n3w7u

10 exploits Active since Mar 2008
CVE-2010-20123 EXPLOITDB HIGH ruby WORKING POC
Steinberg MyMP3Player <3.0.0.67 - Buffer Overflow
Steinberg MyMP3Player version 3.0 (build 3.0.0.67) is vulnerable to a stack-based buffer overflow when parsing .m3u playlist files. The application fails to properly validate the length of input data within the playlist, allowing a specially crafted file to overwrite critical memory structures and execute arbitrary code. This vulnerability can be exploited locally by convincing a user to open a malicious .m3u file.
CVE-2010-20123 EXPLOITDB HIGH perl WORKING POC
Steinberg MyMP3Player <3.0.0.67 - Buffer Overflow
Steinberg MyMP3Player version 3.0 (build 3.0.0.67) is vulnerable to a stack-based buffer overflow when parsing .m3u playlist files. The application fails to properly validate the length of input data within the playlist, allowing a specially crafted file to overwrite critical memory structures and execute arbitrary code. This vulnerability can be exploited locally by convincing a user to open a malicious .m3u file.
CVE-2010-20123 METASPLOIT HIGH ruby WORKING POC
Steinberg MyMP3Player <3.0.0.67 - Buffer Overflow
Steinberg MyMP3Player version 3.0 (build 3.0.0.67) is vulnerable to a stack-based buffer overflow when parsing .m3u playlist files. The application fails to properly validate the length of input data within the playlist, allowing a specially crafted file to overwrite critical memory structures and execute arbitrary code. This vulnerability can be exploited locally by convincing a user to open a malicious .m3u file.
EIP-2026-113465 EXPLOITDB text WORKING POC
Woltlab Burning Board Lite Addon - 'lexikon.php' SQL Injection
CVE-2008-1481 EXPLOITDB text WORKING POC
webSPELL 4.1.2 - XSS
Cross-site scripting (XSS) vulnerability in index.php in webSPELL 4.1.2 allows remote attackers to inject arbitrary web script or HTML via the board parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
EIP-2026-111107 EXPLOITDB text WORKING POC
PHPKIT 1.6.x - 'b-day.php' Addon SQL Injection
CVE-2010-5060 EXPLOITDB text WORKING POC
NUs Newssystem <1.02 - SQL Injection
SQL injection vulnerability in Nus.php in NUs Newssystem 1.02 allows remote attackers to execute arbitrary SQL commands via the id parameter.
CVE-2008-1425 EXPLOITDB text WORKING POC
Easy-Clanpage 2.2 - SQL Injection
SQL injection vulnerability in index.php in the gallery module in Easy-Clanpage 2.2 allows remote attackers to execute arbitrary SQL commands via the id parameter in a kate action.
EIP-2026-105187 EXPLOITDB text WORKING POC
AnotherPHPBook (APB) 1.3.0 - Authentication Bypass
EIP-2026-105194 EXPLOITDB text WORKING POC
APBook 1.3 - Admin Login Multiple SQL Injections