Text Exploits
31,394 exploits tracked across all sources.
Wp-FileManager 1.2 - Unauthenticated Arbitrary File Upload and Remote Code Execution via ajaxfilemanager.php
Unrestricted file upload vulnerability in ajaxfilemanager.php in the Wp-FileManager 1.2 plugin for WordPress allows remote attackers to upload and execute arbitrary PHP code via unspecified vectors.
by Houssamix
Uebimiau Webmail 2.7.10 and 2.7.2 - Unauthenticated Authentication Bypass via sess[auth] Parameter
Uebimiau Webmail 2.7.10 and 2.7.2 does not protect authentication state variables from being set through HTTP requests, which allows remote attackers to bypass authentication via a sess[auth]=1 parameter settting. NOTE: this can be leveraged to conduct directory traversal attacks without authentication by using CVE-2008-0140.
by Eugene Minaev
SineCMS < 2.3.5 - Path Traversal via sine[config][index_main] Parameter
Directory traversal vulnerability in mods/Integrated/index.php in SineCMS 2.3.5 and earlier, when register_globals is enabled, allows remote attackers to include and execute arbitrary local files via the sine[config][index_main] parameter.
by KiNgOfThEwOrLd
Shop-Script 2.0 - Path Traversal via aux_page Parameter
Directory traversal vulnerability in index.php in Shop-Script 2.0 and possibly other versions allows remote attackers to read arbitrary files via a .. (dot dot) in the aux_page parameter.
by Fisher762
NetRisk < 1.9.7 - Cross-Site Scripting via Page Parameter
Cross-site scripting (XSS) vulnerability in index.php in NetRisk 1.9.7 and possibly earlier allows remote attackers to inject arbitrary web script or HTML via the page parameter, possibly related to CVE-2008-0144.
by Virangar Security
loudblog < 0.8.0 - Remote Code Execution via Template Parameter
Eval injection vulnerability in loudblog/inc/parse_old.php in Loudblog 0.8.0 and earlier allows remote attackers to execute arbitrary PHP code via the template parameter.
by Eugene Minaev
Horde Application Framework 3.0.9 - Info Disclosure
Horde Application Framework 3.0.9 allows remote attackers to read arbitrary files via a null character in the url parameter in services/go.php, which bypasses a sanity check.
by Eugene Minaev
CuteNews 1.1.1 - Remote Code Execution via Text Parameter in Highlight Plugin
plugins/wacko/highlight/html.php in Strawberry in CuteNews.ru 1.1.1 (aka Strawberry) allows remote attackers to execute arbitrary PHP code via the text parameter, which is inserted into an executable regular expression.
by Eugene Minaev
PortalApp 4.0 - Unauthenticated Forum and Content Management via forums.asp and content.asp
PortalApp 4.0 does not require authentication for (1) forums.asp and (2) content.asp, which allows remote attackers to create and delete forums, topics, and replies.
by r3dm0v3
SNETWORKS PHP CLASSIFIEDS 5.0 - Remote File Inclusion via path_escape Parameter
PHP remote file inclusion vulnerability in config.inc.php in SNETWORKS PHP CLASSIFIEDS 5.0 allows remote attackers to execute arbitrary PHP code via a URL in the path_escape parameter.
by Crackers_Child
SAM Broadcaster samPHPweb - SQL Injection via songid Parameter
SQL injection vulnerability in songinfo.php in SAM Broadcaster samPHPweb, possibly 4.2.2 and earlier, allows remote attackers to execute arbitrary SQL commands via the songid parameter.
by BackDoor
Invision Power Board (IP.Board) 2.1.7 - 'ACTIVE' Cross-Site Scripting / SQL Injection
by Eugene Minaev
SAM Broadcaster samPHPweb - Remote Code Execution via commonpath Parameter
PHP remote file inclusion vulnerability in common/db.php in samPHPweb, possibly 4.2.2 and others, as provided with SAM Broadcaster, allows remote attackers to execute arbitrary PHP code via a URL in the commonpath parameter.
by Crackers_Child
NetRisk <= 1.9.7 - Remote File Inclusion via Page Parameter
PHP remote file inclusion vulnerability in index.php in NetRisk 1.9.7 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the page parameter. NOTE: this can also be leveraged for local file inclusion using directory traversal sequences.
by S.W.A.T.
NetRisk 1.9.7 - 'index.php' Remote File Inclusion
by S.W.A.T.
Pragma TelnetServer 7.0.4.589 - Denial of Service via Crafted TELOPT PRAGMA LOGON Telnet Option
telnetd.exe in Pragma TelnetServer 7.0.4.589 allows remote attackers to cause a denial of service (process crash and resource exhaustion) via a crafted TELOPT PRAGMA LOGON telnet option, which triggers a NULL pointer dereference.
by Luigi Auriemma
Pragma FortressSSH < 5.0 - Denial of Service via Long SSH Input
Pragma FortressSSH 5.0 Build 4 Revision 293 and earlier handles long input to sshd.exe by creating an error-message window and waiting for the administrator to click in this window before terminating the sshd.exe process, which allows remote attackers to cause a denial of service (connection slot exhaustion) via a flood of SSH connections with long data objects, as demonstrated by (1) a long list of keys and (2) a long username.
by Luigi Auriemma
Foxit WAC Server 2.1.0.910 and earlier - Heap-Based Buffer Overflow via Telnet Request
Heap-based buffer overflow in Foxit WAC Server 2.1.0.910, 2.0 Build 3503, and earlier allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a Telnet request with long options.
by Luigi Auriemma
WordPress < 2.0.9 - Cross-Site Scripting via popuptitle Parameter
Multiple cross-site scripting (XSS) vulnerabilities in WordPress 2.0.9 and earlier allow remote attackers to inject arbitrary web script or HTML via the popuptitle parameter to (1) wp-admin/post.php or (2) wp-admin/page-new.php.
by 3APA3A
WordPress < 2.0.9 - Cross-Site Scripting via popuptitle Parameter
Multiple cross-site scripting (XSS) vulnerabilities in WordPress 2.0.9 and earlier allow remote attackers to inject arbitrary web script or HTML via the popuptitle parameter to (1) wp-admin/post.php or (2) wp-admin/page-new.php.
by 3APA3A
WordPress < 2.0.11 - Cross-Site Scripting via Backup Parameter
Cross-site scripting (XSS) vulnerability in wp-db-backup.php in WordPress 2.0.11 and earlier, and possibly 2.1.x through 2.3.x, allows remote attackers to inject arbitrary web script or HTML via the backup parameter in a wp-db-backup.php action to wp-admin/edit.php.
by 3APA3A
Rotabanner Local 2/3 - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
by MustLive
PRO-Search < 0.17 - Cross-Site Scripting via Multiple URI Parameters
Multiple cross-site scripting (XSS) vulnerabilities in PRO-Search 0.17 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) prot, (2) host, (3) path, (4) name, (5) ext, (6) size, (7) search_days, or (8) show_page parameter to the default URI.
by MustLive
MyPHP Forum 3.0 - 'search.php' Multiple SQL Injections
by The:Paradox
By Source