Text Exploits

31,394 exploits tracked across all sources.

Sort: Activity Stars
CVE-2007-6597 EXPLOITDB text VERIFIED
IPortalX < Build 033 - Cross-Site Scripting via KW, SF, or Date Parameters
Multiple cross-site scripting (XSS) vulnerabilities in IPortalX before Build 033 allow remote attackers to inject arbitrary web script or HTML via the (1) KW and (2) SF parameters to forum/login_user.asp, and (3) the Date parameter to blogs.asp.
by Doz
CVE-2007-6597 EXPLOITDB text VERIFIED
IPortalX < Build 033 - Cross-Site Scripting via KW, SF, or Date Parameters
Multiple cross-site scripting (XSS) vulnerabilities in IPortalX before Build 033 allow remote attackers to inject arbitrary web script or HTML via the (1) KW and (2) SF parameters to forum/login_user.asp, and (3) the Date parameter to blogs.asp.
by Doz
EIP-2026-118679 EXPLOITDB text VERIFIED
ImgSvr 0.6.21 - Error Message Remote Script Execution
by anonymous
CVE-2007-6568 EXPLOITDB text VERIFIED
XZero Community Classifieds <4.95.11 - RCE
PHP remote file inclusion vulnerability in config.inc.php in XZero Community Classifieds 4.95.11 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the path_escape parameter.
by Kw3[R]Ln
CVE-2007-6624 EXPLOITDB text VERIFIED
PNphpBB2 1.2i - Path Traversal via phpEx Parameter
Directory traversal vulnerability in printview.php in PNphpBB2 1.2i and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the phpEx parameter.
by irk4z
CVE-2007-6565 EXPLOITDB text VERIFIED
Blakord Portal <1.3.A - SQL Injection
Multiple SQL injection vulnerabilities in Blakord Portal 1.3.A Beta and earlier allow remote attackers to execute arbitrary SQL commands via the id parameter to an arbitrary component.
by JosS
CVE-2007-6553 EXPLOITDB text VERIFIED
TeamCal Pro < 3.1.000 - Remote Code Execution via CONF[app_root] Parameter
Multiple PHP remote file inclusion vulnerabilities in TeamCal Pro 3.1.000 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the CONF[app_root] parameter to (1) tcuser.class.php, (2) absencecount.inc.php, (3) avatar.inc.php, (4) csvhandler.class.php, (5) functions.tcpro.php, (6) header.html.inc.php, (7) joomlajack.tcpro.php, (8) menu.inc.php, (9) other.inc.php, (10) tcabsence.class.php, (11) tcabsencegroup.class.php, (12) tcallowance.class.php, (13) tcannouncement.class.php, (14) tcconfig.class.php, (15) tcdaynote.class.php, (16) tcgroup.class.php, (17) tcholiday.class.php, (18) tclogin.class.php, (19) tcmonth.class.php, (20) tctemplate.class.php, (21) tcusergroup.class.php, or (22) tcuseroption.class.php in includes/, possibly a related issue to CVE-2006-4845.
by GoLd_M
CVE-2007-6547 EXPLOITDB text VERIFIED
RunCMS < 1.6 - Unauthenticated Password Change
RunCMS before 1.6.1 does not require entry of the old password during a password change, which allows context-dependent attackers to change passwords upon obtaining temporary access to a session.
by DSecRG
CVE-2007-6546 EXPLOITDB text VERIFIED
RunCMS < 1.6 - Session Hijacking via Predictable Session ID
RunCMS before 1.6.1 uses a predictable session id, which makes it easier for remote attackers to hijack sessions via a modified id.
by DSecRG
CVE-2007-6545 EXPLOITDB text VERIFIED
RunCMS < 1.6 - Cross-Site Scripting via News Subject Parameter
Multiple cross-site scripting (XSS) vulnerabilities in RunCMS before 1.6.1 allow remote attackers to inject arbitrary web script or HTML via (1) the subject parameter to modules/news/submit.php; (2) the PATH_INFO to modules/news/index.php, possibly related to the XoopsPageNav class; or (3) an avatar image to edituser.php.
by DSecRG
CVE-2007-6544 EXPLOITDB text VERIFIED
RunCMS - SQL Injection via lid Parameter
Multiple SQL injection vulnerabilities in RunCMS before 1.6.1 allow remote attackers to execute arbitrary SQL commands via the lid parameter to (1) brokenfile.php, (2) visit.php, or (3) ratefile.php in modules/mydownloads/; or (4) ratelink.php, (5) modlink.php, or (6) brokenlink.php in modules/mylinks/.
by DSecRG
CVE-2007-6558 EXPLOITDB text VERIFIED
TotalPlayer 3.0 - Denial of Service via Large M3U File
TotalPlayer 3.0 allows user-assisted remote attackers to cause a denial of service (application crash) via a large .m3u file. NOTE: this might be a duplicate of CVE-2006-6288.
by David G.M.
