Text Exploits
31,386 exploits tracked across all sources.
Joomla! Component com_rsgallery2 2.0 - 'catid' SQL Injection
by snakespc
Creative SplashWorks-SplashSite - 'page.php' Blind SQL Injection
by AtT4CKxT3rR0r1ST
IBM DB2 - 'kuddb2' Remote Denial of Service
by Evgeny Legerov
phpunity.newsmanager - Path Traversal
Directory traversal vulnerability in misc/tell_a_friend/tell.php in phpunity.newsmanager allows remote attackers to read arbitrary files via a .. (dot dot) in the id parameter.
by kaMtiEz
JE Event Calendars (com_jeeventcalendar) 1.0 - SQL Injection
SQL injection vulnerability in the JE Event Calendars (com_jeeventcalendar) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the event_id parameter in an event action to index.php.
by B-HUNT3|2
Parkview Consultants SimpleFAQ - SQL Injection via catid Parameter
SQL injection vulnerability in the Parkview Consultants SimpleFAQ (com_simplefaq) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in a display action to index.php.
by AtT4CKxT3rR0r1ST
Ossolution Team Documents Seller <2.5.1 - SQL Injection
SQL injection vulnerability in the Ossolution Team Documents Seller (aka DMS) (com_dms) component 2.5.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the category_id parameter in a view_category action to index.php.
by kaMtiEz
(nv2) Awards 1.1.0 - SQL Injection via id Parameter
SQL injection vulnerability in index.php in (nv2) Awards 1.1.0, a modification for Invision Power Board, allows remote attackers to execute arbitrary SQL commands via the id parameter in a view action.
by fred777
dotProject 2.1.3 - Cross-Site Scripting / Improper Permissions
by h00die
Xerox Workcenter 4150 - Remote Buffer Overflow (PoC)
by Francis Provencher
PHP Product Catalog - Cross-Site Request Forgery (Change Administrator Password)
by bi0
Joomla! Component Jreservation - Blind SQL Injection
by B-HUNT3|2
JE Quiz (com_jequizmanagement) 1.b01 - SQL Injection via eid Parameter
SQL injection vulnerability in the JE Quiz (com_jequizmanagement) component 1.b01 for Joomla! allows remote attackers to execute arbitrary SQL commands via the eid parameter in a question action to index.php.
by B-HUNT3|2
Ingres Database 9.3 - Heap Buffer Overflow
by Evgeny Legerov
hybserv2 1.9.2-1.9.4 - Denial of Service via MemoServ Private Message
mystring.c in hybserv in IRCD-Hybrid (aka Hybrid2 IRC Services) 1.9.2 through 1.9.4 allows remote attackers to cause a denial of service (daemon crash) via a ":help \t" private message to the MemoServ service.
by Julien Cristau
Comtrend CT-507IT ADSL Router - Cross-Site Scripting via scvrtsrv.cmd srvName Parameter
Cross-site scripting (XSS) vulnerability in scvrtsrv.cmd in Comtrend CT-507IT ADSL Router allows remote attackers to inject arbitrary web script or HTML via the srvName parameter.
by Yoyahack
NovaBoard 1.1.2 - SQL Injection via forums[] Parameter
SQL injection vulnerability in index.php in NovaBoard 1.1.2 allows remote attackers to execute arbitrary SQL commands via the forums[] parameter in a search action.
by Delibey
Joomla! com_jvideodirect 1.1 RC3b - SQL Injection
SQL injection vulnerability in the jVideoDirect (com_jvideodirect) component 1.1 RC3b for Joomla! allows remote attackers to execute arbitrary SQL commands via the v parameter to index.php.
by B-HUNT3|2
Joomla! Component com_kunena - Blind SQL Injection
by B-HUNT3|2
com_ccnewsletter 1.0.5 - Path Traversal via Controller Parameter
Directory traversal vulnerability in the ccNewsletter (com_ccnewsletter) component 1.0.5 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller parameter in a ccnewsletter action to index.php.
by AtT4CKxT3rR0r1ST
CVSS 5.8
By Source