Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

855 matches found

Exploit DB
Exploit DBadded 2017/02/10 12:0 a.m.31 views

CMS Lite 1.3.1 - SQL Injection

Exploit Title: Creative Management System - CMS Lite v1.3.1 - SQL Injection Google Dork: N/A Date: 10.02.2017 Vendor Homepage: http://www.cmslite.co.uk/ Software Buy: https://codecanyon.net/item/creative-management-system-cms-lite/15297597 Demo: http://www.cmslite.co.uk/ Version: 1.3.1 Tested on:...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2017/02/10 12:0 a.m.50 views

Youtube Analytics Multi Channel 3.0 SQL Injection

Exploit Title: Youtube Analytics Multi Channel v3.0 - SQL Injection Google Dork: N/A Date: 10.02.2017 Vendor Homepage: http://vtcreators.com/ Software Buy: https://codecanyon.net/item/youtube-analytics-multi-channel/14720919 Demo: http://demo.vtcreators.com/yamc/ Version: 3.0 Tested on: Win7 x64,...

Exploits0
exploitpack
exploitpackadded 2017/02/10 12:0 a.m.12 views

CLUB-8 EMS - SQL Injection

CLUB-8 EMS - SQL Injection Exploit Title: CLUB-8 EMS - Event Management System - SQL Injection Google Dork: N/A Date: 10.02.2017 Vendor Homepage: http://rexbd.net/ Software Buy: https://codecanyon.net/item/club8-ems-event-management-system-a-to-z/14067759 Demo: http://ems.rexbd.net/ Version: N/A...

Exploits0
Exploit DB
Exploit DBadded 2017/02/10 12:0 a.m.38 views

CLUB-8 EMS - SQL Injection

Exploit Title: CLUB-8 EMS - Event Management System - SQL Injection Google Dork: N/A Date: 10.02.2017 Vendor Homepage: http://rexbd.net/ Software Buy: https://codecanyon.net/item/club8-ems-event-management-system-a-to-z/14067759 Demo: http://ems.rexbd.net/ Version: N/A Tested on: Win7 x64, Kali...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2017/02/10 12:0 a.m.51 views

Automated Job Portal Script - SQL Injection

Exploit Title: Automated Job Portal Script - SQL Injection Google Dork: N/A Date: 10.02.2017 Vendor Homepage: http://www.jagaad.com/ Software Buy: https://codecanyon.net/item/automated-job-portal-script/14318664 Demo: http://www.jagaad.com/demo/php/automated-job-portal/ Version: N/A Tested on: Wi...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2017/02/10 12:0 a.m.9 views

Collabo - Arbitrary File Download

Collabo - Arbitrary File Download Exploit Title: Collabo - TeamBusiness Collaboration Network - Arbitrary File Download Google Dork: N/A Date: 10.02.2017 Vendor Homepage: http://321-internet.com/ Software Buy: https://codecanyon.net/item/collabo-teambusiness-collaboration-network/15242543 Demo:...

Exploits0
Exploit DB
Exploit DBadded 2017/02/10 12:0 a.m.40 views

Gram Post 1.0 - SQL Injection

Exploit Title: Gram Post - Instagram Auto Post Multi Accounts with Paypal integration v1.0 - SQL Injection Google Dork: N/A Date: 10.02.2017 Vendor Homepage: http://vtcreators.com/ Software Buy:...

7.4AI score
Exploits0
0day.today
0day.todayadded 2017/02/08 12:0 a.m.28 views

Muviko Video CMS - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Muviko Video CMS Script - SQL Injection Google Dork: N/A Date: 08.02.2017 Vendor Homepage: https://muvikoscript.com/ Software Buy: https://codecanyon.net/item/muviko-movie-video-cms/19402086 Demo: https://demo.muvikoscript.com/...

0.1AI score
Exploits0
Exploit DB
Exploit DBadded 2017/02/07 12:0 a.m.30 views

Easy Support Tools 1.0 - 'stt' SQL Injection

Exploit Title: Easy Support Tools - FAQs, Help Articles, Blog and Feedback Script v1.0 - SQL Injection Google Dork: N/A Date: 07.02.2017 Vendor Homepage: http://nelliwinne.net/ Software Buy: https://codecanyon.net/item/easy-support-tools-faqs-help-articles-blog-and-feedback/17864522 Demo:...

7.4AI score
Exploits0
0day.today
0day.todayadded 2017/02/07 12:0 a.m.29 views

MySQL File Uploader 1.0 - id Parameter SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: MySQL Blob Uploader - File Upload to Database PHP Script v1.0 - SQL Injection Google Dork: N/A Date: 07.02.2017 Vendor Homepage: http://nelliwinne.net/ Software Buy:...

