Html Exploits

2,076 exploits tracked across all sources.

Sort: Activity Stars
CVE-2008-4583 EXPLOITDB html VERIFIED
Chilkat FTP 2.0 - Arbitrary File Write via SavePkcs8File Method
Insecure method vulnerability in the Chilkat FTP 2.0 ActiveX component (ChilkatCert.dll) allows remote attackers to overwrite arbitrary files via a full pathname in the SavePkcs8File method.
by darkl0rd
CVE-2008-4584 EXPLOITDB html VERIFIED
Chilkat Mail 7.8 - Arbitrary File Write via SaveLastError Method
Insecure method vulnerability in Chilkat Mail 7.8 ActiveX control (ChilkatCert.dll) allows remote attackers to overwrite arbitrary files via a full pathname to the SaveLastError method.
by darkl0rd
CVE-2008-4727 EXPLOITDB html VERIFIED
SunGard Banner Student 7.3 - Cross-Site Scripting via addr1 Parameter
Cross-site scripting (XSS) vulnerability in the contact update page (ss/bwgkoemr.P_UpdateEmrgContacts) in SunGard Banner Student 7.3 allows remote attackers to inject arbitrary web script or HTML via the addr1 parameter. NOTE: this might be resultant from a CSRF vulnerability, but there are insufficient details to be sure.
by Brendan M. Hickey
CVE-2008-0631 EXPLOITDB html VERIFIED
MailBee Objects 5.5 - Arbitrary File Write via SaveToDisk Method
Multiple ActiveX controls in MailBee.dll in MailBee Objects 5.5 allow remote attackers to (1) overwrite arbitrary files via the SaveToDisk method, or (2) modify files via the AddStringToFile method.
by darkl0rd
CVE-2008-0551 EXPLOITDB html VERIFIED
Sejoong Namo ActiveSquare - Remote Code Execution via NamoInstaller.NamoInstall.1 ActiveX Control
The NamoInstaller.NamoInstall.1 ActiveX control in NamoInstaller.dll 3.0.0.1 and earlier in Namo Web Editor in Sejoong Namo ActiveSquare 6 allows remote attackers to execute arbitrary code via a URL in the argument to the Install method. NOTE: some of these details are obtained from third party information.
by plan-s
CVE-2008-0492 EXPLOITDB html VERIFIED
Persits XUpload 3.0.0.4 - Stack-based Buffer Overflow via AddFile Method
Stack-based buffer overflow in the Persits.XUpload.2 ActiveX control in XUpload.ocx 3.0.0.4 and earlier in Persits XUpload 3.0 allows remote attackers to execute arbitrary code via a long argument to the AddFile method. NOTE: some of these details are obtained from third party information.
by Elazar
CVE-2008-0220 EXPLOITDB html VERIFIED
Gateway Weblaunch 1.0.0.1 - Stack-Based Buffer Overflow via DoWebLaunch Method
Multiple stack-based buffer overflows in the WebLaunch.WeblaunchCtl.1 (aka CWebLaunchCtl) ActiveX control in weblaunch.ocx 1.0.0.1 in Gateway Weblaunch allow remote attackers to execute arbitrary code via a long string in the (1) second or (2) fourth argument to the DoWebLaunch method. NOTE: some of these details are obtained from third party information.
by Elazar
CVE-2008-0729 EXPLOITDB html VERIFIED
Mobile Safari 1.1.2-1.1.3 - Denial of Service via JavaScript String and Array Manipulation
Mobile Safari on Apple iPhone 1.1.2 and 1.1.3 allows remote attackers to cause a denial of service (memory exhaustion and device crash) via certain JavaScript code that constructs a long string and an array containing long string elements, possibly a related issue to CVE-2006-3677. NOTE: some of these details are obtained from third party information.
by c0ntex
CVE-2008-0477 EXPLOITDB html VERIFIED
Move Media Player - Stack-based Buffer Overflow via QMPUpgrade.Upgrade.1 ActiveX Control
Stack-based buffer overflow in the QMPUpgrade.Upgrade.1 ActiveX control in QMPUpgrade.dll 1.0.0.1 in Move Networks Upgrade Manager allows remote attackers to execute arbitrary code via a long first argument to the Upgrade method. NOTE: some of these details are obtained from third party information.
by Elazar
CVE-2008-4549 EXPLOITDB html VERIFIED
ImageShack Toolbar 4.5.7 - Arbitrary File Upload via BuildSlideShow Method
The ImageShack Toolbar ActiveX control (ImageShackToolbar.dll) in ImageShack Toolbar 4.5.7, possibly including 4.5.7.69, allows remote attackers to force the upload of arbitrary image files to the ImageShack site via a file: URI argument to the BuildSlideShow method.
