header-logo
Suggest Exploit
explore-vulnerabilities

Explore Vulnerabilities

Version
Year

Explore all Exploits:

Remote Denial-of-Service Vulnerabilities in Battlefield 2 and Battlefield 2142

Battlefield 2 and Battlefield 2142 are prone to multiple remote denial-of-service vulnerabilities due to improper handling of specially crafted network packets. An attacker can exploit these vulnerabilities to cause the applications to become unresponsive or crash the affected game servers, resulting in a denial of service for legitimate users.

HTML Injection in JForum

JForum is prone to multiple HTML-injection vulnerabilities because it fails to properly sanitize user-supplied input before using it in dynamically generated content. Successful exploits will allow attacker-supplied HTML and script code to run in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials or to control how the site is rendered to the user. Other attacks are also possible.

Pay Per Minute Video Chat Script SQL Injection and Cross-Site Scripting Vulnerabilities

The Pay Per Minute Video Chat Script is vulnerable to SQL injection and multiple cross-site scripting (XSS) attacks. The application fails to properly sanitize user-supplied input, allowing an attacker to execute arbitrary SQL queries or inject malicious scripts into web pages.

Joomla component com_youtubegallery – SQL Injection vulnerability

The Joomla component com_youtubegallery is vulnerable to SQL Injection. The vulnerability exists in the 'gallery.php' file. The parameters 'listid' and 'themeid' are not properly sanitized before being used in constructing an SQL query, which allows an attacker to inject malicious SQL code.

Cross-Site Scripting in Gigya Socialize Plugin for WordPress

The Gigya Socialize Plugin for Wordpress is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow the attacker to steal cookie-based authentication credentials and launch other attacks.

LineWeb Multiple Input Validation Vulnerabilities

LineWeb is prone to multiple input-validation vulnerabilities because it fails to adequately sanitize user-supplied input. These vulnerabilities include multiple local file-include vulnerabilities, multiple SQL-injection vulnerabilities, and an unauthorized-access vulnerability. An attacker can exploit these vulnerabilities to obtain potentially sensitive information, execute arbitrary local scripts in the context of the webserver process, obtain unauthorized access to restricted scripts, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database. This may allow the attacker to compromise the application and the computer; other attacks are also possible.

Obsession-Design Image-Gallery Cross-Site Scripting Vulnerability

The Obsession-Design Image-Gallery is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks.

KubeLabs PHPDug Cross-Site Scripting Vulnerability

The KubeLabs PHPDug web application is prone to a cross-site scripting vulnerability due to inadequate input sanitization. An attacker can exploit this vulnerability to inject and execute arbitrary script code in the context of an unsuspecting user's browser, potentially leading to the theft of authentication credentials and other attacks.

Cross-Site Scripting Vulnerability in MoinMoin

MoinMoin is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied input data.An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may help the attacker steal cookie-based authentication credentials and launch other attacks.

Recent Exploits: