Text Exploits

31,394 exploits tracked across all sources.

Sort: Activity Stars
CVE-2007-6232 EXPLOITDB text VERIFIED
FTP Admin 0.1.0 - Cross-Site Scripting via Error Parameter
Cross-site scripting (XSS) vulnerability in index.php in FTP Admin 0.1.0 allows remote attackers to inject arbitrary web script or HTML via the error parameter in an error page action.
by Omni
CVE-2007-6213 EXPLOITDB text VERIFIED
WebED 0.0.9 - Path Traversal via Root and Path Parameters
Multiple directory traversal vulnerabilities in mod/chat/index.php in WebED 0.0.9 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) Root and (2) Path parameters.
by GoLd_M
CVE-2007-6215 EXPLOITDB text VERIFIED
Web-MeetMe 3.0.3 - Path Traversal via play.php roomNo Parameter
Multiple directory traversal vulnerabilities in play.php in Web-MeetMe 3.0.3 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) roomNo and possibly the (2) bookid parameter.
by Evil.Man
CVE-2007-6214 EXPLOITDB text VERIFIED
LearnLoop <2.0 beta7 - Path Traversal
Directory traversal vulnerability in include/file_download.php in LearnLoop 2.0 beta7 allows remote attackers to read arbitrary files via a .. (dot dot) in the sFilePath parameter. NOTE: exploitation requires that the product is configured, but has zero files in the database.
by GoLd_M
CVE-2007-6212 EXPLOITDB text VERIFIED
KML share 1.1 - Path Traversal via Layer Parameter
Directory traversal vulnerability in region.php in KML share 1.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the layer parameter.
by GoLd_M
CVE-2007-6234 EXPLOITDB text VERIFIED
FTP Admin 0.1.0 - Unauthenticated Authentication Bypass via Loggedin Parameter
index.php in FTP Admin 0.1.0 allows remote attackers to bypass authentication and obtain administrative access via a loggedin parameter with a value of true, as demonstrated by adding a user account.
by Omni
CVE-2007-6188 EXPLOITDB text VERIFIED
TuMusika Evolution 1.7R5 - Path Traversal
Multiple directory traversal vulnerabilities in TuMusika Evolution 1.7R5 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the language parameter to (1) languages_n.php, (2) languages_f.php, or (3) languages.php in inc/; and (4) allow remote attackers to read arbitrary local files via a .. (dot dot) in the uri parameter to frames/nogui/sc_download.php.
by GoLd_M
CVE-2007-6221 EXPLOITDB text VERIFIED
TuMusika Evolution <1.7R5 - Info Disclosure
TuMusika Evolution 1.7R5 allows remote attackers to obtain configuration information via a direct request to phpinfo.php, which calls the phpinfo function. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by GoLd_M
CVE-2007-6177 EXPLOITDB text VERIFIED
PHP_CON 1.3 - Remote Code Execution via webappcfg[APPPATH] Parameter
PHP remote file inclusion vulnerability in Exchange/include.php in PHP_CON 1.3 allows remote attackers to execute arbitrary PHP code via a URL in the webappcfg[APPPATH] parameter.
by GoLd_M
CVE-2007-6187 EXPLOITDB text VERIFIED
PHP Content Architect <1.2 - Path Traversal
Multiple directory traversal vulnerabilities in PHP Content Architect (aka NoAh) 0.9 pre 1.2 and earlier allow remote attackers to read arbitrary files via a .. (dot dot) in the filepath parameter to (1) css_file.php, (2) js_file.php, or (3) xml_file.php in noah/modules/nosystem/templates/.
by GoLd_M
CVE-2007-6178 EXPLOITDB text VERIFIED
Easy Hosting Control Panel <0.22.8 - RCE
Multiple PHP remote file inclusion vulnerabilities in Easy Hosting Control Panel for Ubuntu (EHCP) 0.22.8 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the confdir parameter to (1) dbutil.bck.php and (2) dbutil.php in config/.
by MhZ91
CVE-2007-6179 EXPLOITDB text VERIFIED
Charray CMS 0.9.3 - Remote File Inclusion via ccms_library_path Parameter
Multiple PHP remote file inclusion vulnerabilities in Charray's CMS 0.9.3 allow remote attackers to execute arbitrary PHP code via a URL in the ccms_library_path parameter to (1) markdown.php and (2) gallery.php in decoder/.
by MhZ91
CVE-2007-6198 EXPLOITDB text VERIFIED
BEA AquaLogic Interaction <6.0.1.218452 - Info Disclosure
portal/server.pt in the Plumtree portal in BEA AquaLogic Interaction 5.0.2 through 5.0.4 and 6.0.1.218452 allows wildcards in advanced searches for usernames, which allows remote attackers to enumerate valid usernames via the in_tx_fulltext parameter.
