Text Exploits

31,394 exploits tracked across all sources.

Sort: Activity Stars
CVE-2008-6580 EXPLOITDB text VERIFIED
Red_Reservations - Unauthenticated Sensitive Information Exposure via Direct Database File Access
The Red_Reservations script for ColdFusion stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database via a direct request to (1) makered.mdb and (2) makered97.mdb.
by Cyber-Zone
CVE-2008-6353 EXPLOITDB text VERIFIED
ASP-CMS 1.0 - SQL Injection via cha Parameter
SQL injection vulnerability in index.asp in ASP-CMS 1.0 allows remote attackers to execute arbitrary SQL commands via the cha parameter.
by Khashayar Fereidani
CVE-2008-5551 EXPLOITDB text VERIFIED
Microsoft Internet Explorer 8.0 Beta 2 - XSS
The XSS Filter in Microsoft Internet Explorer 8.0 Beta 2 allows remote attackers to bypass the XSS protection mechanism and conduct XSS attacks by injecting data at two different positions within an HTML document, related to STYLE elements and the CSS expression property, aka a "double injection."
by Rafel Ivgi
CVE-2008-6581 EXPLOITDB text VERIFIED
PhpAddEdit 1.3 - Unauthenticated Authentication Bypass via addedit Cookie
login.php in PhpAddEdit 1.3 allows remote attackers to bypass authentication and gain administrative access by setting the addedit cookie parameter.
by x0r
EIP-2026-110766 EXPLOITDB text VERIFIED
PHP Support Tickets 2.2 - Arbitrary File Upload
by ahmadbady
CVE-2008-6361 EXPLOITDB text VERIFIED
InSun Feed CMS 1.7.3 19Beta - Path Traversal via Lang Parameter
Directory traversal vulnerability in index.php in InSun Feed CMS 1.7.3 19Beta allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the lang parameter.
by x0r
EIP-2026-107002 EXPLOITDB text VERIFIED
EZ Publish 3.9.0/3.9.5/3.10.1 - Command Execution (Admin Required)
by s4avrd0w
CVE-2008-6366 EXPLOITDB text VERIFIED
Ad Server Solutions Affiliate Software Java 4.0 - SQL Injection via Logon.jsp Parameters
SQL injection vulnerability in logon.jsp in Ad Server Solutions Affiliate Software Java 4.0 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password, possibly related to the uname and pass parameters to logon_process.jsp. NOTE: some of these details are obtained from third party information.
by 3d D3v!L
CVE-2008-6354 EXPLOITDB text VERIFIED
The Net Guys ASPired2poll - Unauthenticated Sensitive Information Exposure via Direct Database Download
The Net Guys ASPired2poll stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing the username and password via a direct request to ASPired2poll.mdb.
by AlpHaNiX
CVE-2008-6357 EXPLOITDB text VERIFIED
MyCal Personal Events Calendar - Unauthenticated Sensitive Information Exposure via Direct Database Request
MyCal Personal Events Calendar stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing the username and password via a direct request to mycal.mdb.
by CoBRa_21
CVE-2008-6356 EXPLOITDB text VERIFIED
evcal_events_calendar - Unauthenticated Sensitive Information Exposure via Direct Database Request
evCal Events Calendar stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing the username and password via a direct request to (1) evcal.mdb and (2) evcal97.mdb.
by Cyber-Zone
CVE-2008-6364 EXPLOITDB text VERIFIED
Ad Server Solutions Banner Exchange Solution Java - SQL Injection via Logon Process
SQL injection vulnerability in logon_process.jsp in Ad Server Solutions Banner Exchange Solution Java allows remote attackers to execute arbitrary SQL commands via the (1) username (uname parameter) and (2) password (pass parameter). NOTE: some of these details are obtained from third party information.
by R3d-D3V!L
CVE-2008-6366 EXPLOITDB text VERIFIED
Ad Server Solutions Affiliate Software Java 4.0 - SQL Injection via Logon.jsp Parameters
SQL injection vulnerability in logon.jsp in Ad Server Solutions Affiliate Software Java 4.0 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password, possibly related to the uname and pass parameters to logon_process.jsp. NOTE: some of these details are obtained from third party information.
