Text Exploits

31,394 exploits tracked across all sources.

Sort: Activity Stars
CVE-2008-7165 EXPLOITDB text VERIFIED
TELECOM ITALIA Alice Gate2 Plus Wi-Fi - CSRF
Cross-site request forgery in cp06_wifi_m_nocifr.cgi in the administrator panel in TELECOM ITALIA Alice Gate2 Plus Wi-Fi allows remote attackers to hijack the authentication of administrators for requests that disable Wi-Fi encryption via certain values for the wlChannel and wlRadioEnable parameters.
by WarGame
CVE-2008-0436 EXPLOITDB text VERIFIED
PD9 Software MegaBBS 1.5.14b - Cross-Site Scripting via Profile Upload Target Parameter
Cross-site scripting (XSS) vulnerability in profile-upload/upload.asp in PD9 Software MegaBBS 1.5.14b allows remote attackers to inject arbitrary web script or HTML via the target parameter.
by Doz
CVE-2008-0427 EXPLOITDB text VERIFIED
bloofoxCMS 0.3 - Path Traversal via File Parameter
Directory traversal vulnerability in file.php in bloofoxCMS 0.3 allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.
by BugReport.IR
CVE-2007-6528 EXPLOITDB text
TikiWiki < 1.9.9 - Path Traversal via Movie Parameter
Directory traversal vulnerability in tiki-listmovies.php in TikiWiki before 1.9.9 allows remote attackers to read arbitrary files via a .. (dot dot) and modified filename in the movie parameter.
by Sha0
CVE-2008-0497 EXPLOITDB text VERIFIED
Nucleus CMS 3.31 - Cross-Site Scripting via PATH_INFO in action.php
Cross-site scripting (XSS) vulnerability in action.php in Nucleus CMS 3.31 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO, which is not quoted when processing PHP_SELF.
by Alexandr Polyakov
CVE-2008-0425 EXPLOITDB text VERIFIED
Frimousse 0.0.2 - Unauthenticated Absolute Path Traversal via explorerdir.php name Parameter
Absolute path traversal vulnerability in explorerdir.php in Frimousse 0.0.2 allows remote attackers to read arbitrary files and list arbitrary directories via a full pathname in the name parameter.
by Houssamix
EIP-2026-105543 EXPLOITDB text VERIFIED
BloofoxCMS 0.3 - Multiple Input Validation Vulnerabilities
by AmnPardaz
CVE-2008-0428 EXPLOITDB text VERIFIED
bloofoxCMS 0.3 - SQL Injection via Username or Password Parameter
Multiple SQL injection vulnerabilities in the login function in system/class_permissions.php in bloofoxCMS 0.3 allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password parameter to admin/index.php.
by BugReport.IR
CVE-2008-0430 EXPLOITDB text VERIFIED
360 Web Manager 3.0 - SQL Injection via IDFM Parameter
SQL injection vulnerability in form.php in 360 Web Manager 3.0 allows remote attackers to execute arbitrary SQL commands via the IDFM parameter.
by Ded MustD!e
CVE-2008-0403 EXPLOITDB text VERIFIED
Belkin F5D9230-4 - Unauthenticated Configuration Access via SaveCfgFile.cgi
The web server in Belkin Wireless G Plus MIMO Router F5D9230-4 does not require authentication for SaveCfgFile.cgi, which allows remote attackers to read and modify configuration via a direct request to SaveCfgFile.cgi.
by DarkFig
CVE-2008-0396 EXPLOITDB text VERIFIED
BitDefender Update Server - Unauthenticated Path Traversal via HTTP Request
Directory traversal vulnerability in BitDefender Update Server (http.exe), as used in BitDefender products including Security for Fileservers and Enterprise Manager (BDEM), allows remote attackers to read arbitrary files via .. (dot dot) sequences in an HTTP request.
by Oliver Karow
CVE-2008-0388 EXPLOITDB text VERIFIED
WP-Forum 1.7.4 - SQL Injection via User Parameter in Showprofile Action
SQL injection vulnerability in the WP-Forum 1.7.4 plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the user parameter in a showprofile action to the default URI.
by websec Team
CVE-2008-0418 EXPLOITDB text VERIFIED
Mozilla Firefox < 2.0.0.12, Thunderbird < 2.0.0.12, and SeaMonkey < 1.1.8 - Directory Traversal via Chrome URI Scheme
Directory traversal vulnerability in Mozilla Firefox before 2.0.0.12, Thunderbird before 2.0.0.12, and SeaMonkey before 1.1.8, when using "flat" addons, allows remote attackers to read arbitrary Javascript, image, and stylesheet files via the chrome: URI scheme, as demonstrated by stealing session information from sessionstore.js.