7.1AI score
Exploits0
exploitpack
exploitpackadded 2017/02/03 12:0 a.m.85 views

CUPS 2.0.3 - Remote Command Execution

CUPS 2.0.3 - Remote Command Execution !/usr/bin/python Exploit Title: CUPS Reference Count Over Decrement Remote Code Execution Google Dork: n/a Date: 2/2/17 Exploit Author: @0x00string Vendor Homepage: cups.org Software Link: https://github.com/apple/cups/releases/tag/release-2.0.2 Version: 2.0....

10CVSS8.4AI score0.82312EPSS
Exploits8
exploitpack
exploitpackadded 2017/02/02 12:0 a.m.17 views

Property Listing Script - propid Blind SQL Injection

Property Listing Script - propid Blind SQL Injection Exploit Title: Property Listing Script – Time-Based Blind Injection Date: 02.02.2017 Vendor Homepage: http://phprealestatescript.org/ Software Link: http://phprealestatescript.org/property-listing-script.html Exploit Author: Kaan KAMIS Contact:...

0.2AI score
Exploits0
Exploit DB
Exploit DBadded 2017/01/30 12:0 a.m.76 views

HelpDeskZ < 1.0.2 - (Authenticated) SQL Injection / Unauthorized File Download

''' Exploit Title: HelpDeskZ fetchRow"SELECT , COUNTid AS total FROM ".TABLEPREFIX."attachments WHERE id=".$db-realescapestring$params2." AND ticketid=".$params0." AND msgid=".$params3; third argument AND msgid=".$params3; sent to fetchRow query with out any senitization Steps to reproduce:...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2017/01/30 12:0 a.m.52 views

Itech Real Estate Script 3.12 - SQL Injection

Exploit Title: Itech Real Estate Script v3.12 – SQL Injection Date: 30.01.2017 Vendor Homepage: http://itechscripts.com/ Software Link: http://itechscripts.com/real-estate-script/ Exploit Author: Kaan KAMIS Contact: iletisimatk2andotcom Website: http://k2an.com Category: Web Application Exploits...

7.4AI score
Exploits0
Exploit DB
Exploit DBadded 2017/01/30 12:0 a.m.49 views

PHP Product Designer Script - Arbitrary File Upload

Exploit Title: PHP Product Designer Script - Arbitrary File Upload Google Dork: N/A Date: 30.01.2017 Vendor Homepage: https://codecanyon.net/item/php-product-designer/19334412 Software Buy: https://codecanyon.net/item/php-product-designer/19334412 Demo:...

7.4AI score
Exploits0
0day.today
0day.todayadded 2017/01/30 12:0 a.m.14 views

Video Sharing Script 4.94 - SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Video Sharing Script 4.94 – SQL Injection Date: 30.01.2017 Vendor Homepage: http://itechscripts.com/ Software Link: http://itechscripts.com/video-sharing-script/ Exploit Author: Kaan KAMIS Contact: iletisimatk2andotcom Website:...

7.1AI score
Exploits0
exploitpack
exploitpackadded 2017/01/30 12:0 a.m.21 views

Itech Video Sharing Script 4.94 - SQL Injection

Itech Video Sharing Script 4.94 - SQL Injection Exploit Title: Video Sharing Script 4.94 - 'uid' Parameter SQL Injection Google Dork: N/A Date: 30.01.2017 Vendor Homepage: http://itechscripts.com/ Software Buy: http://itechscripts.com/video-sharing-script/ Demo:...

0.6AI score
Exploits0
exploitpack
exploitpackadded 2017/01/30 12:0 a.m.17 views

HelpDeskZ 1.0.2 - (Authenticated) SQL Injection Unauthorized File Download

HelpDeskZ 1.0.2 - Authenticated SQL Injection Unauthorized File Download ''' Exploit Title: HelpDeskZ fetchRow"SELECT , COUNTid AS total FROM ".TABLEPREFIX."attachments WHERE id=".$db-realescapestring$params2." AND ticketid=".$params0." AND msgid=".$params3; third argument AND msgid=".$params3;...

0.4AI score
Exploits0
Exploit DB
Exploit DBadded 2017/01/27 12:0 a.m.45 views

My Photo Gallery 1.0 - SQL Injection

Introduction Exploit Title: My Photo Gallery – SQL Injection Date: 27.01.2017 Vendor Homepage: http://software.friendsinwar.com/ Software Link: http://software.friendsinwar.com/news.php?readmore=40 Exploit Author: Kaan KAMIS Contact: iletisimatk2andotcom Website: http://k2an.com Category: Web...

7.4AI score
Exploits0
exploitpack
exploitpackadded 2017/01/26 12:0 a.m.17 views

KB Affiliate Referral Script 1.0 - Authentication Bypass

KB Affiliate Referral Script 1.0 - Authentication Bypass Exploit Title: KB Affiliate Referral PHP Script V1.0 - Authentication Bypass Google Dork: N/A Date: 26.01.2017 Vendor Homepage: http://kunals.com/ Software Download: http://phpscripts.kunals.com/d/item/files/kbaffiliate.rar Demo:...

0.6AI score
Exploits0
Rows per page
Query Builder