Exploitdb Exploits

2,012 exploits tracked across all sources.

Sort: Activity Stars
CVE-2007-6699 EXPLOITDB html VERIFIED
AIM PicEditor 9.5.1.8 - Buffer Overflow
Multiple buffer overflows in the AIM PicEditor 9.5.1.8 ActiveX control in YGPPicEdit.dll in AOL You've Got Pictures (YGP) Picture Editor allow remote attackers to cause a denial of service (browser crash) via a long string in the (1) DisplayName, (2) FinalSavePath, (3) ForceSaveTo, (4) HiddenControls, (5) InitialEditorScreen, (6) Locale, (7) Proxy, and (8) UserAgent property values.
by Elazar Broad
CVE-2007-6513 EXPLOITDB html VERIFIED
HP eSupportDiagnostics ActiveX control <1.0.11.0 - Info Disclosure
HP eSupportDiagnostics ActiveX control (hpediag.dll) 1.0.11.0 exports dangerous methods, which allows remote attackers to (1) read arbitrary files via the ReadTextFile method, or (2) read arbitrary registry values via the ReadValue method.
by Elazar Broad
CVE-2007-6516 EXPLOITDB html VERIFIED
RavWare Software MAS Flic ActiveX Control <1.0.0.1 - Buffer Overflow
Buffer overflow in RavWare Software MAS Flic ActiveX Control (masflc.ocx) 1.0.0.1 allows remote attackers to execute arbitrary code via a long FileName property.
by shinnai
CVE-2007-6493 EXPLOITDB html VERIFIED
iMesh <7.1.0.x - RCE
The IMWeb.IMWebControl.1 ActiveX control in IMWeb.dll 7.0.0.x, and possibly IMWebControl.dll, in iMesh 7.1.0.x and earlier allows remote attackers to execute arbitrary code via a certain argument to the SetHandler method.
by rgod
CVE-2007-6332 EXPLOITDB html VERIFIED
HPInfoDLL.HPInfo.1 - Registry Access
The HPInfoDLL.HPInfo.1 ActiveX control in HPInfoDLL.dll 1.0, as shipped with HP Info Center (hpinfocenter.exe) 1.0.1.1 in HP Quick Launch Button (QLBCTRL.exe, aka QLB) 6.3 and earlier, on Microsoft Windows before Vista allows remote attackers to create or modify arbitrary registry values via the arguments to the SetRegValue method.
by porkythepig
CVE-2007-6331 EXPLOITDB html VERIFIED
HPInfoDLL.HPInfo.1 - Path Traversal
Absolute path traversal vulnerability in the HPInfoDLL.HPInfo.1 ActiveX control in HPInfoDLL.dll 1.0, as shipped with HP Info Center (hpinfocenter.exe) 1.0.1.1 in HP Quick Launch Button (QLBCTRL.exe, aka QLB) 6.3 and earlier allows remote attackers to execute arbitrary programs via the first argument to the LaunchApp method. NOTE: only a user-assisted attack is possible on Windows Vista.
by porkythepig
CVE-2007-6333 EXPLOITDB html VERIFIED
HPInfoDLL.HPInfo.1 - Info Disclosure
The HPInfoDLL.HPInfo.1 ActiveX control in HPInfoDLL.dll 1.0, as shipped with HP Info Center (hpinfocenter.exe) 1.0.1.1 in HP Quick Launch Button (QLBCTRL.exe, aka QLB) 6.3 and earlier, allows remote attackers to read arbitrary registry values via the arguments to the GetRegValue method.
by porkythepig
CVE-2007-6327 EXPLOITDB html VERIFIED
Online Media Technologies AVSMJPEGFILE.DLL 1.1.1.102 - Buffer Overflow
Buffer overflow in a certain ActiveX control in Online Media Technologies AVSMJPEGFILE.DLL 1.1.1.102 allows remote attackers to execute arbitrary code via a long first argument to the CreateStill method.
by shinnai
CVE-2007-6262 EXPLOITDB html VERIFIED
VideoLAN VLC <0.8.6d - RCE
A certain ActiveX control in axvlc.dll in VideoLAN VLC 0.8.6 before 0.8.6d allows remote attackers to execute arbitrary code via crafted arguments to the (1) addTarget, (2) getVariable, or (3) setVariable function, resulting from a "bad initialized pointer," aka a "recursive plugin release vulnerability."
by Ricardo Narvaja
CVE-2007-6240 EXPLOITDB html VERIFIED
Snitz Forums 2000 3.4.06 - SQL Injection
SQL injection vulnerability in active.asp in Snitz Forums 2000 3.4.06 allows remote attackers to execute arbitrary SQL commands via the BuildTime parameter.
