Text Exploits

31,394 exploits tracked across all sources.

Sort: Activity Stars
CVE-2007-6368 EXPLOITDB text VERIFIED
ezcontents 1.4.5 - Path Traversal via Link Parameter
Directory traversal vulnerability in index.php in ezContents 1.4.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the link parameter.
by p4imi0
EIP-2026-104062 EXPLOITDB text VERIFIED
Rejetto HTTP File Server (HFS) 2.2/2.3 - Arbitrary File Upload
by Luigi Auriemma
EIP-2026-102693 EXPLOITDB text VERIFIED
MySQL 5.1.13 - INFORMATION_SCHEMA Remote Denial of Service
by Masaaki HIROSE
CVE-2007-6273 EXPLOITDB text VERIFIED
SonicWALL GLobal VPN Client <4.0.0.810 - RCE
Multiple format string vulnerabilities in the configuration file in SonicWALL GLobal VPN Client 3.1.556 and 4.0.0.810 allow user-assisted remote attackers to execute arbitrary code via format string specifiers in the (1) Hostname tag or the (2) name attribute in the Connection tag. NOTE: there might not be any realistic circumstances in which this issue crosses privilege boundaries.
by SEC Consult
CVE-2007-6297 EXPLOITDB text VERIFIED
PHPMyChat 0.14.5 - Cross-Site Scripting via LIMIT, Link, LastCheck, or B Parameter
Multiple cross-site scripting (XSS) vulnerabilities in PHPMyChat 0.14.5 allow remote attackers to inject arbitrary web script or HTML via the (1) LIMIT parameter to chat/deluser.php3, the (2) Link parameter to chat/edituser.php3, or the (3) LastCheck or (4) B parameter to chat/users_popupL.php3. NOTE: the FontName vectors for start_page.css.php3 and style.css.php3 are already covered by CVE-2005-1619. The medium vectors for start_page.css.php3 (start_page.css.php) and style.css.php3 (style.css.php), and the From vector for users_popupL.php3 (users_popupL.php), are already covered by CVE-2005-3991.
by beenudel1986
CVE-2007-6297 EXPLOITDB text VERIFIED
PHPMyChat 0.14.5 - Cross-Site Scripting via LIMIT, Link, LastCheck, or B Parameter
Multiple cross-site scripting (XSS) vulnerabilities in PHPMyChat 0.14.5 allow remote attackers to inject arbitrary web script or HTML via the (1) LIMIT parameter to chat/deluser.php3, the (2) Link parameter to chat/edituser.php3, or the (3) LastCheck or (4) B parameter to chat/users_popupL.php3. NOTE: the FontName vectors for start_page.css.php3 and style.css.php3 are already covered by CVE-2005-1619. The medium vectors for start_page.css.php3 (start_page.css.php) and style.css.php3 (style.css.php), and the From vector for users_popupL.php3 (users_popupL.php), are already covered by CVE-2005-3991.
by beenudel1986
CVE-2007-6270 EXPLOITDB text VERIFIED
Absolute News Manager.NET 5.1 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in Absolute News Manager.NET 5.1 allow remote attackers to inject arbitrary web script or HTML via the (1) rmore parameter to xlaabsolutenm.aspx and the (2) template parameter to pages/default.aspx.
by Adrian Pastor
CVE-2007-6269 EXPLOITDB text VERIFIED
Absolute News Manager.NET 5.1 - SQL Injection
Multiple SQL injection vulnerabilities in xlaabsolutenm.aspx in Absolute News Manager.NET 5.1 allow remote attackers to execute arbitrary SQL commands via the (1) z, (2) pz, (3) ord, and (4) sort parameters.
by Adrian Pastor
CVE-2007-6271 EXPLOITDB text VERIFIED
Absolute News Manager.NET 5.1 - Info Disclosure
Absolute News Manager.NET 5.1 allows remote attackers to obtain sensitive information via a direct request to getpath.aspx, which reveals the installation path in an error message.
