Text Exploits

31,394 exploits tracked across all sources.

Sort: Activity Stars
CVE-2008-1635 EXPLOITDB text VERIFIED
Keep It Simple Guest Book <5.1.1 - Path Traversal
Directory traversal vulnerability in view_private.php in Keep It Simple Guest Book (KISGB) 5.0.0 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the tmp_theme parameter. NOTE: 5.1.1 is also reportedly affected.
by Cr@zy_King
CVE-2008-1624 EXPLOITDB text VERIFIED
Jshop Server 1.x-2.x - Remote File Inclusion via xPage Parameter
Directory traversal vulnerability in v2demo/page.php in Jshop Server 1.x through 2.x allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the xPage parameter.
by v0l4arrra
CVE-2008-1620 EXPLOITDB text VERIFIED
2X TFTP service <3.2.0.0 - Path Traversal
Directory traversal vulnerability in 2X TFTP service (TFTPd.exe) 3.2.0.0 and earlier in 2X ThinClientServer 5.0_sp1-r3497 and earlier allows remote attackers to read or overwrite arbitrary files via a ... (dot dot dot) in the filename.
by Luigi Auriemma
CVE-2008-6544 EXPLOITDB text VERIFIED
Simple Machines Forum 1.1.4 - Remote Code Execution via settings[default_theme_dir] Parameter
Multiple PHP remote file inclusion vulnerabilities in Simple Machines Forum (SMF) 1.1.4 allow remote attackers to execute arbitrary PHP code via a URL in the (1) settings[default_theme_dir] parameter to Sources/Subs-Graphics.php and (2) settings[default_theme_dir] parameter to Sources/Themes.php. NOTE: CVE and multiple third parties dispute this issue because the files contain a protection mechanism against direct request
by Sibertrwolf
CVE-2008-6489 EXPLOITDB text VERIFIED
com_myalbum 1.0 - SQL Injection via Album Parameter
SQL injection vulnerability in MyAlbum component (com_myalbum) 1.0 for Joomla! allows remote attackers to execute arbitrary SQL commands via the album parameter to index.php.
by parad0x
CVE-2008-1561 EXPLOITDB text VERIFIED
Wireshark 0.99.5-0.99.8 - Denial of Service via Malformed X.509sat or Roofnet Packet
Multiple unspecified vulnerabilities in Wireshark (formerly Ethereal) 0.99.5 through 0.99.8 allow remote attackers to cause a denial of service (application crash) via a malformed packet to the (1) X.509sat or (2) Roofnet dissectors. NOTE: Vector 2 might also lead to a hang.
by Peter Makrai
CVE-2008-1563 EXPLOITDB text VERIFIED
Wireshark 0.99.6-0.99.8 - Denial of Service via Malformed SCCP Packet
The "decode as" feature in packet-bssap.c in the SCCP dissector in Wireshark (formerly Ethereal) 0.99.6 through 0.99.8 allows remote attackers to cause a denial of service (application crash) via a malformed packet.
by Peter Makrai
CVE-2008-1562 EXPLOITDB text VERIFIED
Wireshark 0.99.2-0.99.8 - Denial of Service via Malformed LDAP Packet
The LDAP dissector in Wireshark (formerly Ethereal) 0.99.2 through 0.99.8 allows remote attackers to cause a denial of service (application crash) via a malformed packet, a different vulnerability than CVE-2006-5740.
by Peter Makrai
CVE-2008-3963 EXPLOITDB text VERIFIED
MySQL 5.0 < 5.0.66, 5.1 < 5.1.26, 6.0 < 6.0.6 - Denial of Service via Empty Bit-String Literal
MySQL 5.0 before 5.0.66, 5.1 before 5.1.26, and 6.0 before 6.0.6 does not properly handle a b'' (b single-quote single-quote) token, aka an empty bit-string literal, which allows remote attackers to cause a denial of service (daemon crash) by using this token in a SQL statement.
by Kay Roepke
EIP-2026-108030 EXPLOITDB text VERIFIED
JAF CMS 4.0.0 RC2 - 'website' / 'main_dir' Multiple Remote File Inclusions
by XxX
CVE-2008-1560 EXPLOITDB text VERIFIED
Digiappz DigiDomain 2.2 - Cross-Site Scripting via lookup_result.asp and suggest_result.asp
Multiple cross-site scripting (XSS) vulnerabilities in Digiappz DigiDomain 2.2 allow remote attackers to inject arbitrary web script or HTML via the (1) domain parameter to lookup_result.asp, and the (2) word1 and (3) word2 parameters to suggest_result.asp.
by Linux_Drox
CVE-2008-1560 EXPLOITDB text VERIFIED
Digiappz DigiDomain 2.2 - Cross-Site Scripting via lookup_result.asp and suggest_result.asp
Multiple cross-site scripting (XSS) vulnerabilities in Digiappz DigiDomain 2.2 allow remote attackers to inject arbitrary web script or HTML via the (1) domain parameter to lookup_result.asp, and the (2) word1 and (3) word2 parameters to suggest_result.asp.
by Linux_Drox
CVE-2006-7127 EXPLOITDB text VERIFIED
JAF CMS 4.0 and 4.0 RC2 - Remote Code Execution via main_dir Parameter
Multiple PHP remote file inclusion vulnerabilities in JAF CMS 4.0 and 4.0 RC2 allow remote attackers to execute arbitrary PHP code via a URL in the main_dir parameter to (1) forum/main.php and (2) forum/headlines.php.
