Exploitdb Exploits
31,351 exploits tracked across all sources.
AlstraSoft SendIt Pro - Unauthenticated Arbitrary File Upload via submit_file.php
Unrestricted file upload vulnerability in submit_file.php in AlstraSoft SendIt Pro allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in send/files/.
by ZoRLu
AlstraSoft Article Manager Pro 1.6 - SQL Injection
SQL injection vulnerability in admin/admin.php in AlstraSoft Article Manager Pro 1.6 allows remote attackers to execute arbitrary SQL commands via the username parameter.
by ZoRLu
Zope < 2.11.2 - Authenticated Denial of Service via PythonScript Raise or Import Statements
PythonScripts in Zope 2 2.11.2 and earlier, as used in Conga and other products, allows remote authenticated users to cause a denial of service (resource consumption or application halt) via certain (1) raise or (2) import statements.
by Marc-Andre Lemburg
Belkin F5D8233-4 Wireless N Router (Multiple Scripts) - Authentication Bypass
by Craig Heffner
Pre Projects Pre Real Estate Listings - SQL Injection via Username or Password Parameter
Multiple SQL injection vulnerabilities in login.php in Pre Projects Pre Real Estate Listings allow remote attackers to execute arbitrary SQL commands via (1) the us parameter (aka the Username field) or (2) the ps parameter (aka the Password field).
by BackDoor
ooVoo 1.7.1.35 - Buffer Overflow via Long oovoo: URI
Buffer overflow in oovoo.exe in ooVoo 1.7.1.35, and possibly other versions before 1.7.1.59, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long oovoo: URI.
by Nine:Situations:Group
Pre Real Estate Listings - Authenticated Arbitrary File Upload via Profile Logo
Unrestricted file upload vulnerability in profile.php in Pre Projects Pre Real Estate Listings allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a profile logo, then accessing it via a direct request to the file in re_images/.
by BackDoor
PozScripts Business Directory Script - SQL Injection
SQL injection vulnerability in showcategory.php in PozScripts Business Directory Script allows remote attackers to execute arbitrary SQL commands via the cid parameter.
by Hussin X
Joomla com_rssreader 1.0 - Remote Code Execution via mosConfig_live_site Parameter
PHP remote file inclusion vulnerability in admin.rssreader.php in the Simple RSS Reader (com_rssreader) 1.0 component for Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_live_site parameter.
by NoGe
Joomla! com_contactinfo 1.0 - SQL Injection
SQL injection vulnerability in the Contact Information Module (com_contactinfo) component 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.php.
by boom3rang
Joomla com_marketplace 1.1.1 and 1.1.1-pl1 - SQL Injection via catid Parameter
SQL injection vulnerability in index.php in the Marketplace (com_marketplace) 1.1.1 and 1.1.1-pl1 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in a show_category action.
by TR-ShaRk
Joomla com_books - SQL Injection via book_id Parameter
SQL injection vulnerability in the Books (com_books) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the book_id parameter in a book_details action to index.php.
by boom3rang
Joomla! / Mambo Component com_catalogproduction - 'id' SQL Injection
by boom3rang
ajsquare aj_classifieds - Unauthenticated Authentication Bypass via Direct Admin Page Access
AJ Classifieds allows remote attackers to bypass authentication and gain administrator privileges via a direct request to admin/home.php.
by G4N0K
smcFanControl 2.1.2 - Local Privilege Escalation via Long -k Option
Stack-based buffer overflow in the smc program in smcFanControl 2.1.2 allows local users to execute arbitrary code and gain privileges via a long -k option.
by xwings
AJ Square AJ Auction - Unauthenticated Authentication Bypass via Direct Script Request
AJ Square AJ Auction OOPD, Pro Platinum Skin #1, Pro Platinum Skin #2, and Web 2.0 send a redirect but do not exit when certain scripts are called directly, which allows remote attackers to bypass authentication via a direct request to (1) site.php, (2) auction.php, (3) mail.php, (4) fee_setting.php, (5) earnings.php, (6) insertion_fee_settings.php, (7) custom_category.php, (8) subcategory.php, (9) category.php, (10) report.php, (11) store_manager.php, and (12) choose_sell_format.php in admin/, and possibly other vectors.
by G4N0K
Collabtive 0.4.8 - Authenticated Remote Code Execution via Unrestricted File Upload
Unrestricted file upload vulnerability in Collabtive 0.4.8 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension and using a text/plain MIME type, then accessing it via a direct request to the file in files/, related to (1) the showproject action in managefile.php or (2) the Messages feature.
by USH
Collabtive 0.4.8 - Unauthenticated Authentication Bypass and Privilege Escalation via Admin User Creation
Collabtive 0.4.8 allows remote attackers to bypass authentication and create new users, including administrators, via unspecified vectors associated with the added mode in a users action to admin.php.
by USH
Collabtive 0.4.8 - Stored Cross-Site Scripting in Project Name via manageproject.php
Cross-site scripting (XSS) vulnerability in manageproject.php in Collabtive 0.4.8 allows user-assisted remote attackers to inject arbitrary web script or HTML via the project Name, which is not properly handled when the administrator performs an editform action, related to admin.php.
by USH
AJ Square Free Polling Script - Unauthenticated Authentication Bypass via Direct Request to admin/resetvote.php
AJ Square Free Polling Script (AJPoll) Database version allows remote attackers to bypass authentication and reset poll votes via a direct request to admin/resetvote.php.
by G4N0K
AJ Square Free Polling Script - SQL Injection via ques Parameter
SQL injection vulnerability in admin/include/newpoll.php in AJ Square Free Polling Script (AJPoll) Database version allows remote attackers to execute arbitrary SQL commands via the ques parameter.
by G4N0K
FreshScripts Fresh Email Script 1.0-1.11 - Remote Code Execution via tmp_sid Parameter
PHP remote file inclusion vulnerability in url.php in FreshScripts Fresh Email Script 1.0 through 1.11 allows remote attackers to execute arbitrary PHP code via a URL in the tmp_sid parameter.
by Don
PHPStore Real Estate - Authenticated Arbitrary File Upload via Logo Image
Unrestricted file upload vulnerability in PHPStore Real Estate allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a logo, then accessing it via a direct request to the file in realty/re_images/.
by ZoRLu
PHPStore Job Search - Authenticated Remote Code Execution via Resume Photo Upload
Unrestricted file upload vulnerability in PHPStore Job Search (aka PHPCareers) allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a resume photo, then accessing it via a direct request to the file in jobseekers/jobseeker_profile_images.
by ZoRLu
PHPStore Complete Classifieds - Authenticated Arbitrary File Upload and Remote Code Execution via Logo Upload
Unrestricted file upload vulnerability in PHPStore Complete Classifieds allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a logo, then accessing it via a direct request to the file in classifieds1/yellow_images/.
by ZoRLu
By Source