Text Exploits

31,394 exploits tracked across all sources.

Sort: Activity Stars
CVE-2008-0337 EXPLOITDB text VERIFIED
MiniWeb HTTP Server 0.8.19 - Remote Code Execution via Long URI
Heap-based buffer overflow in the _mwProcessReadSocket function in http.c in MiniWeb HTTP Server 0.8.19 allows remote attackers to execute arbitrary code via a long URI.
by Hamid Ebadi
CVE-2008-0338 EXPLOITDB text VERIFIED
MiniWeb HTTP Server 0.8.19 - Path Traversal via Partially Encoded Dot Dot Sequences
Directory traversal vulnerability in the mwGetLocalFileName function in http.c in MiniWeb HTTP Server 0.8.19 allows remote attackers to read arbitrary files and list arbitrary directories via a (1) .%2e (partially encoded dot dot) or (2) %2e%2e (encoded dot dot) in the URI.
by Hamid Ebadi
CVE-2008-0364 EXPLOITDB text VERIFIED
BitTorrent < 6.0 and uTorrent < 1.7.5 - Buffer Overflow via Long Unicode Client Version String
Buffer overflow in (1) BitTorrent 6.0 and earlier; and (2) uTorrent 1.7.5 and earlier, and 1.8-alpha-7834 and earlier in the 1.8.x series; on Windows allows remote attackers to cause a denial of service (application crash) via a long Unicode string representing a client version identifier.
by Luigi Auriemma
CVE-2008-0353 EXPLOITDB text VERIFIED
php-residence 0.7.2 and 1.0 - SQL Injection via cognome_cerca Parameter
SQL injection vulnerability in visualizza_tabelle.php in php-residence 0.7.2 and 1.0 allows remote attackers to execute arbitrary SQL commands via the cognome_cerca parameter. NOTE: some of these details are obtained from third party information.
by Khashayar Fereidani
CVE-2008-0382 EXPLOITDB text VERIFIED
Mybulletinboard - Code Injection
Multiple eval injection vulnerabilities in MyBB 1.2.10 and earlier allow remote attackers to execute arbitrary code via the sortby parameter to (1) forumdisplay.php or (2) a results action in search.php.
by waraxe
CVE-2008-0383 EXPLOITDB text VERIFIED
MyBB < 1.2.10 - Authenticated SQL Injection via Moderation and Admin Parameters
Multiple SQL injection vulnerabilities in MyBB 1.2.10 and earlier allow remote moderators and administrators to execute arbitrary SQL commands via (1) the mergepost parameter in a do_mergeposts action, (2) rid parameter in an allreports action, or (3) threads parameter in a do_multimovethreads action to (a) moderation.php; or (4) gid parameter to (b) admin/usergroups.php.
by waraxe
CVE-2008-0360 EXPLOITDB text VERIFIED
BLOG:CMS 4.2.1b - SQL Injection via blogid, user, or field Parameter
Multiple SQL injection vulnerabilities in BLOG:CMS 4.2.1b allow remote attackers to execute arbitrary SQL commands via (1) the blogid parameter to index.php, (2) the user parameter to action.php, or (3) the field parameter to admin/plugins/table/index.php.
by DSecRG
CVE-2008-0332 EXPLOITDB text VERIFIED
aria 0.99-6 - Path Traversal via Page Parameter
Directory traversal vulnerability in arias/help/effect.php in aria 0.99-6 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the page parameter.
by DSecRG
CVE-2008-0391 EXPLOITDB text VERIFIED
aliTalk 1.9.1.1 - Unauthenticated Arbitrary User Account Creation via lilil Parameter
inc/elementz.php in aliTalk 1.9.1.1 does not properly verify authentication, which allows remote attackers to add an arbitrary user account via a modified lilil parameter, in conjunction with the ubild and pa parameters.
by tomplixsee
CVE-2008-0372 EXPLOITDB text VERIFIED
8e6 R3000 Internet Filter < 2.0.11 - Request Smuggling via Fragmented HTTP Request
8e6 R3000 Internet Filter 2.0.05.33, and other versions before 2.0.11, allows remote attackers to bypass intended restrictions via a fragmented HTTP request.
by nnposter
CVE-2008-0333 EXPLOITDB text VERIFIED
AfterLogic MailBee WebMail Pro 4.1 - Path Traversal via download_view_attachment.aspx temp_filename Parameter
Directory traversal vulnerability in download_view_attachment.aspx in AfterLogic MailBee WebMail Pro 4.1 for ASP.NET allows remote attackers to read arbitrary files via a .. (dot dot) in the temp_filename parameter.
