Text Exploits

31,394 exploits tracked across all sources.

Sort: Activity Stars
CVE-2007-4046 EXPLOITDB text VERIFIED
Pony Gallery < 1.5 - SQL Injection via catid Parameter
SQL injection vulnerability in index.php in the Pony Gallery (com_ponygallery) 1.5 and earlier component for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter.
by ajann
CVE-2007-4047 EXPLOITDB text VERIFIED
geoblog 1 - Unauthenticated Arbitrary Comment and Blog Deletion via Admin Endpoints
geoBlog (aka BitDamaged) 1 does not require authentication for (1) deletecomment.php, (2) deleteblog.php, and (3) listcomment.php in admin/, which allows remote attackers to delete arbitrary comments, delete arbitrary blogs, and have other unspecified impact via a request with a valid id parameter.
by joseph.giron13
CVE-2007-4047 EXPLOITDB text VERIFIED
geoblog 1 - Unauthenticated Arbitrary Comment and Blog Deletion via Admin Endpoints
geoBlog (aka BitDamaged) 1 does not require authentication for (1) deletecomment.php, (2) deleteblog.php, and (3) listcomment.php in admin/, which allows remote attackers to delete arbitrary comments, delete arbitrary blogs, and have other unspecified impact via a request with a valid id parameter.
by joseph.giron13
CVE-2007-3936 EXPLOITDB text VERIFIED
a-shop < 0.70 - Path Traversal and Arbitrary File Deletion via filebrowser.asp delfiles Parameter
Directory traversal vulnerability in admin/filebrowser.asp in A-shop 0.70 and earlier, and possibly 0.71, allows remote attackers to delete arbitrary files via unspecified filename references in the delfiles parameter.
by Timq
CVE-2007-3933 EXPLOITDB text VERIFIED
QuickEStore < 8.2 - SQL Injection via CFTOKEN Parameter
SQL injection vulnerability in insertorder.cfm in QuickEStore 8.2 and earlier allows remote attackers to execute arbitrary SQL commands via the CFTOKEN parameter, a different vector than CVE-2006-2053.
by meoconx
CVE-2007-3881 EXPLOITDB text VERIFIED
Pictures Rating - SQL Injection via msgid Parameter
SQL injection vulnerability in index.php in Pictures Rating (Picture Rating) allows remote attackers to execute arbitrary SQL commands via the msgid parameter.
by t0pP8uZz
CVE-2007-3935 EXPLOITDB text VERIFIED
phpBB SupaNav 1.0.0 - Remote File Inclusion via phpbb_root_path Parameter
PHP remote file inclusion vulnerability in link_main.php in the SupaNav 1.0.0 module for phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
by bd0rk
CVE-2007-3938 EXPLOITDB text VERIFIED
MAXdev MDPro < 1.0.8x - SQL Injection via Topics Module topicid Parameter
SQL injection vulnerability in index.php in MAXdev MDPro (MD-Pro) 1.0.8x and earlier before 20070720 allows remote attackers to execute arbitrary SQL commands via the topicid parameter in a view action in the Topics module, a different vulnerability than CVE-2006-1676.
by anonymous
CVE-2007-3932 EXPLOITDB text VERIFIED
Expose RC35 - Remote Code Execution
uploadimg.php in the Expose RC35 and earlier (com_expose) component for Joomla! sends an error message but does not exit when it detects an attempt to upload a non-JPEG file, which allows remote attackers to upload and execute arbitrary PHP code in the img/ folder.
by Cold Zero
CVE-2007-3934 EXPLOITDB text VERIFIED
BBS E-Market - Remote File Inclusion via p_mode Parameter
PHP remote file inclusion vulnerability in postscript/postscript.php in BBS E-Market allows remote attackers to execute arbitrary PHP code via a URL in the p_mode parameter.
by mozi
CVE-2007-3937 EXPLOITDB text VERIFIED
a-shop < 0.70 - SQL Injection
Multiple SQL injection vulnerabilities in A-shop 0.70 and earlier allow remote attackers to execute arbitrary SQL commands via unspecified vectors.
by Timq
CVE-2007-3888 EXPLOITDB text VERIFIED
insanely_simple_blog <= 0.5 - Cross-Site Scripting via Search Action or Anonymous Blog Entry
Multiple cross-site scripting (XSS) vulnerabilities in Insanely Simple Blog 0.5 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the search action, possibly related to the term parameter to index.php; or (2) an anonymous blog entry, possibly involving the (a) posted_by, (b) subject, and (c) content parameters to index.php; as demonstrated by the onmouseover attribute of certain elements. NOTE: some of these details are obtained from third party information.