by CraCkEr
CVE-2008-7145 EXPLOITDB text VERIFIED
CoronaMatrix phpAddressBook 2.0 - SQL Injection via Username or Password Parameter
Multiple SQL injection vulnerabilities in index.php in CoronaMatrix phpAddressBook 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) parameters.
by Virangar Security
CVE-2008-1609 EXPLOITDB text VERIFIED
jaf_cms 4.0 RC2 - Remote Code Execution via URL Parameter Injection
Multiple PHP remote file inclusion vulnerabilities in just another flat file (JAF) CMS 4.0 RC2 allow remote attackers to execute arbitrary PHP code via a URL in the (1) website parameter to (a) forum.php, (b) headlines.php, and (c) main.php in forum/, and (2) main_dir parameter to forum/forum.php. NOTE: other main_dir vectors are already covered by CVE-2006-7127.
by CraCkEr
CVE-2008-1621 EXPLOITDB text VERIFIED
GeeCarts - Cross-Site Scripting via id Parameter
Multiple cross-site scripting (XSS) vulnerabilities in GeeCarts allow remote attackers to inject arbitrary web script or HTML via the id parameter to (1) show.php, (2) search.php, and (3) view.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by Ivan Sanchez
CVE-2008-1621 EXPLOITDB text VERIFIED
GeeCarts - Cross-Site Scripting via id Parameter
Multiple cross-site scripting (XSS) vulnerabilities in GeeCarts allow remote attackers to inject arbitrary web script or HTML via the id parameter to (1) show.php, (2) search.php, and (3) view.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by Ivan Sanchez
CVE-2008-1621 EXPLOITDB text VERIFIED
GeeCarts - Cross-Site Scripting via id Parameter
Multiple cross-site scripting (XSS) vulnerabilities in GeeCarts allow remote attackers to inject arbitrary web script or HTML via the id parameter to (1) show.php, (2) search.php, and (3) view.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by Ivan Sanchez
EIP-2026-103515 EXPLOITDB text VERIFIED
IBM solidDB 6.0.10 - Format String / Denial of Service
by Luigi Auriemma
CVE-2008-1247 EXPLOITDB text VERIFIED
Linksys WRT54g 1.00.9 - Unauthenticated Arbitrary Administrative Actions via Direct Script Request
The web interface on the Linksys WRT54g router with firmware 1.00.9 does not require credentials when invoking scripts, which allows remote attackers to perform arbitrary administrative actions via a direct request to (1) Advanced.tri, (2) AdvRoute.tri, (3) Basic.tri, (4) ctlog.tri, (5) ddns.tri, (6) dmz.tri, (7) factdefa.tri, (8) filter.tri, (9) fw.tri, (10) manage.tri, (11) ping.tri, (12) PortRange.tri, (13) ptrigger.tri, (14) qos.tri, (15) rstatus.tri, (16) tracert.tri, (17) vpn.tri, (18) WanMac.tri, (19) WBasic.tri, or (20) WFilter.tri. NOTE: the Security.tri vector is already covered by CVE-2006-5202.
by meathive
CVE-2008-1795 EXPLOITDB text VERIFIED
Blackboard Academic Suite <8.0 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in Blackboard Academic Suite 7.x and earlier, and possibly some 8.0 versions, allow remote attackers to inject arbitrary web script or HTML via (1) the searchText parameter in a Course action to webapps/blackboard/execute/viewCatalog or (2) the data__announcements___pk1_pk2__subject parameter in an ADD action to bin/common/announcement.pl.
by Knight4vn
CVE-2008-1795 EXPLOITDB text VERIFIED
Blackboard Academic Suite <8.0 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in Blackboard Academic Suite 7.x and earlier, and possibly some 8.0 versions, allow remote attackers to inject arbitrary web script or HTML via (1) the searchText parameter in a Course action to webapps/blackboard/execute/viewCatalog or (2) the data__announcements___pk1_pk2__subject parameter in an ADD action to bin/common/announcement.pl.
by Knight4vn
CVE-2008-1556 EXPLOITDB text VERIFIED
BolinOS 4.6.1 - Cross-Site Scripting via Multiple Parameters
Multiple cross-site scripting (XSS) vulnerabilities in BolinOS 4.6.1 allow remote attackers to inject arbitrary web script or HTML via the (1) url parameter to (a) system/actionspages/_b/contentFiles/gBImageViewer.php, (2) ForEditor parameter to (b) system/actionspages/_b/contentFiles/gBselectorContents.php, (3) the PATH_INFO to (c) gBLoginPage.php and (d) gBPassword.php in system/actionspages/_b/contentFiles/, (4) formlogin parameter to system/actionspages/_b/contentFiles/gBLoginPage.php, and the (5) bolini_searchengine46Search parameter to (e) help/index.php.
by DSecRG
CVE-2008-1555 EXPLOITDB text VERIFIED
BolinOS 4.6.1 - Remote File Inclusion via _bFileToInclude Parameter
Directory traversal vulnerability in system/_b/contentFiles/gbincluder.php in BolinOS 4.6.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the _bFileToInclude parameter.
by DSecRG
CVE-2008-1554 EXPLOITDB text VERIFIED
TopperMod 2.0 - SQL Injection via Localita Parameter
SQL injection vulnerability in account/index.php in TopperMod 2.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via a non-alphanumeric first character the localita parameter, which bypasses a protection mechanism.
by girex