Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
CVE-2010-2508 EXPLOITDB text VERIFIED
2daybiz Video Community Portal Script - SQL Injection via UserID Parameter
SQL injection vulnerability in user-profile.php in 2daybiz Video Community Portal Script allows remote attackers to execute arbitrary SQL commands via the userid parameter.
by Sangteamtham
CVE-2010-2510 EXPLOITDB text VERIFIED
2daybiz Web Template Software - SQL Injection via customize.php tid Parameter
SQL injection vulnerability in customize.php in 2daybiz Web Template Software allows remote attackers to execute arbitrary SQL commands via the tid parameter.
by Sangteamtham
EIP-2026-104825 EXPLOITDB text VERIFIED
2DayBiz Real Estate Portal - 'viewpropertydetails.php' SQL Injection
by Sangteamtham
EIP-2026-104823 EXPLOITDB text VERIFIED
2DayBiz Photo Sharing Script - SQL Injection (1)
by JaMbA
CVE-2010-2610 EXPLOITDB text VERIFIED
2daybiz Job Site Script - SQL Injection via jid, job_iid, or left_cat Parameter
Multiple SQL injection vulnerabilities in 2daybiz Job Site Script allow remote attackers to execute arbitrary SQL commands via the (1) jid parameter to view_current_job.php, (2) job_iid parameter to show_search_more.php, and (3) left_cat parameter to show_search_result.php.
by Sangteamtham
EIP-2026-104818 EXPLOITDB text VERIFIED
2DayBiz B2B Portal Script - SQL Injection
by JaMbA
CVE-2010-1930 EXPLOITDB text VERIFIED
Novell iManager 2.7, 2.7.3, 2.7.3 FTF2 - Denial of Service via Long Tree Parameter
Off-by-one error in Novell iManager 2.7, 2.7.3, and 2.7.3 FTF2 allows remote attackers to cause a denial of service (daemon crash) via a long tree parameter in a login request to nps/servlet/webacc.
by Core Security Technologies
CVE-2010-2435 EXPLOITDB text VERIFIED
Weborf HTTP Server <= 0.12.1 - Denial of Service via Unicode Characters in Connection Header
Weborf HTTP Server 0.12.1 and earlier allows remote attackers to cause a denial of service (crash) via Unicode characters in a Connection HTTP header, and possibly other headers.
by Crash
EIP-2026-100484 EXPLOITDB perl
PHPortal 1.2 - 'gunaysoft.php' Remote File Inclusion
by Ma3sTr0-Dz
EIP-2026-100396 EXPLOITDB text VERIFIED
Lois Software WebDB 2.0A Script - Multiple SQL Injections
by High-Tech Bridge SA
CVE-2010-2513 EXPLOITDB text
Harmistechnology Com Jeajaxeventcalendar - SQL Injection
SQL injection vulnerability in the JE Ajax Event Calendar (com_jeajaxeventcalendar) component 1.0.5 for Joomla! allows remote attackers to execute arbitrary SQL commands via the view parameter to index.php.
by L0rd CrusAd3r
EIP-2026-116898 EXPLOITDB perl VERIFIED
BlazeDVD 6.0 - '.plf' File Universal Buffer Overflow (SEH)
by Madjix
EIP-2026-112335 EXPLOITDB html
Software Index - Arbitrary File Upload
by indoushka
EIP-2026-111491 EXPLOITDB text VERIFIED
PreProject Multi-Vendor Shopping Malls - 'products.php?sid' SQL Injection
by CoBRa_21
EIP-2026-111490 EXPLOITDB text VERIFIED
PreProject Multi-Vendor Shopping Malls - 'products.php' SQL Injection
by CoBRa_21
EIP-2026-111283 EXPLOITDB text
PishBini Footbal - Cross-Site Scripting / SQL Injection
by indoushka
CVE-2010-4365 EXPLOITDB text
Harmistechnology Com Jeajaxeventcalendar - SQL Injection
SQL injection vulnerability in JE Ajax Event Calendar (com_jeajaxeventcalendar) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the event_id parameter in an alleventlist_more action to index.php.
by L0rd CrusAd3r
EIP-2026-106282 EXPLOITDB text VERIFIED
Custom Business Card script - SQL Injection
by JaMbA
CVE-2010-2511 EXPLOITDB text VERIFIED
2daybiz Multi Level Marketing Software - SQL Injection via viewnews.php nwsid Parameter
SQL injection vulnerability in viewnews.php in 2daybiz Multi Level Marketing (MLM) Software allows remote attackers to execute arbitrary SQL commands via the nwsid parameter.
by JaMbA
CVE-2010-2512 EXPLOITDB text VERIFIED
2daybiz Matrimonial Script - SQL Injection via customprofile.php id Parameter
SQL injection vulnerability in customprofile.php in 2daybiz Matrimonial Script allows remote attackers to execute arbitrary SQL commands via the id parameter.
by JaMbA
EIP-2026-104820 EXPLOITDB text VERIFIED
2DayBiz Freelance Script - SQL Injection
by JaMbA
EIP-2026-104285 EXPLOITDB text VERIFIED
Interscan Web Security Virtual Appliance 5.0 - Arbitrary File Download
by Ivan Huertas
EIP-2026-104284 EXPLOITDB text VERIFIED
Interscan Web Security 5.0 - Arbitrary File Upload / Privilege Escalation
by Ivan Huertas
EIP-2026-103845 EXPLOITDB text VERIFIED
Apache Axis2 1.x - '/axis2/axis2-admin' Session Fixation
by Tiago Ferreira Barbosa
EIP-2026-101348 EXPLOITDB text VERIFIED
Linksys WAP54Gv3 Wireless Router - 'debug.cgi' Cross-Site Scripting
by Cristofaro Mune