Text Exploits

31,386 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-111870 EXPLOITDB text
SAGU-PRO 1.0 - Multiple Remote File Inclusions
by mat
EIP-2026-109334 EXPLOITDB text VERIFIED
MassMirror Uploader - Multiple Remote File Inclusions
by cr4wl3r
CVE-2010-1983 EXPLOITDB text VERIFIED
redTWITTER (com_redtwitter) 1.0.x - Path Traversal via View Parameter
Directory traversal vulnerability in the redTWITTER (com_redtwitter) component 1.0.x including 1.0b11 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the view parameter to index.php. NOTE: some of these details are obtained from third party information.
by NoGe
CVE-2010-1531 EXPLOITDB text VERIFIED
Joomla! com_redshop 1.0.x - Path Traversal
Directory traversal vulnerability in the redSHOP (com_redshop) component 1.0.x for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the view parameter to index.php.
by NoGe
CVE-2010-1306 EXPLOITDB text VERIFIED
com_joomlapicasa2 2.0 and 2.0.5 - Path Traversal via Controller Parameter
Directory traversal vulnerability in the Picasa (com_joomlapicasa2) component 2.0 and 2.0.5 for Joomla! allows remote attackers to read arbitrary local files via a .. (dot dot) in the controller parameter to index.php. NOTE: some of these details are obtained from third party information.
by Vrs-hCk
EIP-2026-108594 EXPLOITDB text VERIFIED
Joomla! Component com_wisroyq 1.1 - Local File Inclusion
by NoGe
EIP-2026-108534 EXPLOITDB text VERIFIED
Joomla! Component com_serie - SQL Injection
by DevilZ TM
EIP-2026-108508 EXPLOITDB text VERIFIED
Joomla! Component com_ranking - SQL Injection
by DevilZ TM
EIP-2026-108492 EXPLOITDB text VERIFIED
Joomla! Component com_press - SQL Injection
by DevilZ TM
CVE-2008-7176 EXPLOITDB text VERIFIED
Facil CMS 0.1RC - Path Traversal via change_lang or modload Parameter
Multiple directory traversal vulnerabilities in Facil CMS 0.1RC allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) change_lang parameter to index.php or (2) modload parameter to modules.php.
by eidelweiss
EIP-2026-104987 EXPLOITDB text VERIFIED
Advanced Management For Services Sites - Bypass Create And Download SQL Backup
by indoushka
EIP-2026-104410 EXPLOITDB text VERIFIED
QuickEStore 6.1 - Backup Dump
by indoushka
EIP-2026-111198 EXPLOITDB text VERIFIED
phpscripte24 Vor und Rückwärts Auktions System - Blind SQL Injection
by Easy Laster
CVE-2009-3119 EXPLOITDB text
Download System mSF for PHP-Fusion - SQL Injection via screen.php view_id Parameter
SQL injection vulnerability in screen.php in the Download System mSF (dsmsf) module for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the view_id parameter.
by Inj3ct0r
CVE-2010-1350 EXPLOITDB text VERIFIED
com_jp_jobs < 1.4.1 - SQL Injection via id Parameter
SQL injection vulnerability in the JP Jobs (com_jp_jobs) component 1.4.1 and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action to index.php.
by Valentin
EIP-2026-107140 EXPLOITDB text
Flatpress 0.909.1 - Persistent Cross-Site Scripting
by ITSecTeam
EIP-2026-103949 EXPLOITDB text
Java Mini Web Server 1.0 - Directory Traversal / Cross-Site Scripting
by cp77fk4r
EIP-2026-101687 EXPLOITDB text
Edimax AR-7084GA Router - Cross-Site Request Forgery / Persistent Cross-Site Scripting
by l3D
EIP-2026-100529 EXPLOITDB text
SafeSHOP 1.5.6 - Cross-Site Scripting / Multiple Cross-Site Request Forgery Vulnerabilities
by cp77fk4r
CVE-2011-5165 EXPLOITDB text VERIFIED
Free MP3 CD Ripper <= 2.6 - Stack-based Buffer Overflow via Crafted WAV File
Stack-based buffer overflow in Free MP3 CD Ripper 1.1, 2.6 and earlier, when converting a file, allows user-assisted remote attackers to execute arbitrary code via a crafted .wav file.
by Richard leahy
EIP-2026-115352 EXPLOITDB text VERIFIED
Google Chrome 4.1 - Out-of-Bounds Array Indexing
by Tobias Klein
EIP-2026-113052 EXPLOITDB text
Velhost Uploader Script 1.2 - Local File Inclusion
by cr4wl3r
EIP-2026-108463 EXPLOITDB text VERIFIED
Joomla! Component com_ops - SQL Injection
by DevilZ TM
EIP-2026-108444 EXPLOITDB text VERIFIED
Joomla! Component com_menu - SQL Injection
by DevilZ TM
EIP-2026-108350 EXPLOITDB text VERIFIED
Joomla! Component com_football - SQL Injection
by DevilZ TM