Exploitdb Exploits
31,346 exploits tracked across all sources.
phpInstantGallery 1.1 - Cross-Site Scripting via PATH_INFO
Cross-site scripting (XSS) vulnerability in admin.php in phpInstantGallery 1.1 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
by indoushka
PHP Uploader Downloader 2.0 - Cross-Site Scripting
by indoushka
PHP Uploader Downloader 2.0 - Arbitrary File Upload
by indoushka
PaFileDB 3.1 - Cross-Site Scripting via id Parameter
Cross-site scripting vulnerability in pafiledb.php in PaFileDB 3.1 allows remote attackers to inject arbitrary web script or HTML via the id parameter.
by indoushka
osCommerce 2.2rc2a - Bypass/Create and Download Backup
by indoushka
kandalf upper 0.1 - Unauthenticated Arbitrary File Upload and Remote Code Execution via upper.php
Unrestricted file upload vulnerability in upper.php in kandalf upper 0.1 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in fileup/.
by indoushka
Green Desktiny <2.3.1 - SQL Injection
SQL injection vulnerability in news_detail.php in Green Desktiny 2.3.1, and possibly earlier versions, allows remote attackers to execute arbitrary SQL commands via the id parameter.
by kaMtiEz
FlatPress 0.909 - Cross-Site Scripting via PATH_INFO to contact.php, login.php, and search.php
Multiple cross-site scripting (XSS) vulnerabilities in FlatPress 0.909 allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to (1) contact.php, (2) login.php, and (3) search.php.
by indoushka
By Source