Text Exploits

31,394 exploits tracked across all sources.

Sort: Activity Stars
CVE-2008-0099 EXPLOITDB text VERIFIED
MyPHP Forum < 3.0 - SQL Injection via Search Parameter
Multiple SQL injection vulnerabilities in MyPHP Forum 3.0 and earlier allow remote attackers to execute arbitrary SQL commands via the searchtext parameter to search.php, and unspecified other vectors.
by The:Paradox
EIP-2026-106972 EXPLOITDB text VERIFIED
ExpressionEngine 1.2.1 - HTTP Response Splitting / Cross-Site Scripting
by MustLive
CVE-2008-0190 EXPLOITDB text VERIFIED
AwesomeTemplateEngine XSS via data[title], data[message], data[table][1][item], data[table][1][url], or data[poweredby]
Multiple cross-site scripting (XSS) vulnerabilities in templates/example_template.php in AwesomeTemplateEngine allow remote attackers to inject arbitrary web script or HTML via the (1) data[title], (2) data[message], (3) data[table][1][item], (4) data[table][1][url], or (5) data[poweredby] parameter.
by MustLive
CVE-2008-0146 EXPLOITDB text VERIFIED
W3-mSQL - Cross-Site Scripting via PATH_INFO
Cross-site scripting (XSS) vulnerability in the error page in W3-mSQL allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to the top-level URI.
by vivek_infosec
CVE-2008-0094 EXPLOITDB text VERIFIED
Modxcms - Path Traversal
Multiple directory traversal vulnerabilities in MODx Content Management System 0.9.6.1 allow remote attackers to (1) include and execute arbitrary local files via a .. (dot dot) in the as_language parameter to assets/snippets/AjaxSearch/AjaxSearch.php, reached through index-ajax.php; and (2) read arbitrary local files via a .. (dot dot) in the file parameter to assets/js/htcmime.php.
by AmnPardaz Security Research Team
CVE-2008-0094 EXPLOITDB text VERIFIED
Modxcms - Path Traversal
Multiple directory traversal vulnerabilities in MODx Content Management System 0.9.6.1 allow remote attackers to (1) include and execute arbitrary local files via a .. (dot dot) in the as_language parameter to assets/snippets/AjaxSearch/AjaxSearch.php, reached through index-ajax.php; and (2) read arbitrary local files via a .. (dot dot) in the file parameter to assets/js/htcmime.php.
by AmnPardaz Security Research Team
CVE-2008-0089 EXPLOITDB text VERIFIED
ClipShare - SQL Injection via UID Parameter
SQL injection vulnerability in uprofile.php in ClipShare allows remote attackers to execute arbitrary SQL commands via the UID parameter.
by Krit
CVE-2008-6060 EXPLOITDB text VERIFIED
FusionCharts - Cross-Site Scripting via dataURL Parameter
Cross-site scripting (XSS) vulnerability in ActionScript in arbitrary Shockwave Flash (SWF) files created by InfoSoft FusionCharts allows remote attackers to inject arbitrary additional SWF content via a URL in the SRC attribute of an IMG element in the dataURL parameter.
by Rich Cannings
CVE-2008-6061 EXPLOITDB text VERIFIED
Techsmith Camtasia Studio < 4.0.2 - Cross-Site Scripting via csPreloader Parameter
Cross-site scripting (XSS) vulnerability in ActionScript in arbitrary Shockwave Flash (SWF) controller files created by Techsmith Camtasia Studio before 5 allows remote attackers to inject arbitrary additional SWF content via a URL in the csPreloader parameter.
by Rich Cannings
CVE-2008-0100 EXPLOITDB text VERIFIED
white_dune < 0.29beta791 - Remote Code Execution via Long String in .WRL File
Stack-based buffer overflow in the Scene::errorf function in Scene.cpp in White_Dune 0.29 beta791 and earlier allows remote attackers to execute arbitrary code via a long string in a .WRL file.
by Luigi Auriemma
CVE-2008-0095 EXPLOITDB text
Asterisk Appliance Developer Kit - Resource Management Error
The SIP channel driver in Asterisk Open Source 1.4.x before 1.4.17, Business Edition before C.1.0-beta8, AsteriskNOW before beta7, Appliance Developer Kit before Asterisk 1.4 revision 95946, and Appliance s800i 1.0.x before 1.0.3.4 allows remote attackers to cause a denial of service (daemon crash) via a BYE message with an Also (Also transfer) header, which triggers a NULL pointer dereference.
by greyvoip
CVE-2008-0091 EXPLOITDB text VERIFIED
agency4net WEBFTP 1 - Path Traversal and Arbitrary File Read/Delete via download2.php file Parameter
Directory traversal vulnerability in download2.php in AGENCY4NET WEBFTP 1 allows remote attackers to read and delete arbitrary files via a .. (dot dot) in the file parameter.
by GoLd_M
CVE-2005-0413 EXPLOITDB text VERIFIED
MyPHP Forum 1.0 - SQL Injection via forum.php fid Parameter
Multiple SQL injection vulnerabilities in MyPHP Forum 1.0 allow remote attackers to execute arbitrary SQL commands via (1) the fid in forum.php, (2) the member parameter in member.php, (3) the email parameter in forgot.php, or (4) the nbuser or nbpass parameters in include.php. NOTE: it was later reported that vector 2 exists in 3.0 and earlier.