by Adrian Pastor
CVE-2007-6268 EXPLOITDB text VERIFIED
Absolute News Manager.NET 5.1 - Path Traversal
Directory traversal vulnerability in pages/default.aspx in Absolute News Manager.NET 5.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the template parameter.
by Adrian Pastor
CVE-2007-6270 EXPLOITDB text VERIFIED
Absolute News Manager.NET 5.1 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in Absolute News Manager.NET 5.1 allow remote attackers to inject arbitrary web script or HTML via the (1) rmore parameter to xlaabsolutenm.aspx and the (2) template parameter to pages/default.aspx.
by Adrian Pastor
CVE-2007-6223 EXPLOITDB text VERIFIED
phpBB Garage 1.2.0 Beta3 - SQL Injection
SQL injection vulnerability in garage.php in phpBB Garage 1.2.0 Beta3 allows remote attackers to execute arbitrary SQL commands via the make_id parameter in a search action in browse mode.
by maku234
CVE-2007-6231 EXPLOITDB text VERIFIED
tellmatic 1.0.7 - Remote Code Execution via tm_includepath Parameter
Multiple PHP remote file inclusion vulnerabilities in tellmatic 1.0.7 allow remote attackers to execute arbitrary PHP code via a URL in the tm_includepath parameter to (1) Classes.inc.php, (2) statistic.inc.php, (3) status.inc.php, (4) status_top_x.inc.php, or (5) libchart-1.1/libchart.php in include/. NOTE: access to include/ is blocked by .htaccess in most deployments that use Apache HTTP Server.
by ShAy6oOoN
CVE-2007-6229 EXPLOITDB text VERIFIED
Rayzz Script 2.0 - Remote Code Execution via CFG[site][project_path] Parameter
PHP remote file inclusion vulnerability in common/classes/class_HeaderHandler.lib.php in Rayzz Script 2.0 allows remote attackers to execute arbitrary PHP code via a URL in the CFG[site][project_path] parameter.
by Crackers_Child
CVE-2007-6232 EXPLOITDB text VERIFIED
FTP Admin 0.1.0 - Cross-Site Scripting via Error Parameter
Cross-site scripting (XSS) vulnerability in index.php in FTP Admin 0.1.0 allows remote attackers to inject arbitrary web script or HTML via the error parameter in an error page action.
by ShAy6oOoN
CVE-2007-6230 EXPLOITDB text VERIFIED
Rayzz Script 2.0 - Path Traversal via CFG[site][project_path] Parameter
Directory traversal vulnerability in common/classes/class_HeaderHandler.lib.php in Rayzz Script 2.0 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the CFG[site][project_path] parameter.
by Crackers_Child
CVE-2007-6218 EXPLOITDB text VERIFIED
Ossigeno CMS 2.2 pre1 - Remote File Inclusion via Multiple Module Parameters
Multiple PHP remote file inclusion vulnerabilities in Ossigeno CMS 2.2 pre1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) level parameter to (a) install_module.php and (b) uninstall_module.php in upload/xax/admin/modules/, (c) upload/xax/admin/patch/index.php, and (d) install_module.php and (e) uninstall_module.php in upload/xax/ossigeno/admin/; and the (2) ossigeno parameter to (f) ossigeno_modules/ossigeno-catalogo/xax/ossigeno/catalogo/common.php, different vectors than CVE-2007-5234.
by ShAy6oOoN
CVE-2007-6218 EXPLOITDB text VERIFIED
Ossigeno CMS 2.2 pre1 - Remote File Inclusion via Multiple Module Parameters
Multiple PHP remote file inclusion vulnerabilities in Ossigeno CMS 2.2 pre1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) level parameter to (a) install_module.php and (b) uninstall_module.php in upload/xax/admin/modules/, (c) upload/xax/admin/patch/index.php, and (d) install_module.php and (e) uninstall_module.php in upload/xax/ossigeno/admin/; and the (2) ossigeno parameter to (f) ossigeno_modules/ossigeno-catalogo/xax/ossigeno/catalogo/common.php, different vectors than CVE-2007-5234.
