Text Exploits

31,386 exploits tracked across all sources.

Sort: Activity Stars
CVE-2009-4458 EXPLOITDB text VERIFIED
FreePBX 2.5.2 and 2.6.0rc2 - Cross-Site Scripting via Tech Parameter and Description Parameter
Multiple cross-site scripting (XSS) vulnerabilities in FreePBX 2.5.2 and 2.6.0rc2, and possibly other versions, allow remote attackers to inject arbitrary web script or HTML via the (1) tech parameter to admin/admin/config.php during a trunks display action, the (2) description parameter during an Add Zap Channel action, and (3) unspecified vectors during an Add Recordings action.
by Global-Evolution
EIP-2026-106577 EXPLOITDB text
Dren's PHP Uploader - Arbitrary File Upload
by Cyb3r IntRue
EIP-2026-105690 EXPLOITDB text VERIFIED
Calendar Express 2.0 - SQL Injection
by BAYBORA
EIP-2026-104512 EXPLOITDB text
Yonja - Arbitrary File Upload
by indoushka
CVE-2009-4679 EXPLOITDB text VERIFIED
Joomla! com_if_nexus 1.5 - Path Traversal
Directory traversal vulnerability in the inertialFATE iF Portfolio Nexus (com_if_nexus) component 1.5 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the controller parameter to index.php.
by FL0RiX
EIP-2026-104171 EXPLOITDB text VERIFIED
ASP Simple Blog 3.0 - Arbitrary File Upload
by indoushka
EIP-2026-103310 EXPLOITDB text VERIFIED
PHP Forum ohne My SQL - Arbitrary File Upload
by wlhaan hacker
EIP-2026-103300 EXPLOITDB text VERIFIED
MySimpleFileUploader 1.6 - Arbitrary File Upload
by FormatXformat
EIP-2026-103275 EXPLOITDB text VERIFIED
egegen turkish script - SQL Injection
by FormatXformat
EIP-2026-112232 EXPLOITDB text VERIFIED
Smart PHP Uploader 1.0 - Arbitrary File Upload
by Phenom
EIP-2026-110778 EXPLOITDB text VERIFIED
PHP upload - 'unijimpe' Arbitrary File Upload
by wlhaan hacker
EIP-2026-109982 EXPLOITDB text VERIFIED
Nuke - SQL Injection
by FormatXformat
EIP-2026-109292 EXPLOITDB text
Mambo Component Material Suche 1.0 - SQL Injection
by Gamoscu
EIP-2026-109151 EXPLOITDB text VERIFIED
lineaCMS - Cross-Site Scripting
by Phenom
EIP-2026-108785 EXPLOITDB text
Joomla! Component memorybook 1.2 - Multiple Vulnerabilities
by jdc
CVE-2009-4578 EXPLOITDB text VERIFIED
Facileforms - Cross-Site Scripting via Itemid Parameter
Cross-site scripting (XSS) vulnerability in the Facileforms (com_facileforms) component for Joomla! and Mambo allows remote attackers to inject arbitrary web script or HTML via the Itemid parameter to index.php.
by Pyske
EIP-2026-108569 EXPLOITDB text VERIFIED
Joomla! Component com_trabalhe_conosco - Cross-Site Scripting
by Pyske
CVE-2009-4575 EXPLOITDB text VERIFIED
Joomla! com_qpersonel 1.0.2 RC2 - XSS
Cross-site scripting (XSS) vulnerability in the Q-Personel (com_qpersonel) component 1.0.2 RC2 for Joomla! allows remote attackers to inject arbitrary web script or HTML via the personel_sira parameter in a sirala action to index.php.
by Pyske
EIP-2026-108462 EXPLOITDB text
Joomla! Component com_oprykningspoint_mc - Cross-Site Scripting
by Pyske
EIP-2026-108380 EXPLOITDB text
Joomla! Component com_intuit - Local File Inclusion
by FL0RiX
CVE-2009-4583 EXPLOITDB text VERIFIED
Joomla DhForum Component - SQL Injection via id Parameter
SQL injection vulnerability in the DhForum (com_dhforum) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a grouplist action to index.php.
by ViRuSMaN
CVE-2009-4576 EXPLOITDB text VERIFIED
cmstactics com_beeheard 1.x - SQL Injection via category_id Parameter
SQL injection vulnerability in the BeeHeard (com_beeheard) component 1.x for Joomla! allows remote attackers to execute arbitrary SQL commands via the category_id parameter in a suggestions action to index.php.
by FL0RiX
EIP-2026-108254 EXPLOITDB text VERIFIED
Joomla! Component com_adagency - Local File Inclusion
by FL0RiX
EIP-2026-107834 EXPLOITDB text VERIFIED
Info Fisier 1.0 - SQL Injection
by AnGrY BoY
EIP-2026-107833 EXPLOITDB text VERIFIED
info fisier 1.0 - Multiple Vulnerabilities
by kaozc9