Text Exploits

31,394 exploits tracked across all sources.

Sort: Activity Stars
CVE-2008-5945 EXPLOITDB text VERIFIED
Nukeviet 2.0 Beta - Unauthenticated Authentication Bypass via admf Cookie
Nukeviet 2.0 Beta allows remote attackers to bypass authentication and gain administrative access by setting the admf cookie to 1. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by Ciph3r
CVE-2008-5943 EXPLOITDB text VERIFIED
NavBoard 16 (2.6.0) - Path Traversal
Multiple directory traversal vulnerabilities in NavBoard 16 (2.6.0) allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the module parameter to (1) admin_modules.php and (2) modules.php.
by CraCkEr
CVE-2008-5944 EXPLOITDB text VERIFIED
NavBoard 2.6.0 - Cross-Site Scripting via Module Parameter
Cross-site scripting (XSS) vulnerability in modules.php in NavBoard 16 (2.6.0) allows remote attackers to inject arbitrary web script or HTML via the module parameter.
by CraCkEr
CVE-2008-5943 EXPLOITDB text VERIFIED
NavBoard 16 (2.6.0) - Path Traversal
Multiple directory traversal vulnerabilities in NavBoard 16 (2.6.0) allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the module parameter to (1) admin_modules.php and (2) modules.php.
by CraCkEr
CVE-2008-6066 EXPLOITDB text VERIFIED
Meet#Web 0.8 - Remote Code Execution via root_path Parameter
Multiple PHP remote file inclusion vulnerabilities in Meet#Web 0.8 allow remote attackers to execute arbitrary PHP code via a URL in the root_path parameter to (1) modules.php, (2) ManagerResource.class.php, (3) ManagerRightsResource.class.php, (4) RegForm.class.php, (5) RegResource.class.php, and (6) RegRightsResource.class.php in classes/. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by Rakesh S
CVE-2008-6066 EXPLOITDB text VERIFIED
Meet#Web 0.8 - Remote Code Execution via root_path Parameter
Multiple PHP remote file inclusion vulnerabilities in Meet#Web 0.8 allow remote attackers to execute arbitrary PHP code via a URL in the root_path parameter to (1) modules.php, (2) ManagerResource.class.php, (3) ManagerRightsResource.class.php, (4) RegForm.class.php, (5) RegResource.class.php, and (6) RegRightsResource.class.php in classes/. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by Rakesh S
CVE-2008-6066 EXPLOITDB text VERIFIED
Meet#Web 0.8 - Remote Code Execution via root_path Parameter
Multiple PHP remote file inclusion vulnerabilities in Meet#Web 0.8 allow remote attackers to execute arbitrary PHP code via a URL in the root_path parameter to (1) modules.php, (2) ManagerResource.class.php, (3) ManagerRightsResource.class.php, (4) RegForm.class.php, (5) RegResource.class.php, and (6) RegRightsResource.class.php in classes/. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by Rakesh S
CVE-2008-6066 EXPLOITDB text VERIFIED
Meet#Web 0.8 - Remote Code Execution via root_path Parameter
Multiple PHP remote file inclusion vulnerabilities in Meet#Web 0.8 allow remote attackers to execute arbitrary PHP code via a URL in the root_path parameter to (1) modules.php, (2) ManagerResource.class.php, (3) ManagerRightsResource.class.php, (4) RegForm.class.php, (5) RegResource.class.php, and (6) RegRightsResource.class.php in classes/. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by Rakesh S
CVE-2008-6066 EXPLOITDB text VERIFIED
Meet#Web 0.8 - Remote Code Execution via root_path Parameter
Multiple PHP remote file inclusion vulnerabilities in Meet#Web 0.8 allow remote attackers to execute arbitrary PHP code via a URL in the root_path parameter to (1) modules.php, (2) ManagerResource.class.php, (3) ManagerRightsResource.class.php, (4) RegForm.class.php, (5) RegResource.class.php, and (6) RegRightsResource.class.php in classes/. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by Rakesh S
CVE-2008-6066 EXPLOITDB text VERIFIED
Meet#Web 0.8 - Remote Code Execution via root_path Parameter
Multiple PHP remote file inclusion vulnerabilities in Meet#Web 0.8 allow remote attackers to execute arbitrary PHP code via a URL in the root_path parameter to (1) modules.php, (2) ManagerResource.class.php, (3) ManagerRightsResource.class.php, (4) RegForm.class.php, (5) RegResource.class.php, and (6) RegRightsResource.class.php in classes/. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by Rakesh S
CVE-2008-3675 EXPLOITDB text VERIFIED
Gelato 0.95 - Path Traversal
Directory traversal vulnerability in classes/imgsize.php in Gelato 0.95 allows remote attackers to read arbitrary files via (1) a .. (dot dot) and possibly (2) a full pathname in the img parameter. NOTE: some of these details are obtained from third party information.
