Text Exploits
31,386 exploits tracked across all sources.
Max Network Technology BBSMAX 4.2 - 'threadid' Cross-Site Scripting
by Liscker
SAP GUI 7.10 - WebViewer3D Active-X JIT-Spray
by Alexey Sintsov
Lenovo Hotkey Driver 5.33 - Local Privilege Escalation
by Chilik Tamir
Uebimiau Webmail 3.2.0-2.0 - Email Disclosure
by Z3r0c0re_ R4vax
PHP File Sharing System 1.5.1 - Multiple Vulnerabilities
by blake
NUs Newssystem <1.02 - SQL Injection
SQL injection vulnerability in Nus.php in NUs Newssystem 1.02 allows remote attackers to execute arbitrary SQL commands via the id parameter.
by n3w7u
MH Products kleinanzeigenmarkt - SQL Injection
SQL injection vulnerability in search.php in MH Products kleinanzeigenmarkt allows remote attackers to execute arbitrary SQL commands via the c parameter.
by Easy Laster
Joomla! Component com_hezacontent 1.0 - 'id' SQL Injection
by kaMtiEz
SpamAssassin Milter Plugin <0.3.1 - RCE
The mlfi_envrcpt function in spamass-milter.cpp in SpamAssassin Milter Plugin 0.3.1, when using the expand option, allows remote attackers to execute arbitrary system commands via shell metacharacters in the RCPT TO field of an email message.
by kingcope
IBM ENOVIA SmarTeam - 'LoginPage.aspx' Cross-Site Scripting
by Lament
Tribisur < 2.1 - Remote File Inclusion via Theme Parameter
Directory traversal vulnerability in modules/hayoo/index.php in Tribisur 2.1, 2.0, and earlier, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary files via directory traversal sequences in the theme parameter. NOTE: some of these details are obtained from third party information.
by cr4wl3r
DZ Auktionshaus 'V4.rgo' - 'id' news.php?SQL Injection
by Easy Laster
Pre E-Learning Portal - 'search_result.asp' SQL Injection
by NoGe
Max Network Technology BBSMAX 4.2 - 'post.aspx' Cross-Site Scripting
by Liscker
ASPCode CMS 1.5.8 - 'default.asp' Multiple Cross-Site Scripting Vulnerabilities
by Alberto Fontanella
Bild Flirt Community 2.0 - SQL Injection
SQL injection vulnerability in index.php in Bild Flirt Community 2.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.
by Easy Laster
Microsoft Windows XP/2000 - Help File Relative Path Remote Command Execution
by Secumania
Google Chrome 4.0.249 - XML Denial of Service (PoC)
by Blade
phpCOIN 1.2.1 - Path Traversal via mod Parameter
Directory traversal vulnerability in mod.php in phpCOIN 1.2.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the mod parameter.
by _mlk_
dev4u CMS - SQL Injection via go_target.php kontent_id Parameter
SQL injection vulnerability in go_target.php in dev4u CMS allows remote attackers to execute arbitrary SQL commands via the kontent_id parameter.
by Easy Laster
By Source