Text Exploits

31,392 exploits tracked across all sources.

Sort: Activity Stars
CVE-2009-2160 EXPLOITDB text VERIFIED
TorrentTrader Classic 1.09 - Info Disclosure
TorrentTrader Classic 1.09 allows remote attackers to (1) obtain configuration information via a direct request to phpinfo.php, which calls the phpinfo function; and allows remote attackers to (2) obtain other potentially sensitive information via a direct request to check.php.
by waraxe
CVE-2009-2159 EXPLOITDB text VERIFIED
TorrentTrader Classic 1.09 - Info Disclosure
backup-database.php in TorrentTrader Classic 1.09 does not require administrative authentication, which allows remote attackers to create and download a backup database by making a direct request and then retrieving a .gz file from backups/.
by waraxe
CVE-2009-2158 EXPLOITDB HIGH text VERIFIED
TorrentTrader Classic 1.09 - Info Disclosure
account-recover.php in TorrentTrader Classic 1.09 chooses random passwords from an insufficiently large set, which makes it easier for remote attackers to obtain a password via a brute-force attack.
by waraxe
CVSS 7.5
CVE-2009-2157 EXPLOITDB text VERIFIED
TorrentTrader Classic 1.09 - SQL Injection
Multiple SQL injection vulnerabilities in TorrentTrader Classic 1.09 allow remote authenticated users to execute arbitrary SQL commands via (1) the origmsg parameter to account-inbox.php; the categ parameter to (2) delreq.php and (3) admin-delreq.php; (4) the choice parameter to index.php; (5) the id parameter to modrules.php in an edited (aka edit) action; the (6) user, (7) torrent, (8) forumid, and (9) forumpost parameters to report.php; (10) the delmp parameter to take-deletepm.php; (11) the delreport parameter to takedelreport.php; (12) the delreq parameter to takedelreq.php; (13) the clases parameter to takestaffmess.php; and (14) the warndisable parameter to takewarndisable.php; and allow remote attackers to execute arbitrary SQL commands via (15) the wherecatin parameter to browse.php, (16) the limit parameter to today.php, and (17) the where parameter to torrents-details.php.
by waraxe
CVE-2009-2156 EXPLOITDB text VERIFIED
TorrentTrader Classic 1.09 - Authenticated Cross-Site Scripting via Multiple Input Fields
Multiple cross-site scripting (XSS) vulnerabilities in TorrentTrader Classic 1.09 allow remote authenticated users to inject arbitrary web script or HTML via (1) the Title field to requests.php, related to viewrequests.php; and (2) the Torrent Name field to torrents-upload.php, related to the logging of torrent uploads; and allow remote attackers to inject arbitrary web script or HTML via (3) the ttversion parameter to themes/default/footer.php, the (4) SITENAME and (5) CURUSER[username] parameters to themes/default/header.php, (6) the todayactive parameter to visitorstoday.php, (7) the activepeople parameter to visitorsnow.php, (8) the faq_categ[999][title] parameter to faq.php, and (9) the keepget parameter to torrents-details.php.
by waraxe
CVE-2009-2153 EXPLOITDB text VERIFIED
Impleo Music Collection 2.0 - Cross-Site Scripting via Sort Parameter
Cross-site scripting (XSS) vulnerability in index.php in Impleo Music Collection 2.0 allows remote attackers to inject arbitrary web script or HTML via the sort parameter.
by SirGod
CVE-2009-2151 EXPLOITDB text VERIFIED
AdaptWeb 0.9.2 - Path Traversal via Newlang Parameter
Directory traversal vulnerability in index.php in AdaptWeb 0.9.2 allows remote attackers to read arbitrary files via a .. (dot dot) in the newlang parameter.
by SirGod
CVE-2009-2122 EXPLOITDB text VERIFIED
Paolo Palmonari Photoracer <1.0 - SQL Injection
SQL injection vulnerability in viewimg.php in the Paolo Palmonari Photoracer plugin 1.0 for WordPress allows remote attackers to execute arbitrary SQL commands via the id parameter.
by Kacper
CVE-2009-2172 EXPLOITDB text VERIFIED
Radio and TV Player <vBulletin - XSS
Cross-site scripting (XSS) vulnerability in forum/radioandtv.php in the Radio and TV Player addon for vBulletin allows remote registered users to inject arbitrary web script or HTML via the station parameter.
by d3v1l
CVE-2009-2161 EXPLOITDB text VERIFIED
TorrentTrader Classic 1.09 - Path Traversal
Directory traversal vulnerability in backend/admin-functions.php in TorrentTrader Classic 1.09, when used on a case-insensitive web site, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the ss_uri parameter, in conjunction with a modified component name.