by Adrian Pastor
CVE-2007-6266 EXPLOITDB text VERIFIED
bcoos <= 1.0.10 - SQL Injection via gid Parameter or lid Parameter
Multiple SQL injection vulnerabilities in bcoos 1.0.10 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the gid parameter to modules/arcade/index.php in a show_stats action, or the lid parameter to (2) modules/myalbum/ratephoto.php or (3) modules/mylinks/ratelink.php, different vectors than CVE-2007-5104.
by Lostmon
CVE-2007-6266 EXPLOITDB text VERIFIED
bcoos <= 1.0.10 - SQL Injection via gid Parameter or lid Parameter
Multiple SQL injection vulnerabilities in bcoos 1.0.10 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the gid parameter to modules/arcade/index.php in a show_stats action, or the lid parameter to (2) modules/myalbum/ratephoto.php or (3) modules/mylinks/ratelink.php, different vectors than CVE-2007-5104.
by Lostmon
CVE-2007-6166 EXPLOITDB text VERIFIED
Apple QuickTime <7.3.1 - Buffer Overflow
Stack-based buffer overflow in Apple QuickTime before 7.3.1, as used in QuickTime Player on Windows XP and Safari on Mac OS X, allows remote Real Time Streaming Protocol (RTSP) servers to execute arbitrary code via an RTSP response with a long Content-Type header.
by YAG KOHHA
CVE-2007-6172 EXPLOITDB text VERIFIED
wpQuiz 2.7 - SQL Injection via id Parameter
Multiple SQL injection vulnerabilities in wpQuiz 2.7 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) viewimage.php and (2) comments.php.
by Kacper
CVE-2007-6184 EXPLOITDB text VERIFIED
Project Alumni 1.0.9 - Path Traversal
Directory traversal vulnerability in index.php in Project Alumni 1.0.9 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the act parameter.
by tomplixsee
EIP-2026-110890 EXPLOITDB text VERIFIED
PHP-Nuke NSN Script Depository 1.0.0 - Remote Source Disclosure
by KiNgOfThEwOrLd
CVE-2007-6191 EXPLOITDB text VERIFIED
Armin Burger p.mapper <3.2.0 beta3 - RCE
Multiple PHP remote file inclusion vulnerabilities in Armin Burger p.mapper 3.2.0 beta3 allow remote attackers to execute arbitrary PHP code via a URL in the _SESSION[PM_INCPHP] parameter to (1) incphp/globals.php or (2) plugins/export/mc_table.php. NOTE: it could be argued that this vulnerability is caused by a problem in PHP and the proper fix should be in PHP; if so, then this should not be treated as a vulnerability in p.mapper.
by ShAy6oOoN
CVE-2007-6191 EXPLOITDB text VERIFIED
Armin Burger p.mapper <3.2.0 beta3 - RCE
Multiple PHP remote file inclusion vulnerabilities in Armin Burger p.mapper 3.2.0 beta3 allow remote attackers to execute arbitrary PHP code via a URL in the _SESSION[PM_INCPHP] parameter to (1) incphp/globals.php or (2) plugins/export/mc_table.php. NOTE: it could be argued that this vulnerability is caused by a problem in PHP and the proper fix should be in PHP; if so, then this should not be treated as a vulnerability in p.mapper.
by ShAy6oOoN
CVE-2007-6164 EXPLOITDB text VERIFIED
Eurologon CMS - SQL Injection via id Parameter
Multiple SQL injection vulnerabilities in Eurologon CMS allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) reviews.php, (2) links.php and (3) articles.php.
by KiNgOfThEwOrLd
CVE-2007-6185 EXPLOITDB text VERIFIED
Eurologon CMS - Path Traversal via File Parameter in Users/Files.php
Directory traversal vulnerability in users/files.php in Eurologon CMS allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter in a download action, as demonstrated by a certain PHP file containing database credentials.
by KiNgOfThEwOrLd
CVE-2007-6110 EXPLOITDB text VERIFIED
htdig 3.2.0b6 - Cross-Site Scripting via htsearch sort Parameter
Cross-site scripting (XSS) vulnerability in htsearch in htdig 3.2.0b6 allows remote attackers to inject arbitrary web script or HTML via the sort parameter.
by Michael Skibbe
CVE-2007-6483 EXPLOITDB text VERIFIED
SafeNet Sentinel Protection Server <7.4.0 - Path Traversal
Directory traversal vulnerability in SafeNet Sentinel Protection Server 7.0.0 through 7.4.0 and possibly earlier versions, and Sentinel Keys Server 1.0.3 and possibly earlier versions, allows remote attackers to read arbitrary files via a .. (dot dot) in the query string.
by Corey Lebleu