by x0kster
CVE-2007-6667 EXPLOITDB text VERIFIED
MyPHP Forum < 3.0 - SQL Injection via FAQ ID Parameter
SQL injection vulnerability in faq.php in MyPHP Forum 3.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: the member.php vector is already covered by CVE-2005-0413.
by x0kster
CVE-2007-6641 EXPLOITDB text VERIFIED
milliscripts Redirection - Cross-Site Scripting via dir.php cat Parameter
Cross-site scripting (XSS) vulnerability in dir.php in milliscripts Redirection allows remote attackers to inject arbitrary web script or HTML via the cat parameter in a browse action.
by Jose Luis Gangora Fernandez
CVE-2007-6646 EXPLOITDB text VERIFIED
LiveCart < 1.1.0 - Cross-Site Scripting via Multiple Parameters
Multiple cross-site scripting (XSS) vulnerabilities in LiveCart 1.0.1, and possibly other versions before 1.1.0, allow remote attackers to inject arbitrary web script or HTML via (1) the return parameter to user/remindPassword, (2) the q parameter to the category script, (3) the return parameter to the order script, or (4) the email parameter to user/remindComplete.
by Doz
CVE-2007-6646 EXPLOITDB text VERIFIED
LiveCart < 1.1.0 - Cross-Site Scripting via Multiple Parameters
Multiple cross-site scripting (XSS) vulnerabilities in LiveCart 1.0.1, and possibly other versions before 1.1.0, allow remote attackers to inject arbitrary web script or HTML via (1) the return parameter to user/remindPassword, (2) the q parameter to the category script, (3) the return parameter to the order script, or (4) the email parameter to user/remindComplete.
by Doz
CVE-2007-6646 EXPLOITDB text VERIFIED
LiveCart < 1.1.0 - Cross-Site Scripting via Multiple Parameters
Multiple cross-site scripting (XSS) vulnerabilities in LiveCart 1.0.1, and possibly other versions before 1.1.0, allow remote attackers to inject arbitrary web script or HTML via (1) the return parameter to user/remindPassword, (2) the q parameter to the category script, (3) the return parameter to the order script, or (4) the email parameter to user/remindComplete.
by Doz
CVE-2007-6646 EXPLOITDB text VERIFIED
LiveCart < 1.1.0 - Cross-Site Scripting via Multiple Parameters
Multiple cross-site scripting (XSS) vulnerabilities in LiveCart 1.0.1, and possibly other versions before 1.1.0, allow remote attackers to inject arbitrary web script or HTML via (1) the return parameter to user/remindPassword, (2) the q parameter to the category script, (3) the return parameter to the order script, or (4) the email parameter to user/remindComplete.
by Doz
CVE-2007-6663 EXPLOITDB text VERIFIED
Pragmatic Utopia PU Arcade <2.1.3 - SQL Injection
SQL injection vulnerability in (1) Puarcade.php and (2) PUarcade.html.php in Pragmatic Utopia PU Arcade (com_puarcade) 2.0.3, 2.1.2, and 2.1.3 Beta component for Joomla! allows remote attackers to execute arbitrary SQL commands via the fid parameter to index.php.
by Houssamix
CVE-2007-6639 EXPLOITDB text VERIFIED
IPTBB 0.5.4 - SQL Injection via id Parameter in viewdir Action
SQL injection vulnerability in index.php in IPTBB 0.5.4 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter in a viewdir action.
by MhZ91
CVE-2007-6671 EXPLOITDB text VERIFIED
Instant Softwares Dating Site - SQL Injection
SQL injection vulnerability in login_form.asp in Instant Softwares Dating Site allows remote attackers to execute arbitrary SQL commands via the Password parameter, a different product than CVE-2006-6021. NOTE: some of these details are obtained from third party information.
by Aria-Security Team
CVE-2007-6650 EXPLOITDB text VERIFIED
Bitweaver R2 - Unrestricted File Upload
Unrestricted file upload vulnerability in fisheye/upload.php in Bitweaver R2 CMS allows remote attackers to upload arbitrary files by using the image/gif content type, and possibly other image and PDF content types, as demonstrated by uploading a .htaccess file.
by BugReport.IR
CVE-2007-6652 EXPLOITDB text VERIFIED
xcms < 1.83 - Remote Code Execution via testo_0 Parameter in cpie.php
cpie.php in XCMS 1.83 and earlier sends a redirect to the web browser but does not exit, which allows remote attackers to conduct direct static code injection attacks and execute arbitrary code via the testo_0 parameter in a cpie admin action to index.php, which writes to dati/generali/footer.dtb (aka the XCMS footer).
by x0kster
CVE-2007-6647 EXPLOITDB text VERIFIED
w-agora < 4.2.1 - SQL Injection via Index.php Cat Parameter
SQL injection vulnerability in index.php in w-Agora 4.2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the cat parameter.
by IHTeam