by R3d-D3V!L
CVE-2008-6365 EXPLOITDB text VERIFIED
Ad Server Solutions Ad Management Software Java - SQL Injection via logon.jsp uname or pass Parameter
SQL injection vulnerability in logon.jsp in Ad Server Solutions Ad Management Software Java allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password, related to the uname or pass parameters to logon.jsp or logon_processing.jsp. NOTE: some of these details are obtained from third party information.
by R3d-D3V!L
CVE-2008-6529 EXPLOITDB text VERIFIED
eZoneScripts Living Local 1.1 - Cross-Site Scripting via listtest.php r Parameter
Cross-site scripting (XSS) vulnerability in listtest.php in eZoneScripts Living Local 1.1 allows remote attackers to inject arbitrary web script or HTML via the r parameter.
by Bgh7
CVE-2008-6320 EXPLOITDB text VERIFIED
CF Shopkart 5.2.2 - SQL Injection via Category Parameter
SQL injection vulnerability in index.cfm in CF Shopkart 5.2.2 allows remote attackers to execute arbitrary SQL commands via the Category parameter in a ViewCategory action.
by AlpHaNiX
CVE-2008-6311 EXPLOITDB text VERIFIED
Butterfly Organizer 2.0.1 - SQL Injection via mytable Parameter
SQL injection vulnerability in view.php in Butterfly Organizer 2.0.1 allows remote attackers to execute arbitrary SQL commands via the mytable parameter. NOTE: the id vector is covered by another CVE name.
by Osirys
CVE-2008-6501 EXPLOITDB text VERIFIED
Pro Chat Rooms 3.0.2 - Cross-Site Scripting via Gud Parameter
Cross-site scripting (XSS) vulnerability in profiles/index.php in Pro Chat Rooms 3.0.2 allows remote attackers to inject arbitrary web script or HTML via the gud parameter.
by ZynbER
CVE-2008-4844 EXPLOITDB text VERIFIED
Microsoft Internet Explorer 5.01, 6, 6 SP1, and 7 - Use-After-Free via DSO Bindings
Use-after-free vulnerability in the CRecordInstance::TransferToDestination function in mshtml.dll in Microsoft Internet Explorer 5.01, 6, 6 SP1, and 7 allows remote attackers to execute arbitrary code via DSO bindings involving (1) an XML Island, (2) XML DSOs, or (3) Tabular Data Control (TDC) in a crafted HTML or XML document, as demonstrated by nested SPAN or MARQUEE elements, and exploited in the wild in December 2008.
by Guido Landi
CVE-2008-5574 EXPLOITDB text VERIFIED
Webmaster Marketplace - SQL Injection
SQL injection vulnerability in member.php in Webmaster Marketplace allows remote attackers to execute arbitrary SQL commands via the u parameter.
by Hussin X
CVE-2008-6502 EXPLOITDB text VERIFIED
Pro Chat Rooms 3.0.2 - Authenticated Path Traversal and Remote Code Execution via Avatar Parameter
Directory traversal vulnerability in Pro Chat Rooms 3.0.2 allows remote authenticated users to select an arbitrary local PHP script as an avatar via a .. (dot dot) in the avatar parameter, and cause other users to execute this script by using sendData.php to send a message to (1) an individual user or (2) a room, leading to cross-site request forgery (CSRF), cross-site scripting (XSS), or other impacts.
by ZynbER
CVE-2008-6313 EXPLOITDB text VERIFIED
phpAddEdit 1.3 - Path Traversal and Remote File Inclusion via editform Parameter
Directory traversal vulnerability in addedit-render.php in phpAddEdit 1.3, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a URL in the editform parameter. NOTE: PHP remote file inclusion attacks are also likely.
by nuclear
CVE-2008-6530 EXPLOITDB text VERIFIED
eZoneScripts Living Local 1.1 - Authenticated Arbitrary PHP File Upload via editimage.php
Unrestricted file upload vulnerability in editimage.php in eZoneScripts Living Local 1.1 allows remote authenticated administrators to execute arbitrary PHP code by uploading a file with an executable extension, then accessing it via a direct request to the uploaded file.
by Bgh7
CVE-2008-6328 EXPLOITDB text VERIFIED
Butterfly Organizer 2.0.0 and 2.0.1 - SQL Injection via id Parameter
SQL injection vulnerability in view.php in Butterfly Organizer 2.0.0 and 2.0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.
by Osirys
EIP-2026-100816 EXPLOITDB text VERIFIED
HTMPL 1.11 - Command Execution
by ZeN