Exploitdb Exploits

2,009 exploits tracked across all sources.

Sort: Activity Stars
CVE-2009-1612 EXPLOITDB html VERIFIED
Baofeng Storm - Stack-based Buffer Overflow via OnBeforeVideoDownload Method
Stack-based buffer overflow in the MPS.StormPlayer.1 ActiveX control in mps.dll 3.9.4.27 in Baofeng Storm allows remote attackers to execute arbitrary code via a long argument to the OnBeforeVideoDownload method, as exploited in the wild in April and May 2009. NOTE: some of these details are obtained from third party information. NOTE: it was later reported that 3.09.04.17 and earlier are also affected.
by MITBOY
CVE-2009-1514 EXPLOITDB html VERIFIED
Google Chrome 1.0.154.53 - Denial of Service via Long Exception Value
Google Chrome 1.0.154.53 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a throw statement with a long exception value.
by Aditya K Sood
CVE-2009-2570 EXPLOITDB html VERIFIED
Symantec WinFax Pro 10.03 - Buffer Overflow
Stack-based buffer overflow in the Symantec.FaxViewerControl.1 ActiveX control in WinFax\DCCFAXVW.DLL in Symantec WinFax Pro 10.03 allows remote attackers to execute arbitrary code via a long argument to the AppendFax method.
by Nine:Situations:Group
EIP-2026-118289 EXPLOITDB html VERIFIED
Autodesk IDrop - ActiveX Remote Code Execution
by Elazar
EIP-2026-113121 EXPLOITDB html VERIFIED
VisionLms 1.0 - 'changePW.php' Remote Password Change
by Mr.tro0oqy
EIP-2026-112599 EXPLOITDB html VERIFIED
Teraway LinkTracker 1.0 - Remote Password Change
by ThE g0bL!N
CVE-2009-1313 EXPLOITDB html VERIFIED
Firefox 3.0.9 - Memory Corruption and Possible Remote Code Execution in nsTextFrame::ClearTextRun
The nsTextFrame::ClearTextRun function in layout/generic/nsTextFrameThebes.cpp in Mozilla Firefox 3.0.9 allows remote attackers to cause a denial of service (memory corruption) and probably execute arbitrary code via unspecified vectors. NOTE: this vulnerability reportedly exists because of an incorrect fix for CVE-2009-1302.
by Marc Gueury
EIP-2026-100088 EXPLOITDB html VERIFIED
Absolute Form Processor XE-V 1.5 - Remote Change Password
by ThE g0bL!N
CVE-2009-0553 EXPLOITDB html VERIFIED
Microsoft Internet Explorer <7 - RCE
Microsoft Internet Explorer 6 SP1, 6 and 7 on Windows XP SP2 and SP3, 6 and 7 on Windows Server 2003 SP1 and SP2, 7 on Windows Vista Gold and SP1, and 7 on Windows Server 2008 allows remote attackers to execute arbitrary code via a web page that triggers presence of an object in memory that was (1) not properly initialized or (2) deleted, aka "Uninitialized Memory Corruption Vulnerability."
by Skylined
CVE-2009-4929 EXPLOITDB html VERIFIED
Sweetphp Totalcalender - Authentication Bypass
admin/manage_users.php in TotalCalendar 2.4 does not require administrative authentication, which allows remote attackers to change arbitrary passwords via the newPW1 and newPW2 parameters.
by ThE g0bL!N
CVE-2009-1561 EXPLOITDB html VERIFIED
Cisco WRT54GC - Cross-Site Request Forgery via administration.cgi
Cross-site request forgery (CSRF) vulnerability in administration.cgi on the Cisco Linksys WRT54GC router with firmware 1.05.7 allows remote attackers to hijack the intranet connectivity of arbitrary users for requests that change the administrator password via the sysPasswd and sysConfirmPasswd parameters.
by Gabriel Lima
EIP-2026-106838 EXPLOITDB html VERIFIED
eLitius 1.0 - '/manage-admin.php' Arbitrary Add Admin/Change Password
by ThE g0bL!N
CVE-2009-0039 EXPLOITDB html VERIFIED
Apache Geronimo Application Server 2.1-2.1.3 - CSRF
Multiple cross-site request forgery (CSRF) vulnerabilities in the web administration console in Apache Geronimo Application Server 2.1 through 2.1.3 allow remote attackers to hijack the authentication of administrators for requests that (1) change the web administration password, (2) upload applications, and perform unspecified other administrative actions, as demonstrated by (3) a Shutdown request to console/portal//Server/Shutdown.