by joseph.giron13
CVE-2007-3889 EXPLOITDB text VERIFIED
insanely_simple_blog < 0.5 - SQL Injection via current_subsection Parameter
Multiple SQL injection vulnerabilities in Insanely Simple Blog 0.5 and earlier allow remote attackers to execute arbitrary SQL commands via the current_subsection parameter to index.php and other unspecified vectors.
by joseph.giron13
CVE-2007-3882 EXPLOITDB text VERIFIED
Expert Advisor - SQL Injection via id Parameter
SQL injection vulnerability in index.php in Expert Advisor allows remote attackers to execute arbitrary SQL commands via the id parameter.
by t0pP8uZz
CVE-2007-3884 EXPLOITDB text VERIFIED
husrevforum 1.0.1 and 2.0.1 - SQL Injection via forumid Parameter
SQL injection vulnerability in philboard_forum.asp in husrevforum 1.0.1 allows remote attackers to execute arbitrary SQL commands via the forumid parameter. NOTE: it was later reported that 2.0.1 is also affected.
by GeFORC3
CVE-2007-3832 EXPLOITDB text VERIFIED
Trillian - Buffer Overflow via Malformed AIM URI
Buffer overflow in the AOL Instant Messenger (AIM) protocol handler in AIM.DLL in Cerulean Studios Trillian allows remote attackers to execute arbitrary code via a malformed aim: URI, as demonstrated by a long URI beginning with the aim:///#1111111/ substring.
by Nate Mcfeters
EIP-2026-118549 EXPLOITDB text VERIFIED
Flash Player/Plugin Video - File Parsing Remote Code Execution
by yunshu
CVE-2007-3638 EXPLOITDB text VERIFIED
Yahoo! Messenger 8.1 - Buffer Overflow
Buffer overflow in Yahoo! Messenger 8.1 allows user-assisted remote authenticated users, who are listed in an address book, to execute arbitrary code via unspecified vectors, aka ZD-00000005. NOTE: this information is based upon a vague advisory by a vulnerability information sales organization that does not coordinate with vendors or release actionable advisories. A CVE has been assigned for tracking purposes, but duplicates with other CVEs are difficult to determine.
by Rajesh Sethumadhavan
CVE-2007-3840 EXPLOITDB text VERIFIED
sitetrafficstats - SQL Injection via referralUrl.php offset parameter
SQL injection vulnerability in referralUrl.php in Traffic Stats allows remote attackers to execute arbitrary SQL commands via the offset parameter.
by t0pP8uZz
CVE-2007-4419 EXPLOITDB text VERIFIED
Olate Download (od) 3.4.1 - Info Disclosure
Admin.php in Olate Download (od) 3.4.1 uses an MD5 hash of the admin username, user id, and group id, to compose the OD3_AutoLogin authentication cookie, which makes it easier for remote attackers to guess the cookie and access the Admin area.
by imei
CVE-2007-5198 EXPLOITDB text VERIFIED
Nagios Plugins < 1.4.9 - Buffer Overflow via Location Header with Leading 'L' Characters
Buffer overflow in the redir function in check_http.c in Nagios Plugins before 1.4.10, when running with the -f (follow) option, allows remote web servers to execute arbitrary code via Location header responses (redirects) with a large number of leading "L" characters.
by Nobuhiro Ban
CVE-2007-3838 EXPLOITDB text VERIFIED
TBDev.NET DR 11-10-05-BETA-SF1:111005 - Cross-Site Scripting via Avatar Parameter
Cross-site scripting (XSS) vulnerability in takeprofedit.php in TBDev.NET DR 11-10-05-BETA-SF1:111005 and earlier allows remote attackers to inject arbitrary web script or HTML via the SRC attribute of a SCRIPT element in the avatar parameter. NOTE: this may be related to the tracker program in the Janitor package. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by PescaoDeth
CVE-2007-3810 EXPLOITDB text VERIFIED
Realtor 747 - SQL Injection via CategoryID Parameter
SQL injection vulnerability in index.php in Realtor 747 allows remote attackers to execute arbitrary SQL commands via the categoryid parameter.
by t0pP8uZz
CVE-2007-3809 EXPLOITDB text VERIFIED
Prozilla Directory Script - SQL Injection via cat_id Parameter
Multiple SQL injection vulnerabilities in Prozilla Directory Script allow remote attackers to execute arbitrary SQL commands via the cat_id parameter in a list action to directory.php, and other unspecified vectors.
by t0pP8uZz
CVE-2007-3808 EXPLOITDB text VERIFIED
paFileDB 3.6 - SQL Injection via categories[] Parameter
SQL injection vulnerability in includes/search.php in paFileDB 3.6 allows remote attackers to execute arbitrary SQL commands via the categories[] parameter in a search action to index.php, a different vector than CVE-2005-2000.
by pUm