Text Exploits

31,386 exploits tracked across all sources.

Sort: Activity Stars
CVE-2010-1300 EXPLOITDB text
Yamamah (Dove Photo Album) 1.00 - SQL Injection
SQL injection vulnerability in index.php in Yamamah (aka Dove Photo Album) 1.00 allows remote attackers to execute arbitrary SQL commands via the calbums parameter.
by indoushka
CVE-2008-7254 EXPLOITDB text VERIFIED
Irmin CMS 0.5 and 0.6 BETA2 - Path Traversal via _Root_Path Parameter
Directory traversal vulnerability in includes/template-loader.php in Irmin CMS (formerly Pepsi CMS) 0.5 and 0.6 BETA2, when register_globals is enabled, allows remote attackers to include and execute arbitrary files via a .. (dot dot) in the _Root_Path parameter. NOTE: some of these details are obtained from third party information.
by eidelweiss
EIP-2026-118383 EXPLOITDB text VERIFIED
CompleteFTP Server - Directory Traversal
by zombiefx
CVE-2010-2335 EXPLOITDB text
Yamamah Photo Gallery 1.00 - SQL Injection via News Parameter
SQL injection vulnerability in index.php in Yamamah Photo Gallery 1.00, as distributed before 20100618, allows remote attackers to execute arbitrary SQL commands via the news parameter.
by indoushka
EIP-2026-113186 EXPLOITDB text
Wazzum Dating Software - Multiple Vulnerabilities
by EL-KAHINA
EIP-2026-112273 EXPLOITDB text
Snipe Photo Gallery - Bypass Arbitrary File Upload
by indoushka
EIP-2026-111900 EXPLOITDB text
Satellite-X 4.0 - Authentication Bypass
by indoushka
CVE-2010-1309 EXPLOITDB text VERIFIED
Irmin CMS <0.6 BETA2 - Path Traversal
Directory traversal vulnerability in Irmin CMS (formerly Pepsi CMS) 0.6 BETA2 allows remote attackers to read arbitrary files via a .. (dot dot) in the w parameter to index.php.
by eidelweiss
EIP-2026-109039 EXPLOITDB text VERIFIED
kora - Reinstall Admin Information
by indoushka
EIP-2026-109009 EXPLOITDB text VERIFIED
KimsQ 040109 - Multiple Remote File Inclusions
by mat
EIP-2026-108361 EXPLOITDB text VERIFIED
Joomla! Component com_guide - SQL Injection
by DevilZ TM
EIP-2026-107683 EXPLOITDB text VERIFIED
HuronCMS - 'index.php' Multiple SQL Injections
by mat
EIP-2026-107682 EXPLOITDB text VERIFIED
Huron CMS 8 11 2007 - Authentication Bypass
by mat
EIP-2026-107639 EXPLOITDB text
Hosting-PHP-dynamic - Authentication Bypass
by indoushka
EIP-2026-107060 EXPLOITDB text
Faweb_2 - Multiple Vulnerabilities
by indoushka
EIP-2026-107037 EXPLOITDB text
FaMarket 2 - Authentication Bypass
by indoushka
EIP-2026-107022 EXPLOITDB text
Fa-Ads - Authentication Bypass
by indoushka
EIP-2026-107021 EXPLOITDB text
Fa Home - Authentication Bypass
by indoushka
EIP-2026-106416 EXPLOITDB text
Denapars Shop Script - Multiple Vulnerabilities
by indoushka
EIP-2026-111697 EXPLOITDB text VERIFIED
React software - Local File Inclusion
by SNK
EIP-2026-111454 EXPLOITDB text VERIFIED
Powie's PSCRIPT Gästebuch 2.09 - SQL Injection
by Easy Laster
CVE-2010-2679 EXPLOITDB text VERIFIED
Joomla! com_weblinks - SQL Injection via id Parameter
SQL injection vulnerability in the Weblinks (com_weblinks) component in Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a view action to index.php.
by Pouya Daneshmand
EIP-2026-108563 EXPLOITDB text VERIFIED
Joomla! Component com_television - SQL Injection
by DevilZ TM
EIP-2026-108552 EXPLOITDB text VERIFIED
Joomla! Component com_spec - SQL Injection
by DevilZ TM
EIP-2026-108506 EXPLOITDB text VERIFIED
Joomla! Component com_radio - SQL Injection
by DevilZ TM