Text Exploits

31,386 exploits tracked across all sources.

Sort: Activity Stars
CVE-2008-6210 EXPLOITDB text VERIFIED
dream4 Koobi 4.4 and 5.4 - SQL Injection via img_id Parameter
SQL injection vulnerability in index.php in dream4 Koobi 4.4 and 5.4 allows remote attackers to execute arbitrary SQL commands via the img_id parameter in the gallerypic page.
by BILGE_KAGAN
EIP-2026-106319 EXPLOITDB text
Cybershade CMS 0.2 - Remote File Inclusion
by Mr.SeCreT
EIP-2026-106118 EXPLOITDB text VERIFIED
com_webcamxp - Cross-Site Scripting
by Pyske
EIP-2026-106117 EXPLOITDB text VERIFIED
com_jm-recommend - Cross-Site Scripting
by Pyske
EIP-2026-113344 EXPLOITDB text
Webring - Cross-Site Scripting
by indoushka
EIP-2026-113037 EXPLOITDB text VERIFIED
vCard PRO 3.1 - Cross-Site Scripting
by indoushka
EIP-2026-112910 EXPLOITDB text VERIFIED
Upload-Point 1.6 Beta - Arbitrary File Upload
by indoushka
EIP-2026-112740 EXPLOITDB text
TomatoCart - Backup
by indoushka
EIP-2026-112545 EXPLOITDB text
ta3arof [dating] Script (Arabic Version) - Arbitrary File Upload
by indoushka
EIP-2026-112414 EXPLOITDB text VERIFIED
Squito Gallery 1.0 - Cross-Site Scripting
by indoushka
EIP-2026-111892 EXPLOITDB text VERIFIED
SaphpLesson 4.0 food - Remote File Inclusion
by indoushka
EIP-2026-111875 EXPLOITDB text VERIFIED
Saibal Download Area 2.0 - Arbitrary File Upload
by indoushka
EIP-2026-111652 EXPLOITDB text
Quiz - Cross-Site Scripting
by indoushka
EIP-2026-111204 EXPLOITDB text
PHPShop 0.6 - Bypass
by indoushka
CVE-2009-4469 EXPLOITDB text VERIFIED
phpPowerCards 2.0 - Cross-Site Scripting via PATH_INFO, archiv, or subcat Parameter
Multiple cross-site scripting (XSS) vulnerabilities in pagenumber.inc.php in phpPowerCards 2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) PATH_INFO, the (2) archiv parameter, and the (3) subcat parameter.
by indoushka
CVE-2009-4446 EXPLOITDB text VERIFIED
phpInstantGallery 1.1 - Cross-Site Scripting via PATH_INFO
Cross-site scripting (XSS) vulnerability in admin.php in phpInstantGallery 1.1 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
by indoushka
EIP-2026-110934 EXPLOITDB text
phPay 2.2a - Backup
by indoushka
EIP-2026-110924 EXPLOITDB text
phpAuction - Cross-Site Scripting
by indoushka
EIP-2026-110780 EXPLOITDB text VERIFIED
PHP Uploader Downloader 2.0 - Cross-Site Scripting
by indoushka
EIP-2026-110779 EXPLOITDB text VERIFIED
PHP Uploader Downloader 2.0 - Arbitrary File Upload
by indoushka
EIP-2026-110701 EXPLOITDB text VERIFIED
PHP Football 1.0 - Cross-Site Scripting
by indoushka
CVE-2005-0952 EXPLOITDB text VERIFIED
PaFileDB 3.1 - Cross-Site Scripting via id Parameter
Cross-site scripting vulnerability in pafiledb.php in PaFileDB 3.1 allows remote attackers to inject arbitrary web script or HTML via the id parameter.
by indoushka
EIP-2026-110371 EXPLOITDB text VERIFIED
osCommerce 2.2rc2a - Bypass/Create and Download Backup
by indoushka
EIP-2026-109992 EXPLOITDB text
Nuked-klaN SP4 - Remote File Inclusion
by indoushka
EIP-2026-109989 EXPLOITDB text VERIFIED
Nuked-klaN 1.7.7 - Remote File Inclusion
by indoushka