Text Exploits
31,394 exploits tracked across all sources.
MiniWeb HTTP Server 0.8.19 - Remote Code Execution via Long URI
Heap-based buffer overflow in the _mwProcessReadSocket function in http.c in MiniWeb HTTP Server 0.8.19 allows remote attackers to execute arbitrary code via a long URI.
by Hamid Ebadi
MiniWeb HTTP Server 0.8.19 - Path Traversal via Partially Encoded Dot Dot Sequences
Directory traversal vulnerability in the mwGetLocalFileName function in http.c in MiniWeb HTTP Server 0.8.19 allows remote attackers to read arbitrary files and list arbitrary directories via a (1) .%2e (partially encoded dot dot) or (2) %2e%2e (encoded dot dot) in the URI.
by Hamid Ebadi
BitTorrent < 6.0 and uTorrent < 1.7.5 - Buffer Overflow via Long Unicode Client Version String
Buffer overflow in (1) BitTorrent 6.0 and earlier; and (2) uTorrent 1.7.5 and earlier, and 1.8-alpha-7834 and earlier in the 1.8.x series; on Windows allows remote attackers to cause a denial of service (application crash) via a long Unicode string representing a client version identifier.
by Luigi Auriemma
php-residence 0.7.2 and 1.0 - SQL Injection via cognome_cerca Parameter
SQL injection vulnerability in visualizza_tabelle.php in php-residence 0.7.2 and 1.0 allows remote attackers to execute arbitrary SQL commands via the cognome_cerca parameter. NOTE: some of these details are obtained from third party information.
by Khashayar Fereidani
Mybulletinboard - Code Injection
Multiple eval injection vulnerabilities in MyBB 1.2.10 and earlier allow remote attackers to execute arbitrary code via the sortby parameter to (1) forumdisplay.php or (2) a results action in search.php.
by waraxe
MyBB < 1.2.10 - Authenticated SQL Injection via Moderation and Admin Parameters
Multiple SQL injection vulnerabilities in MyBB 1.2.10 and earlier allow remote moderators and administrators to execute arbitrary SQL commands via (1) the mergepost parameter in a do_mergeposts action, (2) rid parameter in an allreports action, or (3) threads parameter in a do_multimovethreads action to (a) moderation.php; or (4) gid parameter to (b) admin/usergroups.php.
by waraxe
BLOG:CMS 4.2.1b - SQL Injection via blogid, user, or field Parameter
Multiple SQL injection vulnerabilities in BLOG:CMS 4.2.1b allow remote attackers to execute arbitrary SQL commands via (1) the blogid parameter to index.php, (2) the user parameter to action.php, or (3) the field parameter to admin/plugins/table/index.php.
by DSecRG
aria 0.99-6 - Path Traversal via Page Parameter
Directory traversal vulnerability in arias/help/effect.php in aria 0.99-6 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the page parameter.
by DSecRG
aliTalk 1.9.1.1 - Unauthenticated Arbitrary User Account Creation via lilil Parameter
inc/elementz.php in aliTalk 1.9.1.1 does not properly verify authentication, which allows remote attackers to add an arbitrary user account via a modified lilil parameter, in conjunction with the ubild and pa parameters.
by tomplixsee
8e6 R3000 Internet Filter < 2.0.11 - Request Smuggling via Fragmented HTTP Request
8e6 R3000 Internet Filter 2.0.05.33, and other versions before 2.0.11, allows remote attackers to bypass intended restrictions via a fragmented HTTP request.
by nnposter
AfterLogic MailBee WebMail Pro 4.1 - Path Traversal via download_view_attachment.aspx temp_filename Parameter
Directory traversal vulnerability in download_view_attachment.aspx in AfterLogic MailBee WebMail Pro 4.1 for ASP.NET allows remote attackers to read arbitrary files via a .. (dot dot) in the temp_filename parameter.
