Text Exploits

31,394 exploits tracked across all sources.

Sort: Activity Stars
CVE-2007-4611 EXPLOITDB text VERIFIED
Dale Mooney Gallery - SQL Injection via viewevent.php id Parameter
SQL injection vulnerability in viewevent.php in Moonware (aka Dale Mooney Gallery) allows remote attackers to execute arbitrary SQL commands via the id parameter.
by s0cratex
CVE-2007-5983 EXPLOITDB text VERIFIED
Justin Hagstrom AutoIndex <2.2.3 - XSS
Cross-site scripting (XSS) vulnerability in index.php in Justin Hagstrom AutoIndex PHP Script before 2.2.3 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO (PHP_SELF).
by L4teral
EIP-2026-105312 EXPLOITDB text VERIFIED
AutoIndex PHP Script 2.2.1 - 'index.php' Cross-Site Scripting
by d3hydr8
CVE-2007-4551 EXPLOITDB text VERIFIED
Agares Media Arcadem 2.01 - Remote Code Execution via Loadpage Parameter
PHP remote file inclusion vulnerability in index.php in Agares Media Arcadem 2.01 allows remote attackers to execute arbitrary PHP code via a URL in the loadpage parameter.
by SmOk3
CVE-2007-4585 EXPLOITDB text VERIFIED
2532gigs 1.2.1 - Remote File Inclusion via Language Parameter Path Traversal
Directory traversal vulnerability in activateuser.php in 2532|Gigs 1.2.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the language parameter.
by bd0rk
CVE-2007-4551 EXPLOITDB text VERIFIED
Agares Media Arcadem 2.01 - Remote Code Execution via Loadpage Parameter
PHP remote file inclusion vulnerability in index.php in Agares Media Arcadem 2.01 allows remote attackers to execute arbitrary PHP code via a URL in the loadpage parameter.
by sm0k3
CVE-2007-4533 EXPLOITDB text VERIFIED
Vavoom < 1.24 - Remote Code Execution via Say Command Format String
Format string vulnerability in the Say command in sv_main.cpp in Vavoom 1.24 and earlier allows remote attackers to execute arbitrary code via format string specifiers in a chat message, related to a call to the BroadcastPrintf function.
by Luigi Auriemma
CVE-2007-4535 EXPLOITDB text VERIFIED
Vavoom < 1.24 - Denial of Service via UDP Packet with Negative NewLen
The VStr::Resize function in str.cpp in Vavoom 1.24 and earlier allows remote attackers to cause a denial of service (daemon crash) via a string with a negative NewLen value within a certain UDP packet that triggers an assertion error.
by Luigi Auriemma
CVE-2007-4534 EXPLOITDB text VERIFIED
Vavoom < 1.24 - Remote Code Execution via Long Chat Message
Buffer overflow in the VThinker::BroadcastPrintf function in p_thinker.cpp in Vavoom 1.24 and earlier allows remote attackers to execute arbitrary code via (1) a long string in a chat message and possibly (2) a long name field.
by Luigi Auriemma
CVE-2006-7222 EXPLOITDB text VERIFIED
Media Player Classic 6.4.9.0 - Buffer Overflow via Crafted FLI File
Buffer overflow in the CFLICStream::_deltachunk function in FLICSource.cpp in Media Player Classic (MPC) 6.4.9.0 allows user-assisted remote attackers to execute arbitrary code via a crafted FLI file.
by wushi
CVE-2007-4505 EXPLOITDB text VERIFIED
Mambo RemoSitory - SQL Injection via cat Parameter
SQL injection vulnerability in index.php in the RemoSitory component (com_remository) for Mambo allows remote attackers to execute arbitrary SQL commands via the cat parameter in a selectcat action.
by ajann
CVE-2007-4504 EXPLOITDB text VERIFIED
Joomla! com_rsfiles <1.0.2 - Path Traversal
Directory traversal vulnerability in index.php in the RSfiles component (com_rsfiles) 1.0.2 and earlier for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the path parameter in a files.display action.
by ajann
CVE-2007-4503 EXPLOITDB text VERIFIED
Joomla! com_nicetalk <0.9.3 - SQL Injection
SQL injection vulnerability in index.php in the Nice Talk component (com_nicetalk) 0.9.3 and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the tagid parameter.
by ajann
CVE-2007-4506 EXPLOITDB text VERIFIED
NeoRecruit < 1.4 - SQL Injection via id Parameter
SQL injection vulnerability in index.php in the NeoRecruit component (com_neorecruit) 1.4 and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in an offer_view action.