by DSecRG
CVE-2009-1352 EXPLOITDB html VERIFIED
Dawningsoft PowerCHM 5.7 - Stack-Based Buffer Overflow via Long URL in HTML Link
Stack-based buffer overflow in Dawningsoft PowerCHM 5.7 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via an HTML file with a link to a long URL, as demonstrated by a .rar URL.
by SuB-ZeRo
CVE-2009-1290 EXPLOITDB html VERIFIED
IBM Advanced Management Module - Cross-Site Request Forgery via Private Blade Power Action Script
Multiple cross-site request forgery (CSRF) vulnerabilities in the web administration interface in the Advanced Management Module (AMM) on the IBM BladeCenter, including the BladeCenter H with BPET36H 54, allow remote attackers to hijack the authentication of administrators, as demonstrated by a power-off request to the private/blade_power_action script.
by Henri Lindberg
CVE-2007-4475 EXPLOITDB html VERIFIED
SAP AG SAPgui <7.10 PL9 - Buffer Overflow
Stack-based buffer overflow in EAI WebViewer3D ActiveX control (webviewer3d.dll) in SAP AG SAPgui before 7.10 Patch Level 9 allows remote attackers to execute arbitrary code via a long argument to the SaveViewToSessionFile method.
by Digital Security Research Group
CVE-2009-0071 EXPLOITDB html VERIFIED
Firefox <= 3.0.7 - Denial of Service via designMode Query Command Calls
Mozilla Firefox 3.0.5 and earlier 3.0.x versions, when designMode is enabled, allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a certain (a) replaceChild or (b) removeChild call, followed by a (1) queryCommandValue, (2) queryCommandState, or (3) queryCommandIndeterm call. NOTE: it was later reported that 3.0.6 and 3.0.7 are also affected.
by Skylined
EIP-2026-118922 EXPLOITDB html VERIFIED
Morovia Barcode ActiveX 3.6.2 - 'MrvBarCd.dll' Insecure Method
by Cyber-Zone
CVE-2009-1092 EXPLOITDB html VERIFIED
GeoVision LIVEAUDIO.LiveAudioCtrl.1 ActiveX Control 7.0 - Use-After-Free via GetAudioPlayingTime Method
Use-after-free vulnerability in the LIVEAUDIO.LiveAudioCtrl.1 ActiveX control in LIVEAU~1.OCX 7.0 for GeoVision DVR systems allows remote attackers to execute arbitrary code by calling the GetAudioPlayingTime method with certain arguments.
by Nine:Situations:Group
EIP-2026-112774 EXPLOITDB html VERIFIED
Traidnt up 2.0 - 'cookie' Add Extension Bypass
by SP4rT
EIP-2026-119176 EXPLOITDB html VERIFIED
SupportSoft DNA Editor Module - 'dnaedit.dll' Code Execution
by Nine:Situations:Group
CVE-2009-0811 EXPLOITDB html VERIFIED
SopCast SopCore ActiveX <3.0.3.501 - RCE
Insecure method vulnerability in the SopCast SopCore ActiveX control in sopocx.ocx 3.0.3.501 allows remote attackers to execute arbitrary programs via an executable file name in the argument to the SetExternalPlayer method.
by Nine:Situations:Group
CVE-2009-0821 EXPLOITDB html VERIFIED
Firefox < 2.0.0.20 - Denial of Service via Nested window.print Calls
Mozilla Firefox 2.0.0.20 and earlier allows remote attackers to cause a denial of service (application crash) via nested calls to the window.print function, as demonstrated by a window.print(window.print()) in the onclick attribute of an INPUT element.
by b3hz4d
EIP-2026-118674 EXPLOITDB html VERIFIED
iDefense COMRaider - ActiveX Control 'write()' Arbitrary File Overwrite
by Amir Zangeneh
CVE-2009-0187 EXPLOITDB html VERIFIED
Orbit Downloader <2.8.5 - Buffer Overflow
Stack-based buffer overflow in Orbit Downloader 2.8.2 and 2.8.3, and possibly other versions before 2.8.5, allows remote attackers to execute arbitrary code via a crafted HTTP URL with a long host name, which is not properly handled when constructing a "Connecting" log message.
by JavaGuru
By Source
All 2,009 Writeup 62,183 Exploitdb 50,126 Nomisec 22,380 Github 3,588 Metasploit 3,311 Vulncheck_xdb 927 Inthewild 514 Gitlab 479 Gitee 415 Patchapalooza 312
By Language
text 31,433 python 6,554 ruby 6,001 c 3,625 perl 2,849 html 2,074 php 1,333 bash 462 java 370 c++ 260 javascript 229 shell 131 go 73 postscript 25 typescript 25