Exploitdb Exploits
31,369 exploits tracked across all sources.
New5starRating 1.0 - '/admin/control_panel_sample.php' SQL Injection
by zer0day
Elkagroup Image Gallery 1.0 - Authenticated Arbitrary File Upload via upload.php
Unrestricted file upload vulnerability in upload.php in Elkagroup Image Gallery 1.0 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in gallery/pictures/. NOTE: some of these details are obtained from third party information.
by Securitylab.ir
Firefox < 3.0.9 - Cross-Site Scripting via Refresh Header
Mozilla Firefox before 3.0.9 and SeaMonkey 1.1.17 do not block javascript: URIs in Refresh headers in HTTP responses, which allows remote attackers to conduct cross-site scripting (XSS) attacks via vectors related to (1) injecting a Refresh header or (2) specifying the content of a Refresh header. NOTE: it was later reported that Firefox 3.6 a1 pre and Mozilla 1.7.x and earlier are also affected.
by Olli Pettay
DirectAdmin < 1.33.4 - Unauthenticated Arbitrary File Write via Symlink Attack on Backup Temporary File
JBMC Software DirectAdmin before 1.334 allows local users to create or overwrite any file via a symlink attack on an arbitrary file in a certain temporary directory, related to a request for this temporary file in the PATH_INFO to the CMD_DB script during a backup action.
by anonymous
PastelCMS 0.8.0 - SQL Injection via Username Parameter
SQL injection vulnerability in admin.php in PastelCMS 0.8.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the user (Username) parameter.
by SirGod
Trend Micro OfficeScan Client 8.0 SP1 and 8.0 SP1 Patch 1 - Denial of Service via Long Pathname
NTRtScan.exe in Trend Micro OfficeScan Client 8.0 SP1 and 8.0 SP1 Patch 1 allows local users to cause a denial of service (application crash) via directories with long pathnames. NOTE: some of these details are obtained from third party information.
by Juan Pablo Lopez Yacubian
VS PANEL 7.3.6 - SQL Injection via Cat_ID Parameter
SQL injection vulnerability in showcat.php in VS PANEL 7.3.6 allows remote attackers to execute arbitrary SQL commands via the Cat_ID parameter.
by Player
TotalCalendar 2.4 - Path Traversal via Include Parameter
Directory traversal vulnerability in cms_detect.php in TotalCalendar 2.4 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the include parameter.
by SirGod
Studio Lounge Address Book 2.5 - Authentication Bypass
by ThE g0bL!N
Quick.Cms.Lite 0.5 - SQL Injection via id Parameter
SQL injection vulnerability in index.php in Quick.Cms.Lite 0.5 allows remote attackers to execute arbitrary SQL commands via the id parameter.
by Player
PastelCMS 0.8.0 - Path Traversal via set_lng Parameter
Directory traversal vulnerability in index.php in PastelCMS 0.8.0, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the set_lng parameter.
by SirGod
NotFTP 1.3.1 - Path Traversal via Languages Parameter
Directory traversal vulnerability in config.php in NotFTP 1.3.1 allows remote attackers to read arbitrary files via a .. (dot dot) in a certain languages[][file] parameter.
by Kacper
mixedcms 1.0b - Local File Inclusion / Arbitrary File Upload / Authentication Bypass / File Disclosure
by YEnH4ckEr
CRE Loaded 6.2 - SQL Injection via products_id Parameter
SQL injection vulnerability in product_info.php in CRE Loaded 6.2 allows remote attackers to execute arbitrary SQL commands via the products_id parameter.
by Player
SAP cFolders - Cross-Site Scripting / HTML Injection
by Digital Security Research Group
010 Editor 3.0.4 - File Parsing Multiple Buffer Overflow Vulnerabilities
by Le Duc Anh
Sun Java System Delegated Administrator 6.2-6.4 - HTTP Response Splitting via HELP_PAGE Parameter
CRLF injection vulnerability in da/DA/Login in Sun Java System Delegated Administrator 6.2 through 6.4 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the HELP_PAGE parameter.
by SCS team
FunGamez RC1 - Remote File Inclusion via Module Parameter Path Traversal
Directory traversal vulnerability in admin/load.php in FunGamez RC1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the module parameter to index.php.
by YEnH4ckEr
FunGamez RC1 - SQL Injection via login_user Parameter
SQL injection vulnerability in pages/login.php in FunGamez RC1 allows remote attackers to execute arbitrary SQL commands via the login_user (aka username) parameter. NOTE: some of these details are obtained from third party information.
by YEnH4ckEr
TotalCalendar 2.4 - Remote Code Execution via inc_dir Parameter
PHP remote file inclusion vulnerability in config.php in TotalCalendar 2.4 allows remote attackers to execute arbitrary PHP code via a URL in the inc_dir parameter, a different vector than CVE-2006-1922 and CVE-2006-7055.
by DarKdewiL
By Source