by ajann
CVE-2007-4509 EXPLOITDB text VERIFIED
Joomla EventList < 0.8 - SQL Injection via did Parameter
SQL injection vulnerability in index.php in the EventList component (com_eventlist) 0.8 and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the did parameter in a details action.
by ajann
CVE-2007-4502 EXPLOITDB text VERIFIED
Joomla! com_jombib <1.3 - SQL Injection
SQL injection vulnerability in index.php in the BibTeX component (com_jombib) 1.3 and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the afilter parameter.
by ajann
CVE-2007-4545 EXPLOITDB text VERIFIED
Unreal Commander <0.92 - Path Traversal
Multiple directory traversal vulnerabilities in Unreal Commander 0.92 build 565 and 573 allow user-assisted remote attackers to create or overwrite arbitrary files via a .. (dot dot) in a filename within a (1) ZIP or (2) RAR archive.
by Gynvael Coldwind
CVE-2007-4537 EXPLOITDB text VERIFIED
Skulltag <0.97d-beta4.1 - Buffer Overflow
Heap-based buffer overflow in the Huffman decompression algorithm implemented in Skulltag 0.97d-beta4.1 and earlier allows remote attackers to execute arbitrary code via a crafted UDP packet.
by Luigi Auriemma
CVE-2007-4531 EXPLOITDB text VERIFIED
Soldat game server <1.4.2 & dedicated server <2.6.2 - DoS
Soldat game server 1.4.2 and earlier, and dedicated server 2.6.2 and earlier, allows remote attackers to cause a client denial of service (crash) via (1) a long string to the file transfer port or (2) a long chat message, or (3) a server denial of service (continuous beep and slowdown) via a string containing many 0x07 or other control characters to the file transfer port.
by Luigi Auriemma
CVE-2007-4522 EXPLOITDB text VERIFIED
Ripe Website Manager <0.8.9 - SQL Injection
Multiple SQL injection vulnerabilities in Ripe Website Manager 0.8.9 and earlier allow remote authenticated users to execute arbitrary SQL commands via one or more of the following vectors: the (1) id parameter to (a) pages/delete_page.php, (b) navigation/delete_menu.php, and (c) navigation/delete_item.php in admin/; the (2) menu_id, (3) name, (3) page_id, and (4) url parameters in (d) admin/navigation/do_new_item.php; the (5) new_menuname parameter in (e) admin/navigation/do_new_nav.php; and (6) area1, name, and url parameters to (f) admin/pages/do_new_page.php. NOTE: some vectors might be reachable through the url and name parameters to (g) admin/navigation/new_nav_item.php. NOTE: the original disclosure does not precisely state which vectors are associated with SQL injection versus XSS.
by Nagendra Kumar G
CVE-2007-4508 EXPLOITDB text VERIFIED
Rebellion Asura engine - Buffer Overflow
Stack-based buffer overflow in Rebellion Asura engine, as used for the server in Rogue Trooper 1.0 and earlier and Prism 1.1.1.0 and earlier, allows remote attackers to execute arbitrary code via a long string in a 0xf007 packet for the challenge B query.
by Luigi Auriemma
CVE-2006-1151 EXPLOITDB text VERIFIED
M-Phorum 0.2 - Cross-Site Scripting via Index.php Go Parameter
Cross-site scripting vulnerability in index.php in M-Phorum 0.2 allows remote attackers to inject arbitrary web script or HTML via the go parameter.
by CodeXpLoder'tq
CVE-2005-4053 EXPLOITDB text VERIFIED
coWiki 0.3.4 - Cross-Site Scripting via q Parameter
Cross-site scripting (XSS) vulnerability in coWiki 0.3.4 allows remote attackers to inject arbitrary web script or HTML via the q parameter, as demonstrated using 26.html.
by MustLive
CVE-2007-4479 EXPLOITDB text VERIFIED
Search Engine Builder Professional - Cross-Site Scripting via searWords Parameter
Cross-site scripting (XSS) vulnerability in search.html in Search Engine Builder allows remote attackers to inject arbitrary web script or HTML via the searWords parameter.
by MustLive
CVE-2007-4456 EXPLOITDB text VERIFIED
Mambo SimpleFAQ Component - SQL Injection via aid Parameter
SQL injection vulnerability in index.php in the SimpleFAQ (com_simplefaq) 2.11 component for Mambo allows remote attackers to execute arbitrary SQL commands via the aid parameter. NOTE: it was later reported that 2.40 is also affected, and that the component can be used in Joomla! in addition to Mambo.
by k1tk4t