emgent

14 exploits Active since Oct 2005
CVE-2010-5330 EXPLOITDB CRITICAL text WORKING POC
Ubiquiti - Command Injection
On certain Ubiquiti devices, Command Injection exists via a GET request to stainfo.cgi (aka Show AP info) because the ifname variable is not sanitized, as demonstrated by shell metacharacters. The fixed version is v4.0.1 for 802.11 ISP products, v5.3.5 for AirMax ISP products, and v5.4.5 for AirSync firmware. For example, Nanostation5 (Air OS) is affected.
CVSS 9.8
EIP-2026-118785 EXPLOITDB python WORKING POC
Microsoft IIS - ASP Multiple Extensions Security Bypass 5.x/6.x Vulnerabilities
CVE-2005-3294 EXPLOITDB python WORKING POC
Typsoft FTP Server < 1.11 - Resource Management Error
Typsoft FTP Server 1.11, with "Sub Directory Include" enabled, allows remote attackers to cause a denial of service (crash) by sending multiple RETR commands. NOTE: it was later reported that 1.10 is also affected.
EIP-2026-113278 EXPLOITDB bash WORKING POC
webessence 1.0.2 - Multiple Vulnerabilities
EIP-2026-113400 EXPLOITDB bash WORKING POC
WhatsApp - Remote Change Status
EIP-2026-113395 EXPLOITDB text WORKING POC
Western Digital My Book World Edition 1.1.16 - 'lang' Cross-Site Scripting
EIP-2026-106583 EXPLOITDB text WRITEUP
Drupal 6.15 - Multiple Persistent Cross-Site Scripting Vulnerabilities
EIP-2026-104633 EXPLOITDB bash WORKING POC
Drupal 5.21/6.16 - Denial of Service
EIP-2026-104685 EXPLOITDB bash WORKING POC
WordPress Core 2.9 - Denial of Service
EIP-2026-104635 EXPLOITDB bash WORKING POC
Joomla! Component Core 1.5.x com_ - Denial of Service
EIP-2026-103958 EXPLOITDB text WORKING POC
KDE 4.4.1 - Ksysguard Remote Code Execution (via Cross Application Scripting)
EIP-2026-103222 EXPLOITDB text WRITEUP
Skype for Linux 2.1 Beta - Multiple Strange Behaviour Vulnerabilities
EIP-2026-101852 EXPLOITDB text WORKING POC
My Book World Edition NAS - Multiple Vulnerabilities
CVE-2010-3906 EXPLOITDB text WORKING POC
Git < 1.7.3.3 - XSS
Cross-site scripting (XSS) vulnerability in Gitweb 1.7.3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) f and (2) fp parameters.