Text Exploits
31,386 exploits tracked across all sources.
KubeLabs PHPDug 2.0 - 'upcoming.php' Cross-Site Scripting
by indoushka
PerchaGallery <1.5b - SQL Injection
SQL injection vulnerability in the PerchaGallery (com_perchagallery) component before 1.5b for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in an editunidad action to index.php.
by FL0RiX
Docebo 3.6.0.2 (stable) - Local File Inclusion
by Zer0 Thunder
AR Web Content Manager (AWCM) 2.1 - Info Disclosure
AR Web Content Manager (AWCM) 2.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for control/db_backup.php.
by alnjm33
Gnome Panel 2.28.0 - Denial of Service (PoC)
by Pietro Oliva
D-LINK DKVM-IP8 - Firmware 2282_dlinkA4_p8_20071213 - XSS
Cross-site scripting (XSS) vulnerability in auth.asp on the D-LINK DKVM-IP8 with firmware 2282_dlinkA4_p8_20071213 allows remote attackers to inject arbitrary web script or HTML via the nickname parameter.
by POPCORN
D-LINK DKVM-IP8 - Firmware 2282_dlinkA4_p8_20071213 - XSS
Cross-site scripting (XSS) vulnerability in auth.asp on the D-LINK DKVM-IP8 with firmware 2282_dlinkA4_p8_20071213 allows remote attackers to inject arbitrary web script or HTML via the nickname parameter.
by POPCORN
Total MultiMedia Features - Sony Ericsson Phones Denial of Service (PoC)
by Aodrulez
Lebisoft Ziyaretci Defteri 7.4-7.5 - Info Disclosure
Lebisoft Ziyaretci Defteri 7.4 and 7.5 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for db/lebisoft.mdb.
by indoushka
Erolife AjxGaleri VT - Info Disclosure
Erolife AjxGaleri VT stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for db/ajxgaleri.mdb.
by LionTurk
LXR Cross Referencer 0.9.5 and 0.9.6 - Cross-Site Scripting via Ident Program i Parameter
Cross-site scripting (XSS) vulnerability in LXR Cross Referencer 0.9.5 and 0.9.6 allows remote attackers to inject arbitrary web script or HTML via the i parameter to the ident program.
by Dan Rosenberg
LineWeb 1.0.5 - Multiple Remote Vulnerabilities
by Ignacio Garrido
YP Portal MS-Pro Surumu 1.0 - Database Disclosure
by indoushka
Pay Per Minute Video Chat Script 2.0-2.1 - Cross-Site Scripting via id Parameter or model Parameter
Multiple cross-site scripting (XSS) vulnerabilities in Pay Per Minute Video Chat Script 2.0 and 2.1 allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter to admin/memberviewdetails.php and the (2) model parameter to videos.php.
by R3d-D3V!L
WMNews - '/admin/wmnews.php' Cross-Site Scripting
by indoushka
Pay Per Minute Video Chat Script 2.x - SQL Injection / Multiple Cross-Site Scripting Vulnerabilities
by R3d-D3V!L
Pay Per Minute Video Chat Script 2.0-2.1 - SQL Injection via index_ie.php page Parameter
SQL injection vulnerability in index_ie.php in Pay Per Minute Video Chat Script 2.0 and 2.1 allows remote attackers to execute arbitrary SQL commands via the page parameter.
by R3d-D3V!L
By Source