by JIKO
EIP-2026-107244 EXPLOITDB text VERIFIED
Freeway 1.4.1 - Multiple Input Validation Vulnerabilities
by Digital Security Research Group
EIP-2026-103871 EXPLOITDB text VERIFIED
BIND 9.5.0-P2 - 'Randomized Ports' Remote DNS Cache Poisoning
by Zbr
CVE-2008-3680 EXPLOITDB text VERIFIED
Flagship Industries Ventrilo <3.0.2 - DoS
The decryption function in Flagship Industries Ventrilo 3.0.2 and earlier allows remote attackers to cause a denial of service (NULL pointer dereference and server crash) by sending a type 0 packet with an invalid version followed by another packet to TCP port 3784.
by Luigi Auriemma
CVE-2008-3443 EXPLOITDB text VERIFIED
Ruby <=1.8.5, 1.8.6-1.8.6-p286, 1.8.7-1.8.7-p71, 1.9-r18423 DoS via Regex
The regular expression engine (regex.c) in Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 allows remote attackers to cause a denial of service (infinite loop and crash) via multiple long requests to a Ruby socket, related to memory allocation failure, and as demonstrated against Webrick.
by laurent gaffié
CVE-2008-3533 EXPLOITDB text VERIFIED
yelp < 2.24 - Remote Code Execution via Format String in URI Handler
Format string vulnerability in the window_error function in yelp-window.c in yelp in Gnome after 2.19.90 and before 2.24 allows remote attackers to execute arbitrary code via format string specifiers in an invalid URI on the command line, as demonstrated by use of yelp within (1) man or (2) ghelp URI handlers in Firefox, Evolution, and unspecified other programs.
by Aaron Grattafiori
CVE-2008-3676 EXPLOITDB text VERIFIED
hMailServer 4.4.1 - Authenticated Denial of Service via IMAP Command Flood
Unspecified vulnerability in the IMAP server in hMailServer 4.4.1 allows remote authenticated users to cause a denial of service (resource exhaustion or daemon crash) via a long series of IMAP commands.
by Antunes
CVE-2008-3681 EXPLOITDB text VERIFIED
Joomla! 1.5-1.5.5 - Unauthenticated Password Reset via Invalid Reset Token
components/com_user/models/reset.php in Joomla! 1.5 through 1.5.5 does not properly validate reset tokens, which allows remote attackers to reset the "first enabled user (lowest id)" password, typically for the administrator.
by d3m0n
CVE-2008-3679 EXPLOITDB text VERIFIED
IDevSpot PhpLinkExchange 1.01 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in index.php in IDevSpot PhpLinkExchange 1.01 allow remote attackers to inject arbitrary web script or HTML via the catid parameter in a (1) user_add, (2) recip, (3) tellafriend, or (4) contact action, or (5) in a request without an action; or (6) the id parameter in a tellafriend action. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by sl4xUz
CVE-2008-4438 EXPLOITDB text VERIFIED
Datafeed Studio 1.6.2 - Cross-Site Scripting via Search Parameter
Cross-site scripting (XSS) vulnerability in search.php in Datafeed Studio 1.6.2 allows remote attackers to inject arbitrary web script or HTML via the q parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by Bug Researchers Group
CVE-2008-4439 EXPLOITDB text VERIFIED
MartinWood Datafeed Studio < 1.6.2 - Remote Code Execution via INSTALL_FOLDER Parameter
PHP remote file inclusion vulnerability in admin/bin/patch.php in MartinWood Datafeed Studio before 1.6.3 allows remote attackers to execute arbitrary PHP code via a URL in the INSTALL_FOLDER parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by Bug Researchers Group
CVE-2008-4436 EXPLOITDB text VERIFIED
bBlog 0.7.6 - SQL Injection via mod Parameter
SQL injection vulnerability in bblog_plugins/builtin.help.php in bBlog 0.7.6 allows remote attackers to execute arbitrary SQL commands via the mod parameter.
by IP-Sh0k
CVE-2008-4428 EXPLOITDB text VERIFIED
Phlatline Personal Information Manager < 1.0 - Unauthenticated Arbitrary File Upload via upload.php
Unrestricted file upload vulnerability in upload.php in Phlatline's Personal Information Manager (pPIM) 1.0 and earlier allows remote attackers to execute arbitrary code by uploading a .php file, then accessing it via a direct request to the file in the top-level directory.
by Stack
CVE-2008-4427 EXPLOITDB text VERIFIED
Phlatline Personal Information Manager < 1.0 - Unauthenticated Arbitrary Password Change
changepassword.php in Phlatline's Personal Information Manager (pPIM) 1.0 and earlier does not require administrative authentication, which allows remote attackers to change arbitrary passwords.
by Stack
CVE-2008-3604 EXPLOITDB CRITICAL text VERIFIED
ZeeBuddy 2.1 - SQL Injection via bannerclick.php adid Parameter
SQL injection vulnerability in bannerclick.php in ZeeBuddy 2.1 allows remote attackers to execute arbitrary SQL commands via the adid parameter.
by Hussin X
CVSS 9.8