by -=M.o.B=-
LulieBlog 1.0.1 and 1.0.2 - Unauthenticated Arbitrary Comment and Article Deletion via Admin Endpoints
LulieBlog 1.0.1 and 1.0.2 does not restrict access to (1) article_suppr.php, (2) comment_accepter.php, and (3) comment_refuser.php in Admin/, which allows remote attackers to accept comments, delete comments, and delete articles via the id parameter.
by ka0x
FaScript FaPersianHack 1.0 - SQL Injection via id Parameter
SQL injection vulnerability in class/show.php in FaScript FaPersianHack 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter to show.php.
by Khashayar Fereidani
FaScript FaPersian Petition - SQL Injection via show.php id Parameter
SQL injection vulnerability in show.php in FaScript FaPersian Petition allows remote attackers to execute arbitrary SQL commands via the id parameter.
by Khashayar Fereidani
FaScript FaName 1.0 - SQL Injection via id Parameter
SQL injection vulnerability in page.php in FaScript FaName 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.
by Khashayar Fereidani
FaScript FaMp3 1.0 - SQL Injection via show.php id Parameter
SQL injection vulnerability in show.php in FaScript FaMp3 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.
by Khashayar Fereidani
Article Dashboard - SQL Injection via Admin Login User or Password Fields
SQL injection vulnerability in admin/login.php in Article Dashboard allows remote attackers to execute arbitrary SQL commands via the (1) user or (2) password fields.
by Xcross87
2wire 1701HG, 1800HW, and 2071 Gateway Routers - Cross-Site Request Forgery via NAME and ADDR Parameters
Cross-site request forgery (CSRF) vulnerability in /xslt in 2wire 1701HG, 1800HW, and 2071 Gateway routers, with 3.17.5, 3.7.1, and 5.29.51 software, allows remote attackers to create DNS mappings as administrators, and conduct DNS poisoning attacks, via the NAME and ADDR parameters.
by hkm
Apple Quicktime < 7.4.1 - Remote Code Execution via RTSP Reason-Phrase Buffer Overflow
Buffer overflow in Apple Quicktime Player 7.3.1.70 and other versions before 7.4.1, when RTSP tunneling is enabled, allows remote attackers to execute arbitrary code via a long Reason-Phrase response to an rtsp:// request, as demonstrated using a 404 error message.
by Luigi Auriemma
PMachine Pro 2.4.1 - Cross-Site Scripting via L_PREF_NAME[855] Parameter
Cross-site scripting (XSS) vulnerability in pm/language/spanish/preferences.php in PMachine Pro 2.4.1 allows remote attackers to inject arbitrary web script or HTML via the L_PREF_NAME[855] parameter.
by fuzion
F5 TMOS - Cross-Site Scripting via SearchString Parameter in Web Management Interface
Multiple cross-site scripting (XSS) vulnerabilities in the Search function in the web management interface in F5 BIG-IP 9.4.3 allow remote attackers to inject arbitrary web script or HTML via the SearchString parameter to (1) list_system.jsp, (2) list_pktfilter.jsp, (3) list_ltm.jsp, (4) resources_audit.jsp, and (5) list_asm.jsp in tmui/Control/jspmap/tmui/system/log/; and (6) list.jsp in certain directories.
by nnposter
Garment Center - 'index.cgi' Local File Inclusion
by Smasher
minimal_gallery 0.8 - Path Traversal via thumbcat or thumb Parameter
Multiple directory traversal vulnerabilities in _mg/php/mg_thumbs.php in minimal Gallery 0.8 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) thumbcat and (2) thumb parameters.
by Houssamix
phprunman < 1.0.2 - Cross-Site Scripting via Message Parameter
Cross-site scripting (XSS) vulnerability in index.php in PHP Running Management (phpRunMan) before 1.0.3 allows remote attackers to inject arbitrary web script or HTML via the message parameter.
by Christophe VG
minimal Gallery 0.8 - Information Exposure via php_info.php
minimal Gallery 0.8 allows remote attackers to obtain configuration information via a direct request to php_info.php, which calls the phpinfo function.
by Houssamix
By Source