by -=M.o.B=-
CVE-2008-0329 EXPLOITDB text VERIFIED
LulieBlog 1.0.1 and 1.0.2 - Unauthenticated Arbitrary Comment and Article Deletion via Admin Endpoints
LulieBlog 1.0.1 and 1.0.2 does not restrict access to (1) article_suppr.php, (2) comment_accepter.php, and (3) comment_refuser.php in Admin/, which allows remote attackers to accept comments, delete comments, and delete articles via the id parameter.
by ka0x
CVE-2008-0326 EXPLOITDB text VERIFIED
FaScript FaPersianHack 1.0 - SQL Injection via id Parameter
SQL injection vulnerability in class/show.php in FaScript FaPersianHack 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter to show.php.
by Khashayar Fereidani
CVE-2008-0325 EXPLOITDB text VERIFIED
FaScript FaPersian Petition - SQL Injection via show.php id Parameter
SQL injection vulnerability in show.php in FaScript FaPersian Petition allows remote attackers to execute arbitrary SQL commands via the id parameter.
by Khashayar Fereidani
CVE-2008-0328 EXPLOITDB text VERIFIED
FaScript FaName 1.0 - SQL Injection via id Parameter
SQL injection vulnerability in page.php in FaScript FaName 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.
by Khashayar Fereidani
CVE-2008-0327 EXPLOITDB text VERIFIED
FaScript FaMp3 1.0 - SQL Injection via show.php id Parameter
SQL injection vulnerability in show.php in FaScript FaMp3 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.
by Khashayar Fereidani
CVE-2008-0286 EXPLOITDB text VERIFIED
Article Dashboard - SQL Injection via Admin Login User or Password Fields
SQL injection vulnerability in admin/login.php in Article Dashboard allows remote attackers to execute arbitrary SQL commands via the (1) user or (2) password fields.
by Xcross87
CVE-2007-4389 EXPLOITDB text VERIFIED
2wire 1701HG, 1800HW, and 2071 Gateway Routers - Cross-Site Request Forgery via NAME and ADDR Parameters
Cross-site request forgery (CSRF) vulnerability in /xslt in 2wire 1701HG, 1800HW, and 2071 Gateway routers, with 3.17.5, 3.7.1, and 5.29.51 software, allows remote attackers to create DNS mappings as administrators, and conduct DNS poisoning attacks, via the NAME and ADDR parameters.
by hkm
CVE-2008-0234 EXPLOITDB text VERIFIED
Apple Quicktime < 7.4.1 - Remote Code Execution via RTSP Reason-Phrase Buffer Overflow
Buffer overflow in Apple Quicktime Player 7.3.1.70 and other versions before 7.4.1, when RTSP tunneling is enabled, allows remote attackers to execute arbitrary code via a long Reason-Phrase response to an rtsp:// request, as demonstrated using a 404 error message.
by Luigi Auriemma
CVE-2008-0334 EXPLOITDB text VERIFIED
PMachine Pro 2.4.1 - Cross-Site Scripting via L_PREF_NAME[855] Parameter
Cross-site scripting (XSS) vulnerability in pm/language/spanish/preferences.php in PMachine Pro 2.4.1 allows remote attackers to inject arbitrary web script or HTML via the L_PREF_NAME[855] parameter.
by fuzion
CVE-2008-0265 EXPLOITDB text VERIFIED
F5 TMOS - Cross-Site Scripting via SearchString Parameter in Web Management Interface
Multiple cross-site scripting (XSS) vulnerabilities in the Search function in the web management interface in F5 BIG-IP 9.4.3 allow remote attackers to inject arbitrary web script or HTML via the SearchString parameter to (1) list_system.jsp, (2) list_pktfilter.jsp, (3) list_ltm.jsp, (4) resources_audit.jsp, and (5) list_asm.jsp in tmui/Control/jspmap/tmui/system/log/; and (6) list.jsp in certain directories.
by nnposter
EIP-2026-100805 EXPLOITDB text VERIFIED
Garment Center - 'index.cgi' Local File Inclusion
by Smasher
CVE-2008-0259 EXPLOITDB text VERIFIED
minimal_gallery 0.8 - Path Traversal via thumbcat or thumb Parameter
Multiple directory traversal vulnerabilities in _mg/php/mg_thumbs.php in minimal Gallery 0.8 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) thumbcat and (2) thumb parameters.
by Houssamix
CVE-2008-0258 EXPLOITDB text VERIFIED
phprunman < 1.0.2 - Cross-Site Scripting via Message Parameter
Cross-site scripting (XSS) vulnerability in index.php in PHP Running Management (phpRunMan) before 1.0.3 allows remote attackers to inject arbitrary web script or HTML via the message parameter.
by Christophe VG
CVE-2008-0260 EXPLOITDB text VERIFIED
minimal Gallery 0.8 - Information Exposure via php_info.php
minimal Gallery 0.8 allows remote attackers to obtain configuration information via a direct request to php_info.php, which calls the phpinfo function.
by Houssamix