED
Samba 3.4.7/3.5.1 - Denial of Service
by laurent gaffie
EIP-2026-119336 EXPLOITDB text VERIFIED
Zervit Web Server 0.4 - Source Disclosure/Download
by Dr_IDE
EIP-2026-119335 EXPLOITDB text VERIFIED
Zervit Web Server 0.4 - Directory Traversals
by Dr_IDE
EIP-2026-118912 EXPLOITDB text VERIFIED
MiniWebsvr 0.0.10 - Directory Traversal / Listing
by Dr_IDE
CVE-2010-1994 EXPLOITDB text VERIFIED
TomatoCMS < 2.0.5 - SQL Injection via News Search q Parameter
SQL injection vulnerability in index.php in TomatoCMS before 2.0.5 allows remote attackers to execute arbitrary SQL commands via the q parameter in conjunction with a /news/search PATH_INFO.
by Russ McRee
EIP-2026-111399 EXPLOITDB text
PolyPager 1.0rc10 - 'FCKeditor' Arbitrary File Upload
by eidelweiss
EIP-2026-108483 EXPLOITDB text VERIFIED
Joomla! Component com_PHP 0.1 - Local File Inclusion
by Chip d3 bi0s
EIP-2026-106650 EXPLOITDB text
e-webtech - 'fixed_page.asp' SQL Injection
by FL0RiX
EIP-2026-104844 EXPLOITDB text
4Images 1.7.7 - 'image_utils.php' Remote Command Execution
by Sn!pEr.S!Te Hacker
CVE-2010-0816 EXPLOITDB text VERIFIED
Microsoft Outlook Express <6 SP1 - RCE
Integer overflow in inetcomm.dll in Microsoft Outlook Express 5.5 SP2, 6, and 6 SP1; Windows Live Mail on Windows XP SP2 and SP3, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7; and Windows Mail on Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allows remote e-mail servers and man-in-the-middle attackers to execute arbitrary code via a crafted (1) POP3 or (2) IMAP response, as demonstrated by a certain +OK response on TCP port 110, aka "Outlook Express and Windows Mail Integer Overflow Vulnerability."
by Francis Provencher
EIP-2026-113475 EXPLOITDB text VERIFIED
Woodall Creative - SQL Injection
by XroGuE
EIP-2026-112911 EXPLOITDB text
Uploader 0.1.5 - Multiple Vulnerabilities
by indoushka
EIP-2026-109328 EXPLOITDB text
Marinet CMS - SQL Injection / Cross-Site Scripting / HTML Injection
by CoBRa_21
EIP-2026-109327 EXPLOITDB text VERIFIED
Marinet CMS - SQL Injection
by XroGuE
EIP-2026-108795 EXPLOITDB text VERIFIED
Joomla! Component mod_VisitorData 1.1 - Remote code Execution
by Chip d3 bi0s
EIP-2026-107205 EXPLOITDB text VERIFIED
Free Advertisment CMS - 'user_info.php' SQL Injection
by XroGuE
EIP-2026-106447 EXPLOITDB text
Digital College 1.0 - Arbitrary File Upload
by indoushka
EIP-2026-104869 EXPLOITDB text VERIFIED
724CMS Enterprise 4.59 - 'section.php' SQL Injection
by CoBRa_21
EIP-2026-104868 EXPLOITDB text VERIFIED
724CMS Enterprise 4.59 - 'section.php' Local File Inclusion
by CoBRa_21
EIP-2026-100294 EXPLOITDB text VERIFIED
e-webtech - 'page.asp' SQL Injection
by CoBRa_21
EIP-2026-113174 EXPLOITDB text VERIFIED
Waibrasil - Local/Remote File Inclusion
by eXeSoul
CVE-2010-1925 EXPLOITDB text VERIFIED
tekno.Portal 0.1b - SQL Injection via makale.php id Parameter
SQL injection vulnerability in makale.php in tekno.Portal 0.1b allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2006-2817.
by CoBRa_21