by ShAy6oOoN
CVE-2007-6218 EXPLOITDB text VERIFIED
Ossigeno CMS 2.2 pre1 - Remote File Inclusion via Multiple Module Parameters
Multiple PHP remote file inclusion vulnerabilities in Ossigeno CMS 2.2 pre1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) level parameter to (a) install_module.php and (b) uninstall_module.php in upload/xax/admin/modules/, (c) upload/xax/admin/patch/index.php, and (d) install_module.php and (e) uninstall_module.php in upload/xax/ossigeno/admin/; and the (2) ossigeno parameter to (f) ossigeno_modules/ossigeno-catalogo/xax/ossigeno/catalogo/common.php, different vectors than CVE-2007-5234.
by ShAy6oOoN
CVE-2007-6218 EXPLOITDB text VERIFIED
Ossigeno CMS 2.2 pre1 - Remote File Inclusion via Multiple Module Parameters
Multiple PHP remote file inclusion vulnerabilities in Ossigeno CMS 2.2 pre1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) level parameter to (a) install_module.php and (b) uninstall_module.php in upload/xax/admin/modules/, (c) upload/xax/admin/patch/index.php, and (d) install_module.php and (e) uninstall_module.php in upload/xax/ossigeno/admin/; and the (2) ossigeno parameter to (f) ossigeno_modules/ossigeno-catalogo/xax/ossigeno/catalogo/common.php, different vectors than CVE-2007-5234.
by ShAy6oOoN
CVE-2007-6218 EXPLOITDB text VERIFIED
Ossigeno CMS 2.2 pre1 - Remote File Inclusion via Multiple Module Parameters
Multiple PHP remote file inclusion vulnerabilities in Ossigeno CMS 2.2 pre1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) level parameter to (a) install_module.php and (b) uninstall_module.php in upload/xax/admin/modules/, (c) upload/xax/admin/patch/index.php, and (d) install_module.php and (e) uninstall_module.php in upload/xax/ossigeno/admin/; and the (2) ossigeno parameter to (f) ossigeno_modules/ossigeno-catalogo/xax/ossigeno/catalogo/common.php, different vectors than CVE-2007-5234.
by ShAy6oOoN
CVE-2007-6218 EXPLOITDB text VERIFIED
Ossigeno CMS 2.2 pre1 - Remote File Inclusion via Multiple Module Parameters
Multiple PHP remote file inclusion vulnerabilities in Ossigeno CMS 2.2 pre1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) level parameter to (a) install_module.php and (b) uninstall_module.php in upload/xax/admin/modules/, (c) upload/xax/admin/patch/index.php, and (d) install_module.php and (e) uninstall_module.php in upload/xax/ossigeno/admin/; and the (2) ossigeno parameter to (f) ossigeno_modules/ossigeno-catalogo/xax/ossigeno/catalogo/common.php, different vectors than CVE-2007-5234.
by ShAy6oOoN
CVE-2007-6275 EXPLOITDB text VERIFIED
bcoos < 1.0.10 - SQL Injection via lid Parameter
SQL injection vulnerability in modules/adresses/ratefile.php in bcoos 1.0.10 and earlier allows remote attackers to execute arbitrary SQL commands via the lid parameter, a different vector than CVE-2007-6266.
by Lostmon
CVE-2007-6227 EXPLOITDB text VERIFIED
QEMU 0.9.0 - Memory Buffer Overflow via Windows Executable Program
QEMU 0.9.0 allows local users of a Windows XP SP2 guest operating system to overwrite the TranslationBlock (code_gen_buffer) buffer, and probably have unspecified other impacts related to an "overflow," via certain Windows executable programs, as demonstrated by qemu-dos.com.
by TeLeMan
CVE-2007-6233 EXPLOITDB text VERIFIED
FTP Admin 0.1.0 - Authenticated Path Traversal via Page Parameter
Directory traversal vulnerability in index.php in FTP Admin 0.1.0 allows remote authenticated users to include and execute arbitrary local files via a .. (dot dot) in the page parameter. NOTE: in some environments, this can be leveraged for remote file inclusion by using a UNC share pathname or an ftp, ftps, or ssh2.sftp URL.
by Omni