CVE-2007-6554 EXPLOITDB text VERIFIED
TeamCal Pro <3.1.000 - Path Traversal
Multiple directory traversal vulnerabilities in TeamCal Pro 3.1.000 and earlier allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang parameter to (1) index.php, (2) register.php, (3) login.php, or (4) statistics.php.
by GoLd_M
CVE-2007-6548 EXPLOITDB text VERIFIED
RunCMS < 1.6 - Authenticated PHP Code Injection via Admin Parameters
Multiple direct static code injection vulnerabilities in RunCMS before 1.6.1 allow remote authenticated administrators to inject arbitrary PHP code via the (1) header and (2) footer parameters to modules/system/admin.php in a meta-generator action, (3) the disclaimer parameter to modules/system/admin.php in a disclaimer action, (4) the disclaimer parameter to modules/mydownloads/admin/index.php in a mydownloadsConfigAdmin action, (5) the disclaimer parameter to modules/newbb_plus/admin/forum_config.php, (6) the disclaimer parameter to modules/mylinks/admin/index.php in a myLinksConfigAdmin action, or (7) the intro parameter to modules/sections/admin/index.php in a secconfig action, which inject PHP sequences into (a) sections/cache/intro.php, (b) mylinks/cache/disclaimer.php, (c) mydownloads/cache/disclaimer.php, (d) newbb_plus/cache/disclaimer.php, (e) system/cache/disclaimer.php, (f) system/cache/footer.php, (g) system/cache/header.php, or (h) system/cache/maintenance.php in modules/.
by DSecRG
CVE-2007-6551 EXPLOITDB text VERIFIED
MailMachine Pro <2.2.6 - SQL Injection
SQL injection vulnerability in showMsg.php in MailMachine Pro 2.2.4, and other versions before 2.2.6, allows remote attackers to execute arbitrary SQL commands via the id parameter.
by MhZ91
CVE-2007-6564 EXPLOITDB text VERIFIED
Limbo CMS 1.0.4.2 - Cross-Site Scripting via com_option Parameter
Cross-site scripting (XSS) vulnerability in admin.php in Limbo CMS 1.0.4.2 allows remote attackers to inject arbitrary web script or HTML via the com_option parameter.
by Omer Singer
CVE-2007-6543 EXPLOITDB text VERIFIED
eSyndiCat Link Exchange Script - SQL Injection
SQL injection vulnerability in suggest-link.php in eSyndiCat Link Exchange Script allows remote attackers to execute arbitrary SQL commands via the id parameter.
by EgiX
EIP-2026-101504 EXPLOITDB text VERIFIED
ZYXEL P-330W - Multiple Vulnerabilities
by santa_clause
CVE-2007-6614 EXPLOITDB text VERIFIED
Agares Media phpAutoVideo <2.21 - RCE
PHP remote file inclusion vulnerability in admin/frontpage_right.php in Agares Media phpAutoVideo 2.21 allows remote attackers to execute arbitrary PHP code via a URL in the loadadminpage parameter, a related issue to CVE-2007-6542.
by MhZ91
CVE-2007-6556 EXPLOITDB text VERIFIED
websihirbazi 5.1.1 - SQL Injection via News ID or Page ID Parameter
Multiple SQL injection vulnerabilities in websihirbazi 5.1.1 allow remote attackers to execute arbitrary SQL commands via (1) the id parameter to default.asp in a news page action or (2) the pageid parameter to default.asp.
by bypass
EIP-2026-112653 EXPLOITDB text VERIFIED
ThemeSiteScript 1.0 - 'index.php?loadadminpage' Remote File Inclusion
by Koller
CVE-2007-6557 EXPLOITDB text VERIFIED
MeGaCheatZ 1.1 - SQL Injection via ItemID Parameter
Multiple SQL injection vulnerabilities in MeGaCheatZ 1.1 allow remote attackers to execute arbitrary SQL commands via the ItemID parameter to (1) comments.php, (2) view.php, (3) siteadmin/ViewItem.php, and unspecified other vectors.
by MhZ91
CVE-2007-6559 EXPLOITDB text VERIFIED
Logaholic - SQL Injection via from or page Parameter
Multiple SQL injection vulnerabilities in Logaholic before 2.0 RC8 allow remote attackers to execute arbitrary SQL commands via (1) the from parameter to index.php or (2) the page parameter to update.php.
by malibu.r
CVE-2007-6560 EXPLOITDB text VERIFIED
Logaholic - Cross-Site Scripting via newconfname or conf Parameter
Multiple cross-site scripting (XSS) vulnerabilities in Logaholic before 2.0 RC8 allow remote attackers to inject arbitrary web script or HTML via (1) the newconfname parameter to profiles.php or (2) the conf parameter to index.php.
by malibu.r
CVE-2007-6560 EXPLOITDB text VERIFIED
Logaholic - Cross-Site Scripting via newconfname or conf Parameter
Multiple cross-site scripting (XSS) vulnerabilities in Logaholic before 2.0 RC8 allow remote attackers to inject arbitrary web script or HTML via (1) the newconfname parameter to profiles.php or (2) the conf parameter to index.php.
by malibu.r