Text Exploits

31,386 exploits tracked across all sources.

Sort: Activity Stars
CVE-2010-1320 EXPLOITDB text VERIFIED
MIT Kerberos <1.8.2 - Use After Free
Double free vulnerability in do_tgs_req.c in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) 1.7.x and 1.8.x before 1.8.2 allows remote authenticated users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a request associated with (1) renewal or (2) validation.
by Joel Johnson
CVE-2010-5057 EXPLOITDB text
CMS Ariadna 1.1 - SQL Injection via detResolucion.php tipodoc_id Parameter
SQL injection vulnerability in detResolucion.php in CMS Ariadna 1.1 allows remote attackers to execute arbitrary SQL commands via the tipodoc_id parameter.
by Andrés Gómez
EIP-2026-118651 EXPLOITDB text VERIFIED
HTTP File Server 2.2 - Security Bypass / Denial of Service
by Luigi Auriemma
EIP-2026-114966 EXPLOITDB text VERIFIED
Avtech Software - ActiveX 'avc781viewer.dll' Multiple Vulnerabilities
by LiquidWorm
EIP-2026-110316 EXPLOITDB text
Openreglement 1.04 - Local File Inclusion / Remote File Inclusion
by cr4wl3r
EIP-2026-109817 EXPLOITDB text
N/X Web CMS (N/X WCMS 4.5) - Multiple Vulnerabilities
by eidelweiss
EIP-2026-109020 EXPLOITDB text VERIFIED
Kleophatra CMS 0.1.1 - 'module' Cross-Site Scripting
by anT!-Tr0J4n
CVE-2010-5056 EXPLOITDB text VERIFIED
GBU Facebook (com_gbufacebook) 1.0.5 - SQL Injection via face_id Parameter
SQL injection vulnerability in the GBU Facebook (com_gbufacebook) component 1.0.5 for Joomla! allows remote attackers to execute arbitrary SQL commands via the face_id parameter in a show_face action to index.php.
by kaMtiEz
EIP-2026-107146 EXPLOITDB text
Flex File Manager - Arbitrary File Upload
by Mr.MLL
CVE-2010-5058 EXPLOITDB text
CMS Ariadna 1.1 - SQL Injection via detResolucion.php res_id Parameter
SQL injection vulnerability in detResolucion.php in CMS Ariadna 1.1 allows remote attackers to execute arbitrary SQL commands via the res_id parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by Andrés Gómez
EIP-2026-101306 EXPLOITDB text
Huawei EchoLife HG520 - Remote Information Disclosure
by hkm
EIP-2026-101023 EXPLOITDB text
Huawei EchoLife HG520c - Modem Reset (Denial of Service)
by hkm
EIP-2026-100986 EXPLOITDB text
Apple iPhone 3.1.2 - '7D11' Model MB702LL Mobile Safari Denial of Service
by Matthew Bergin
CVE-2010-1497 EXPLOITDB text VERIFIED
dl_stats < 2.0 - Cross-Site Scripting via id Parameter
Cross-site scripting (XSS) vulnerability in download_proc.php in dl_stats before 2.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter.
by Valentin Hoebel
EIP-2026-111724 EXPLOITDB text VERIFIED
Redaxo 4.2.1 - Remote File Inclusion
by eidelweiss
EIP-2026-110317 EXPLOITDB text VERIFIED
Openscrutin 1.03 - Local File Inclusion / Remote File Inclusion
by cr4wl3r
CVE-2010-1603 EXPLOITDB text VERIFIED
Zimbllc Com Zimbcore - Path Traversal
Directory traversal vulnerability in the ZiMB Core (aka ZiMBCore or com_zimbcore) component 0.1 in the ZiMB Manager collection for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php.
by AntiSecurity
CVE-2010-1602 EXPLOITDB text VERIFIED
ZiMB Comment 0.8.1 - Path Traversal via Controller Parameter
Directory traversal vulnerability in the ZiMB Comment (com_zimbcomment) component 0.8.1 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php.
by AntiSecurity
CVE-2010-1495 EXPLOITDB text VERIFIED
Matamko com_matamko 1.01 - Path Traversal via Controller Parameter
Directory traversal vulnerability in the Matamko (com_matamko) component 1.01 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
by AntiSecurity
CVE-2010-1954 EXPLOITDB text VERIFIED
iNetLanka Multiple root (com_multiroot) 1.0 and 1.1 - Path Traversal via Controller Parameter
Directory traversal vulnerability in the iNetLanka Multiple root (com_multiroot) component 1.0 and 1.1 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php. NOTE: some of these details are obtained from third party information.
by AntiSecurity
CVE-2010-1953 EXPLOITDB text VERIFIED
iNetLanka Multiple Map (com_multimap) 1.0 - Path Traversal via Controller Parameter
Directory traversal vulnerability in the iNetLanka Multiple Map (com_multimap) component 1.0 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
by AntiSecurity
CVE-2010-1723 EXPLOITDB text VERIFIED
iNetLanka Contact Us Draw Root Map (com_drawroot) 1.1 - Path Traversal via Controller Parameter
Directory traversal vulnerability in the iNetLanka Contact Us Draw Root Map (com_drawroot) component 1.1 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php.
by AntiSecurity
CVE-2010-1717 EXPLOITDB text VERIFIED
iF surfALERT 1.2 - Path Traversal via Controller Parameter
Directory traversal vulnerability in the iF surfALERT (com_if_surfalert) component 1.2 for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the controller parameter to index.php.
by AntiSecurity
CVE-2010-1956 EXPLOITDB text VERIFIED
Gadget Factory (com_gadgetfactory) 1.0.0 and 1.5.0 - Path Traversal via Controller Parameter
Directory traversal vulnerability in the Gadget Factory (com_gadgetfactory) component 1.0.0 and 1.5.0 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php. NOTE: some of these details are obtained from third party information.
by AntiSecurity
EIP-2026-108360 EXPLOITDB text VERIFIED
Joomla! Component com_google - Local File Inclusion
by AntiSecurity