by waraxe
EIP-2026-112640 EXPLOITDB text VERIFIED
The Recipe Script 5 - Cross-Site Scripting
by ThE g0bL!N
CVE-2009-2146 EXPLOITDB text VERIFIED
SugarCRM < 5.2f - Authenticated Remote Code Execution via Compose Email File Upload
Unrestricted file upload vulnerability in the Compose Email feature in the Emails module in Sugar Community Edition (aka SugarCRM) before 5.2f allows remote authenticated users to execute arbitrary code by uploading a file with only an extension in its name, then accessing the file via a direct request to a modified filename under cache/modules/Emails/, as demonstrated using .php as the entire original name.
by USH
EIP-2026-111719 EXPLOITDB text VERIFIED
Recipe Script 5.0 - 'First Name' HTML Injection
by ThE g0bL!N
CVE-2009-2098 EXPLOITDB text VERIFIED
phPortal 1.0 - SQL Injection via Topicler id Parameter
SQL injection vulnerability in topicler.php in phPortal 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.
by Mehmet Ince
CVE-2009-2096 EXPLOITDB text VERIFIED
phpCollegeExchange 0.1.5c - SQL Injection
SQL injection vulnerability in house/listing_view.php in phpCollegeExchange 0.1.5c allows remote attackers to execute arbitrary SQL commands via the itemnr parameter.
by SirGod
CVE-2009-2095 EXPLOITDB text VERIFIED
Mundi Mail 0.8.2 - Remote Code Execution via Top Parameter
PHP remote file inclusion vulnerability in template/simpledefault/admin/_masterlayout.php in Mundi Mail 0.8.2, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the top parameter. NOTE: when allow_url_fopen is disabled, directory traversal attacks are possible to include and execute arbitrary local files.
by Br0ly
CVE-2009-2102 EXPLOITDB text VERIFIED
Joomla com_jumi 2.0.3 - SQL Injection
SQL injection vulnerability in the Jumi (com_jumi) component 2.0.3 and possibly other versions for Joomla allows remote attackers to execute arbitrary SQL commands via the fileid parameter to index.php.
by Chip d3 bi0s
CVE-2009-2100 EXPLOITDB text VERIFIED
JoomlaPraise Projectfork <2.0.10 - Path Traversal
Directory traversal vulnerability in the JoomlaPraise Projectfork (com_projectfork) component 2.0.10 for Joomla! allows remote attackers to read arbitrary files via directory traversal sequences in the section parameter to index.php.
by ByALBAYX
CVE-2009-2154 EXPLOITDB text VERIFIED
Impleo Music Collection 2.0 - SQL Injection
SQL injection vulnerability in admin/login.php in Impleo Music Collection 2.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the username parameter.
by SirGod
CVE-2009-1777 EXPLOITDB text VERIFIED
Matt Wright FormMail 1.92 - CRLF Injection via Redirect Parameter
CRLF injection vulnerability in FormMail.pl in Matt Wright FormMail 1.92, and possibly earlier, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the redirect parameter.
by USH
CVE-2009-2130 EXPLOITDB text VERIFIED
elvinbts 1.2.0 - Unauthenticated Sensitive Information Exposure via Direct Request
Elvin 1.2.0 allows remote attackers to read the PHP source code of (1) login.ei, (2) jump_bug.ei, or (3) create_account.ei in inc/ via a direct request.
by SirGod
CVE-2009-2110 EXPLOITDB text VERIFIED
DB Top Sites 1.0 - Path Traversal via u Parameter
Multiple directory traversal vulnerabilities in DB Top Sites 1.0, when magic_quotes_gpc is disabled, allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the u parameter to (1) full.php, (2) index.php, and (3) contact.php.
by SirGod
CVE-2009-2152 EXPLOITDB text VERIFIED
AdaptWeb 0.9.2 - SQL Injection via CodigoDisciplina Parameter
SQL injection vulnerability in a_index.php in AdaptWeb 0.9.2 allows remote attackers to execute arbitrary SQL commands via the CodigoDisciplina parameter in a TopicosCadastro1 action.
by SirGod
EIP-2026-103412 EXPLOITDB text VERIFIED
Apple Safari / QuickTime - Denial of Service
by Thierry Zoller
CVE-2009-2258 EXPLOITDB text VERIFIED
Netgear DG632 <3.4.0_ap - Path Traversal
Directory traversal vulnerability in cgi-bin/webcm in the administrative web interface on the Netgear DG632 with firmware 3.4.0_ap allows remote attackers to list arbitrary directories via a .. (dot dot) in the nextpage parameter.
by Tom Neaves