by Gerry Eisenhaur
CVE-2008-0376 EXPLOITDB text VERIFIED
Small Axe Weblog 0.3.1 - Remote Code Execution via cfile Parameter
PHP remote file inclusion vulnerability in inc/linkbar.php in Small Axe Weblog 0.3.1 allows remote attackers to execute arbitrary PHP code via a URL in the cfile parameter.
by RoMaNcYxHaCkEr
CVE-2008-0442 EXPLOITDB text VERIFIED
Small Axe Weblog 0.3.1 - Remote Code Execution via ffile Parameter
PHP remote file inclusion vulnerability in inc/linkbar.php in Small Axe Weblog 0.3.1 allows remote attackers to execute arbitrary PHP code via a URL in the ffile parameter, a different vector than CVE-2008-0376. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by RoMaNcYxHaCkEr
CVE-2008-0433 EXPLOITDB text VERIFIED
Agares phpAutoVideo < 2.21 - Remote Code Execution via Loadpage Parameter
PHP remote file inclusion vulnerability in theme/phpAutoVideo/LightTwoOh/sidebar.php in Agares phpAutoVideo 2.21 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the loadpage parameter, a different vector than CVE-2007-6614.
by H-T Team
CVE-2008-0432 EXPLOITDB text VERIFIED
phpAutoVideo < 2.21 - Cross-Site Scripting via Cat Parameter
Cross-site scripting (XSS) vulnerability in index.php in phpAutoVideo 2.21 and earlier allows remote attackers to inject arbitrary web script or HTML via the cat parameter.
by H-T Team
CVE-2008-0393 EXPLOITDB text VERIFIED
GradMan < 0.1.3 - Path Traversal via Tabla Parameter
Directory traversal vulnerability in info.php in GradMan 0.1.3 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the tabla parameter, a different vector than CVE-2008-0361.
by Syndr0me
CVE-2008-0365 EXPLOITDB text VERIFIED
CORE FORCE < 0.95.167 - Buffer Overflow via IOCTL or SSDT Hook Handler
Multiple buffer overflows in CORE FORCE before 0.95.172 allow local users to cause a denial of service (system crash) and possibly execute arbitrary code in the kernel context via crafted arguments to (1) IOCTL functions in the Firewall module or (2) SSDT hook handler functions in the Registry module.
by Sebastian Gottschalk
CVE-2008-0379 EXPLOITDB text VERIFIED
Crystal Reports XI Release 2 - Buffer Overflow via Enterprise Tree ActiveX Control SelectedSession Method
Race condition in the Enterprise Tree ActiveX control (EnterpriseControls.dll 11.5.0.313) in Crystal Reports XI Release 2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the SelectedSession method, which triggers a buffer overflow.
by shinnai
CVE-2008-0355 EXPLOITDB text VERIFIED
phpecho_cms < 2.0-rc3 - SQL Injection via Forum Module id Parameter
SQL injection vulnerability in index.php in the forum module in PHPEcho CMS, probably 2.0-rc3 and earlier, allows remote attackers to execute arbitrary SQL commands via the id parameter in a section action, a different vector than CVE-2007-2866.
by Stack
CVE-2008-0357 EXPLOITDB text VERIFIED
Galaxyscripts Mini File Host < 1.2.1 - Unauthenticated Path Traversal via Language Parameter
Directory traversal vulnerability in pages/upload.php in Galaxyscripts Mini File Host 1.2.1 and earlier allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the language parameter.
by Scary-Boys
EIP-2026-105904 EXPLOITDB text VERIFIED
Clever Copy 3.0 - Multiple SQL Injections / Cross-Site Scripting Vulnerabilities
by hadihadi
CVE-2008-0371 EXPLOITDB text VERIFIED
aliTalk 1.9.1.1 - SQL Injection via mohit, id, or username Parameter
Multiple SQL injection vulnerabilities in aliTalk 1.9.1.1, when magic_quotes_gpc is disabled, allow remote authenticated users to execute arbitrary SQL commands via (1) the mohit parameter to (a) inc/receivertwo.php; and allow remote attackers to execute arbitrary SQL commands via (2) the id parameter to (b) inc/usercp.php, related to functionz/usercp.php; or (3) the username parameter to (c) admin/index.php, related to functionz/first_process.php, or (d) index.php. NOTE: some of these details are obtained from third party information.
by tomplixsee
CVE-2008-0359 EXPLOITDB text VERIFIED
BLOG:CMS 4.2.1b - Cross-Site Scripting via PATH_INFO to photo/admin.php or photo/index.php
Multiple cross-site scripting (XSS) vulnerabilities in BLOG:CMS 4.2.1b allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to (1) admin.php or (2) index.php in photo/.
by DSecRG