TUNISIAN CYBER

29 exploits Active since May 2009
CVE-2009-1646 EXPLOITDB python WORKING POC
Mini-stream RM Downloader 3.0.0.9 - Stack-based Buffer Overflow via Long RTSP URL
Stack-based buffer overflow in Mini-stream RM Downloader 3.0.0.9 allows remote attackers to execute arbitrary code via a long rtsp URL in a .ram file.
EIP-2026-117869 EXPLOITDB ruby WORKING POC
RM Downloader 2.7.5.400 - Local Buffer Overflow (Metasploit)
EIP-2026-117605 EXPLOITDB python WORKING POC
Mini-stream Ripper 2.7.7.100 - Local Buffer Overflow
EIP-2026-117311 EXPLOITDB python WORKING POC
IDM 6.20 - Local Buffer Overflow
CVE-2011-5165 EXPLOITDB python WORKING POC
Free MP3 CD Ripper <= 2.6 - Stack-based Buffer Overflow via Crafted WAV File
Stack-based buffer overflow in Free MP3 CD Ripper 1.1, 2.6 and earlier, when converting a file, allows user-assisted remote attackers to execute arbitrary code via a crafted .wav file.
CVE-2011-5165 EXPLOITDB python WORKING POC
Free MP3 CD Ripper <= 2.6 - Stack-based Buffer Overflow via Crafted WAV File
Stack-based buffer overflow in Free MP3 CD Ripper 1.1, 2.6 and earlier, when converting a file, allows user-assisted remote attackers to execute arbitrary code via a crafted .wav file.
CVE-2014-2671 EXPLOITDB python WORKING POC
Microsoft Windows Media Player 11.0.5721.5230 - Memory Corruption
Microsoft Windows Media Player (WMP) 11.0.5721.5230 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted WAV file.
CVE-2014-2671 EXPLOITDB python WORKING POC
Microsoft Windows Media Player 11.0.5721.5230 - Memory Corruption
Microsoft Windows Media Player (WMP) 11.0.5721.5230 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted WAV file.
CVE-2014-2671 EXPLOITDB python WORKING POC
Microsoft Windows Media Player 11.0.5721.5230 - Memory Corruption
Microsoft Windows Media Player (WMP) 11.0.5721.5230 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted WAV file.
CVE-2014-2671 EXPLOITDB python WORKING POC
Microsoft Windows Media Player 11.0.5721.5230 - Memory Corruption
Microsoft Windows Media Player (WMP) 11.0.5721.5230 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted WAV file.
CVE-2014-2671 EXPLOITDB python WORKING POC
Microsoft Windows Media Player 11.0.5721.5230 - Memory Corruption
Microsoft Windows Media Player (WMP) 11.0.5721.5230 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted WAV file.
EIP-2026-114336 EXPLOITDB php WORKING POC
WordPress Theme Kiddo - Arbitrary File Upload
EIP-2026-114412 EXPLOITDB text WRITEUP
xBoard 5.0/5.5/6.0 - 'view.php' Local File Inclusion
EIP-2026-113526 EXPLOITDB text WORKING POC
WordPress Plugin ACF Frontend Display 2.0.5 - Arbitrary File Upload
EIP-2026-113381 EXPLOITDB text WORKING POC
WebUI 1.5b6 - Remote Code Execution
EIP-2026-112170 EXPLOITDB text WRITEUP
Singapore 0.9.9b Beta - Image Gallery Remote File Inclusion / Cross-Site Scripting
EIP-2026-110353 EXPLOITDB html WORKING POC
osCMax 2.5 - Cross-Site Request Forgery
EIP-2026-110326 EXPLOITDB text WORKING POC
OpenSupports 2.x - Authentication Bypass / Cross-Site Request Forgery
EIP-2026-110242 EXPLOITDB php WORKING POC
Open-Letters - Remote PHP Code Injection
EIP-2026-109546 EXPLOITDB php WORKING POC
MODx Evogallery Module - 'Uploadify.php' Arbitrary File Upload
EIP-2026-109226 EXPLOITDB text WORKING POC
LuxCal 3.2.2 - Cross-Site Request Forgery / Blind SQL Injection
EIP-2026-108248 EXPLOITDB text WRITEUP
Joomla! Component com_aclsfgpl - 'index.php' Arbitrary File Upload
CVE-2015-2798 EXPLOITDB CRITICAL text WORKING POC
Contact Form Maker 1.0.1 - SQL Injection via id Parameter
SQL injection vulnerability in Joomla! Component Contact Form Maker 1.0.1 allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVSS 9.8
EIP-2026-107796 EXPLOITDB text WRITEUP
Imageview - 'upload.php' Arbitrary File Upload
EIP-2026-106829 EXPLOITDB python WORKING POC
elFinder 2 - Remote Command Execution (via File Creation)