Text Exploits
31,394 exploits tracked across all sources.
TELECOM ITALIA Alice Gate2 Plus Wi-Fi - CSRF
Cross-site request forgery in cp06_wifi_m_nocifr.cgi in the administrator panel in TELECOM ITALIA Alice Gate2 Plus Wi-Fi allows remote attackers to hijack the authentication of administrators for requests that disable Wi-Fi encryption via certain values for the wlChannel and wlRadioEnable parameters.
by WarGame
PD9 Software MegaBBS 1.5.14b - Cross-Site Scripting via Profile Upload Target Parameter
Cross-site scripting (XSS) vulnerability in profile-upload/upload.asp in PD9 Software MegaBBS 1.5.14b allows remote attackers to inject arbitrary web script or HTML via the target parameter.
by Doz
bloofoxCMS 0.3 - Path Traversal via File Parameter
Directory traversal vulnerability in file.php in bloofoxCMS 0.3 allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.
by BugReport.IR
TikiWiki < 1.9.9 - Path Traversal via Movie Parameter
Directory traversal vulnerability in tiki-listmovies.php in TikiWiki before 1.9.9 allows remote attackers to read arbitrary files via a .. (dot dot) and modified filename in the movie parameter.
by Sha0
Nucleus CMS 3.31 - Cross-Site Scripting via PATH_INFO in action.php
Cross-site scripting (XSS) vulnerability in action.php in Nucleus CMS 3.31 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO, which is not quoted when processing PHP_SELF.
by Alexandr Polyakov
Frimousse 0.0.2 - Unauthenticated Absolute Path Traversal via explorerdir.php name Parameter
Absolute path traversal vulnerability in explorerdir.php in Frimousse 0.0.2 allows remote attackers to read arbitrary files and list arbitrary directories via a full pathname in the name parameter.
by Houssamix
BloofoxCMS 0.3 - Multiple Input Validation Vulnerabilities
by AmnPardaz
bloofoxCMS 0.3 - SQL Injection via Username or Password Parameter
Multiple SQL injection vulnerabilities in the login function in system/class_permissions.php in bloofoxCMS 0.3 allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password parameter to admin/index.php.
by BugReport.IR
360 Web Manager 3.0 - SQL Injection via IDFM Parameter
SQL injection vulnerability in form.php in 360 Web Manager 3.0 allows remote attackers to execute arbitrary SQL commands via the IDFM parameter.
by Ded MustD!e
Belkin F5D9230-4 - Unauthenticated Configuration Access via SaveCfgFile.cgi
The web server in Belkin Wireless G Plus MIMO Router F5D9230-4 does not require authentication for SaveCfgFile.cgi, which allows remote attackers to read and modify configuration via a direct request to SaveCfgFile.cgi.
by DarkFig
BitDefender Update Server - Unauthenticated Path Traversal via HTTP Request
Directory traversal vulnerability in BitDefender Update Server (http.exe), as used in BitDefender products including Security for Fileservers and Enterprise Manager (BDEM), allows remote attackers to read arbitrary files via .. (dot dot) sequences in an HTTP request.
by Oliver Karow
WP-Forum 1.7.4 - SQL Injection via User Parameter in Showprofile Action
SQL injection vulnerability in the WP-Forum 1.7.4 plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the user parameter in a showprofile action to the default URI.
by websec Team
Mozilla Firefox < 2.0.0.12, Thunderbird < 2.0.0.12, and SeaMonkey < 1.1.8 - Directory Traversal via Chrome URI Scheme
Directory traversal vulnerability in Mozilla Firefox before 2.0.0.12, Thunderbird before 2.0.0.12, and SeaMonkey before 1.1.8, when using "flat" addons, allows remote attackers to read arbitrary Javascript, image, and stylesheet files via the chrome: URI scheme, as demonstrated by stealing session information from sessionstore.js.
by Gerry Eisenhaur
Small Axe Weblog 0.3.1 - Remote Code Execution via cfile Parameter
PHP remote file inclusion vulnerability in inc/linkbar.php in Small Axe Weblog 0.3.1 allows remote attackers to execute arbitrary PHP code via a URL in the cfile parameter.
by RoMaNcYxHaCkEr
Small Axe Weblog 0.3.1 - Remote Code Execution via ffile Parameter
PHP remote file inclusion vulnerability in inc/linkbar.php in Small Axe Weblog 0.3.1 allows remote attackers to execute arbitrary PHP code via a URL in the ffile parameter, a different vector than CVE-2008-0376. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by RoMaNcYxHaCkEr
Agares phpAutoVideo < 2.21 - Remote Code Execution via Loadpage Parameter
PHP remote file inclusion vulnerability in theme/phpAutoVideo/LightTwoOh/sidebar.php in Agares phpAutoVideo 2.21 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the loadpage parameter, a different vector than CVE-2007-6614.
by H-T Team
phpAutoVideo < 2.21 - Cross-Site Scripting via Cat Parameter
Cross-site scripting (XSS) vulnerability in index.php in phpAutoVideo 2.21 and earlier allows remote attackers to inject arbitrary web script or HTML via the cat parameter.
by H-T Team
GradMan < 0.1.3 - Path Traversal via Tabla Parameter
Directory traversal vulnerability in info.php in GradMan 0.1.3 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the tabla parameter, a different vector than CVE-2008-0361.
by Syndr0me
CORE FORCE < 0.95.167 - Buffer Overflow via IOCTL or SSDT Hook Handler
Multiple buffer overflows in CORE FORCE before 0.95.172 allow local users to cause a denial of service (system crash) and possibly execute arbitrary code in the kernel context via crafted arguments to (1) IOCTL functions in the Firewall module or (2) SSDT hook handler functions in the Registry module.
by Sebastian Gottschalk
Crystal Reports XI Release 2 - Buffer Overflow via Enterprise Tree ActiveX Control SelectedSession Method
Race condition in the Enterprise Tree ActiveX control (EnterpriseControls.dll 11.5.0.313) in Crystal Reports XI Release 2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the SelectedSession method, which triggers a buffer overflow.
by shinnai
phpecho_cms < 2.0-rc3 - SQL Injection via Forum Module id Parameter
SQL injection vulnerability in index.php in the forum module in PHPEcho CMS, probably 2.0-rc3 and earlier, allows remote attackers to execute arbitrary SQL commands via the id parameter in a section action, a different vector than CVE-2007-2866.
by Stack
Galaxyscripts Mini File Host < 1.2.1 - Unauthenticated Path Traversal via Language Parameter
Directory traversal vulnerability in pages/upload.php in Galaxyscripts Mini File Host 1.2.1 and earlier allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the language parameter.
by Scary-Boys
Clever Copy 3.0 - Multiple SQL Injections / Cross-Site Scripting Vulnerabilities
by hadihadi
aliTalk 1.9.1.1 - SQL Injection via mohit, id, or username Parameter
Multiple SQL injection vulnerabilities in aliTalk 1.9.1.1, when magic_quotes_gpc is disabled, allow remote authenticated users to execute arbitrary SQL commands via (1) the mohit parameter to (a) inc/receivertwo.php; and allow remote attackers to execute arbitrary SQL commands via (2) the id parameter to (b) inc/usercp.php, related to functionz/usercp.php; or (3) the username parameter to (c) admin/index.php, related to functionz/first_process.php, or (d) index.php. NOTE: some of these details are obtained from third party information.
by tomplixsee
BLOG:CMS 4.2.1b - Cross-Site Scripting via PATH_INFO to photo/admin.php or photo/index.php
Multiple cross-site scripting (XSS) vulnerabilities in BLOG:CMS 4.2.1b allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to (1) admin.php or (2) index.php in photo/.
by DSecRG
By Source