Text Exploits
31,386 exploits tracked across all sources.
MassMirror Uploader - Multiple Remote File Inclusions
by cr4wl3r
redTWITTER (com_redtwitter) 1.0.x - Path Traversal via View Parameter
Directory traversal vulnerability in the redTWITTER (com_redtwitter) component 1.0.x including 1.0b11 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the view parameter to index.php. NOTE: some of these details are obtained from third party information.
by NoGe
Joomla! com_redshop 1.0.x - Path Traversal
Directory traversal vulnerability in the redSHOP (com_redshop) component 1.0.x for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the view parameter to index.php.
by NoGe
com_joomlapicasa2 2.0 and 2.0.5 - Path Traversal via Controller Parameter
Directory traversal vulnerability in the Picasa (com_joomlapicasa2) component 2.0 and 2.0.5 for Joomla! allows remote attackers to read arbitrary local files via a .. (dot dot) in the controller parameter to index.php. NOTE: some of these details are obtained from third party information.
by Vrs-hCk
Joomla! Component com_wisroyq 1.1 - Local File Inclusion
by NoGe
Facil CMS 0.1RC - Path Traversal via change_lang or modload Parameter
Multiple directory traversal vulnerabilities in Facil CMS 0.1RC allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) change_lang parameter to index.php or (2) modload parameter to modules.php.
by eidelweiss
Advanced Management For Services Sites - Bypass Create And Download SQL Backup
by indoushka
phpscripte24 Vor und Rückwärts Auktions System - Blind SQL Injection
by Easy Laster
Download System mSF for PHP-Fusion - SQL Injection via screen.php view_id Parameter
SQL injection vulnerability in screen.php in the Download System mSF (dsmsf) module for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the view_id parameter.
by Inj3ct0r
com_jp_jobs < 1.4.1 - SQL Injection via id Parameter
SQL injection vulnerability in the JP Jobs (com_jp_jobs) component 1.4.1 and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action to index.php.
by Valentin
Java Mini Web Server 1.0 - Directory Traversal / Cross-Site Scripting
by cp77fk4r
Edimax AR-7084GA Router - Cross-Site Request Forgery / Persistent Cross-Site Scripting
by l3D
SafeSHOP 1.5.6 - Cross-Site Scripting / Multiple Cross-Site Request Forgery Vulnerabilities
by cp77fk4r
Free MP3 CD Ripper <= 2.6 - Stack-based Buffer Overflow via Crafted WAV File
Stack-based buffer overflow in Free MP3 CD Ripper 1.1, 2.6 and earlier, when converting a file, allows user-assisted remote attackers to execute arbitrary code via a crafted .wav file.
by Richard leahy
Google Chrome 4.1 - Out-of-Bounds Array Indexing
by Tobias Klein
By Source