Exploitdb Exploits
31,348 exploits tracked across all sources.
DMXReady Document Library Manager 1.1 - Contents Change
by ajann
DMXReady Contact Us Manager 1.1 - Remote Contents Change
by ajann
DMXReady Secure Document Library <1.1 - SQL Injection
SQL injection vulnerability in CategoryManager/upload_image_category.asp in DMXReady Secure Document Library 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the cid parameter.
by ajann
DMXReady Catalog Manager 1.1 - Remote Contents Change
by ajann
GigCalendar (com_gigcal) 1.0 - SQL Injection
SQL injection vulnerability in the GigCalendar (com_gigcal) component 1.0 for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the gigcal_gigs_id parameter in a details action to index.php.
by boom3rang
Dark Age CMS 0.2c beta - SQL Injection
SQL injection vulnerability in login.php in Dark Age CMS 0.2c beta allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by darkjoker
Virtual GuestBook 2.1 - Info Disclosure
Virtual GuestBook (vgbook) 2.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file via a direct request to guestbook.mdb.
by Moudi
DMXReady News Manager 1.1 - Arbitrary Category Change
by ajann
DMXReady Account List Manager 1.1 - Contents Change
by ajann
Winamp < 5.541 - Buffer Overflow via AIFF COMM Chunk or MP3 File
Multiple buffer overflows in Winamp 5.541 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) a large Common Chunk (COMM) header value in an AIFF file and (2) a large invalid value in an MP3 file.
by securfrog
REALTOR 747 4.11 - Remote Code Execution via INC_DIR Parameter
PHP remote file inclusion vulnerability in include/define.php in REALTOR 747 4.11 allows remote attackers to execute arbitrary PHP code via a URL in the INC_DIR parameter.
by ahmadbady
PWP Wiki Processor 1-5-1 - Arbitrary File Upload
by ahmadbady
Ovidentia 6.7.5 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
by Ivan Sanchez
com_portfol 1.2 - SQL Injection via vcatid Parameter
SQL injection vulnerability in the Portfol (com_portfol) 1.2 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the vcatid parameter in a viewcategory action to index.php.
by H!tm@N
By Source