by BugReport.IR
EIP-2026-103856 EXPLOITDB html VERIFIED
Apple Safari 1.x/3.0.x / Firefox 1.5.0.x/2.0.x - JavaScript Multiple Fields Key Filterings
by Carl Hardwick
CVE-2007-6704 EXPLOITDB html VERIFIED
F5 FirePass 4100 SSL VPN <6.0.1 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in F5 FirePass 4100 SSL VPN 5.4.1 through 5.5.2 and 6.0 through 6.0.1, when pre-logon sequences are enabled, allow remote attackers to inject arbitrary web script or HTML via the query string to (1) my.activation.php3 and (2) my.logon.php3.
by Richard Brain
CVE-2007-6228 EXPLOITDB html VERIFIED
Yahoo! Toolbar 1.4.1 - Buffer Overflow
Stack-based buffer overflow in the Helper class in the yt.ythelper.2 ActiveX control in Yahoo! Toolbar 1.4.1 allows remote attackers to cause a denial of service (browser crash) via a long argument to the c method.
by Elazar Broad
CVE-2007-6189 EXPLOITDB html VERIFIED
BitDefender Online Anti-Virus Scanner 8.0 - RCE
A certain ActiveX control in (1) OScan8.ocx and (2) Oscan81.ocx in BitDefender Online Anti-Virus Scanner 8.0 allows remote attackers to execute arbitrary code via a long argument to the InitX method that begins with a "%%" sequence, which is misinterpreted as a Unicode string and decoded twice, leading to improper memory allocation and a heap-based buffer overflow.
by Nphinity
CVE-2007-6173 EXPLOITDB html VERIFIED
Liferay Enterprise Portal 4.3.1 - XSS
Cross-site scripting (XSS) vulnerability in c/portal/login in Liferay Enterprise Portal 4.3.1 allows remote attackers to inject arbitrary web script or HTML via the emailAddress parameter in a Send New Password action, a different vector than CVE-2007-6055. NOTE: some of these details are obtained from third party information.
by Joshua Morin
EIP-2026-116162 EXPLOITDB html VERIFIED
RealMedia RealPlayer 10.5/11 - 'ierpplug.dll' PlayerProperty ActiveX Control Buffer Overflow
by Elazar Broad
EIP-2026-116183 EXPLOITDB html VERIFIED
RichFX Basic Player 1.1 - ActiveX Control Multiple Buffer Overflow Vulnerabilities
by Elazar Broad
EIP-2026-100327 EXPLOITDB html VERIFIED
FooSun - 'Api_Response.asp' SQL Injection
by flyh4t
EIP-2026-114950 EXPLOITDB html VERIFIED
Aurigma Image Uploader 4.x - ActiveX Control Multiple Remote Stack Buffer Overflow Vulnerabilities
by Elazar Broad
EIP-2026-112898 EXPLOITDB html VERIFIED
Underground CMS 1.x - 'Search.Cache.Inc.php' Backdoor Access
by D4m14n
EIP-2026-112850 EXPLOITDB html VERIFIED
Ucms 1.8 - Backdoor Remote Command Execution
by D4m14n
CVE-2007-6028 EXPLOITDB html VERIFIED
ComponentOne FlexGrid 7.1 Light - Buffer Overflow
Multiple stack-based buffer overflows in the VSFlexGrid.VSFlexGridL ActiveX control in ComponentOne FlexGrid 7.1 Light allow remote attackers to cause a denial of service and possibly execute arbitrary code via a long string in the (1) Text, (2) EditSelText, (3) EditText, and (4) CellFontName property values.
by Elazar Broad
CVE-2007-6005 EXPLOITDB html VERIFIED
WebEx GpcContainer.GpcContainer.1 - DoS
Unspecified vulnerability in the GpcContainer.GpcContainer.1 ActiveX control in WebEx allows remote attackers to cause a denial of service (memory access violation and crash) via (1) an invalid argument to the InitParam method or (2) an unspecified vector involving the SetParam method.
by Elazar Broad
EIP-2026-115741 EXPLOITDB html VERIFIED
Microsoft Office 2003 - Web Component Memory Access Violation Denial of Service
by Elazar Broad
EIP-2026-115659 EXPLOITDB html VERIFIED
Microsoft Forms 2.0 - ActiveX Control 2.0 Memory Access Violation Denial of Service
by Elazar Broad
By Source
All 2,012 Exploitdb 50,121 Writeup 46,751 Nomisec 21,199 Metasploit 3,189 Github 2,250 Vulncheck_xdb 900 Inthewild 518 Gitlab 439 Gitee 415 Patchapalooza 312
By Language
text 31,341 ruby 5,920 python 5,738 c 3,550 perl 2,854 html 2,054 php 1,334 bash 459 java 360 javascript 260 c++ 247 shell 68 go 41 postscript 25 xml 24