Text Exploits

31,386 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-106457 EXPLOITDB text
DirectAdmin 1.34.4 - Multiple Cross-Site Request Forgerys
by K053
EIP-2026-103935 EXPLOITDB text VERIFIED
IBM Lotus Notes 6.5.x - 'names.nsf' Cross-Site Scripting
by Lament
EIP-2026-103934 EXPLOITDB text VERIFIED
IBM Lotus Notes 6.5.6 - 'names.nsf' Open Redirection
by Lament
CVE-2010-1269 EXPLOITDB text VERIFIED
phpscripte24 Niedrig Gebote Pro Auktions System II - SQL Injection via auktion.php id_auk Parameter
SQL injection vulnerability in auktion.php in phpscripte24 Niedrig Gebote Pro Auktions System II allows remote attackers to execute arbitrary SQL commands via the id_auk parameter.
by Easy Laster
EIP-2026-115105 EXPLOITDB text VERIFIED
Crimson Editor - Overwrite (SEH)
by sharpe
EIP-2026-112596 EXPLOITDB text VERIFIED
tenfourzero.net Shutter 0.1.4 - 'admin.html' Multiple SQL Injections
by blake
EIP-2026-112334 EXPLOITDB text VERIFIED
SOFTSAURUS 2.01 - Multiple Remote File Inclusions
by cr4wl3r
EIP-2026-112183 EXPLOITDB text VERIFIED
SiteDone Custom Edition 2.0 - SQL Injection / Cross-Site Scripting
by d3v1l
CVE-2010-1270 EXPLOITDB text VERIFIED
Multi Auktions Komplett System 2 - SQL Injection
SQL injection vulnerability in auktion.php in Multi Auktions Komplett System 2 allows remote attackers to execute arbitrary SQL commands via the id_auk parameter.
by Easy Laster
EIP-2026-110930 EXPLOITDB text VERIFIED
phpAuthent 0.2.1 - SQL Injection
by Gamoscu
EIP-2026-110584 EXPLOITDB text VERIFIED
philboard 1.02 - SQL Injection
by ViRuS_HiMa
EIP-2026-109853 EXPLOITDB text VERIFIED
nensor CMS 2.01 - Multiple Vulnerabilities
by cr4wl3r
EIP-2026-108990 EXPLOITDB text VERIFIED
Kempt SiteDone 2.0 - '/detail.php' Cross-Site Scripting / SQL Injection
by d3v1l
EIP-2026-106431 EXPLOITDB text VERIFIED
DewNewPHPLinks 2.1.0.1 - Local File Inclusion
by ITSecTeam
EIP-2026-102498 EXPLOITDB text VERIFIED
ManageEngine ServiceDesk Plus 7.6 - woID SQL Injection
by Nahuel Grisolia
CVE-2010-1344 EXPLOITDB text VERIFIED
Cookex Agency CKForms <1.3.3 - SQL Injection
SQL injection vulnerability in the Cookex Agency CKForms (com_ckforms) component 1.3.3 for Joomla! allows remote attackers to execute arbitrary SQL commands via the fid parameter in a detail action to index.php.
by ALTBTA
CVE-2010-1225 EXPLOITDB text VERIFIED
Microsoft Virtual PC <2007 Gold & SP1 - Memory Corruption
The memory-management implementation in the Virtual Machine Monitor (aka VMM or hypervisor) in Microsoft Virtual PC 2007 Gold and SP1, Virtual Server 2005 Gold and R2 SP1, and Windows Virtual PC does not properly restrict access from the guest OS to memory locations in the VMM work area, which allows context-dependent attackers to bypass certain anti-exploitation protection mechanisms on the guest OS via crafted input to a vulnerable application. NOTE: the vendor reportedly found that only systems with an otherwise vulnerable application are affected, because "the memory areas accessible from the guest cannot be leveraged to achieve either remote code execution or elevation of privilege and ... no data from the host is exposed to the guest OS."
by Core Security
CVE-2010-1042 EXPLOITDB text VERIFIED
Microsoft Windows Media Player 11 - Memory Corruption
Microsoft Windows Media Player 11 does not properly perform colorspace conversion, which allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted .AVI file. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by ITSecTeam
EIP-2026-111487 EXPLOITDB text
Preisschlacht Multi Liveshop System - 'index.php?aid' SQL Injection
by Easy Laster
EIP-2026-111437 EXPLOITDB text
PostNuke FormExpress Module - Blind SQL Injection
by Ali Abbasi
EIP-2026-110993 EXPLOITDB text VERIFIED
PHPBB2 Plus 1.53 - 'kb.php' SQL Injection
by Gamoscu
EIP-2026-110830 EXPLOITDB text
PHP-Nuke - ratedownload SQL Injection
by ITSecTeam
EIP-2026-108589 EXPLOITDB text VERIFIED
Joomla! Component com_vxdate - Multiple Vulnerabilities
by MustLive
EIP-2026-108377 EXPLOITDB text
Joomla! Component com_include - SQL Injection
by DevilZ TM
CVE-2010-1345 EXPLOITDB text VERIFIED
Cookex Agency CKForms <1.3.3 - Path Traversal
Directory traversal vulnerability in the Cookex Agency CKForms (com_ckforms) component 1.3.3 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter to index.php.
by ALTBTA