by rgod
CVE-2008-0729 EXPLOITDB html VERIFIED
Mobile Safari 1.1.2-1.1.3 - Denial of Service via JavaScript String and Array Manipulation
Mobile Safari on Apple iPhone 1.1.2 and 1.1.3 allows remote attackers to cause a denial of service (memory exhaustion and device crash) via certain JavaScript code that constructs a long string and an array containing long string elements, possibly a related issue to CVE-2006-3677. NOTE: some of these details are obtained from third party information.
by fuzion
CVE-2008-0470 EXPLOITDB html VERIFIED
Comodo AntiVirus 2.0 - Command Injection
A certain ActiveX control in Comodo AntiVirus 2.0 allows remote attackers to execute arbitrary commands via the ExecuteStr method.
by h07
CVE-2008-0443 EXPLOITDB html VERIFIED
Lycos FileUploader.dll 2.0.0.2 - Heap-Based Buffer Overflow via HandwriterFilename Property
Heap-based buffer overflow in the FileUploader.FUploadCtl.1 ActiveX control in FileUploader.dll 2.0.0.2 in Lycos FileUploader Module allows remote attackers to execute arbitrary code via a long HandwriterFilename property value. NOTE: some of these details are obtained from third party information.
by Elazar
CVE-2008-0437 EXPLOITDB html VERIFIED
HP Virtual Rooms - Buffer Overflow via ActiveX Control Property Manipulation
Multiple buffer overflows in the WebHPVCInstall.HPVirtualRooms14 ActiveX control in HPVirtualRooms14.dll 1.0.0.100, as used in the installation process for HP Virtual Rooms, allow remote attackers to execute arbitrary code via a long (1) AuthenticationURL, (2) PortalAPIURL, or (3) cabroot property value. NOTE: some of these details are obtained from third party information.
by Elazar
EIP-2026-119219 EXPLOITDB html VERIFIED
Toshiba Surveillance Surveillix DVR 'MeIpCamX.dll' 1.0 - ActiveX Control Buffer Overflow
by rgod
CVE-2008-0399 EXPLOITDB html VERIFIED
Toshiba Surveillix - Remote Code Execution via Long Arguments to SetPort or SetIpAddress Methods
Multiple buffer overflows in Toshiba Surveillance (Surveillix) RecordSend ActiveX control (MeIpCamX.DLL 1.0.0.4) allow remote attackers to execute arbitrary code via long arguments to the (1) SetPort and (2) SetIpAddress methods.
by rgod
CVE-2008-0380 EXPLOITDB html VERIFIED
Digital Data Communications RtspVaPgCtrl ActiveX control 1.1.0.29 - Buffer Overflow via MP4Prefix Property
Buffer overflow in the Digital Data Communications RtspVaPgCtrl ActiveX control (RtspVapgDecoder.dll 1.1.0.29) allows remote attackers to execute arbitrary code via a long MP4Prefix property.
by rgod
CVE-2008-4548 EXPLOITDB html VERIFIED
Rtssentry - Memory Corruption
Stack-based buffer overflow in the PTZCamPanelCtrl ActiveX control (CamPanel.dll) in RTS Sentry 2.1.0.2 allows remote attackers to execute arbitrary code via a long second argument to the ConnectServer method.
by rgod
CVE-2008-4586 EXPLOITDB html VERIFIED
Macrovision FLEXnet Connect 6.1 - RCE
Insecure method vulnerability in the MVSNCLientWebAgent61.WebAgent.1 ActiveX control (isusweb.dll 6.1.100.61372) in Macrovision FLEXnet Connect 6.1 allows remote attackers to force the download and execution of arbitrary files via the DownloadAndExecute method.
by Elazar
CVE-2008-4587 EXPLOITDB html VERIFIED
Macrovision FLEXnet Connect 6.1 - Code Injection
Insecure method vulnerability in the MSVNClientDownloadManager61Lib.DownloadManager.1 ActiveX control (ISDM.exe 6.1.100.61372) in Macrovision FLEXnet Connect 6.1 allows remote attackers to force the download and execution of arbitrary files via the AddFile and RunScheduledJobs methods. NOTE: this could be leveraged for code execution by uploading executable files to Startup folders.
by Elazar
CVE-2008-4547 EXPLOITDB html VERIFIED
dvrstation_cms - Heap-based Buffer Overflow via TimeSpanFormat Method
Heap-based buffer overflow in the PdvrAtl.PdvrOcx.1 ActiveX control (pdvratl.dll) in DVRHOST Web CMS OCX 1.0.1.25 allows remote attackers to execute arbitrary code via a long second argument to the TimeSpanFormat method.
by rgod
CVE-2008-0298 EXPLOITDB html VERIFIED
Safari 2.x - Denial of Service via Crafted Web Page
KHTML WebKit as used in Apple Safari 2.x allows remote attackers to cause a denial of service (browser crash) via a crafted web page, possibly involving a STYLE attribute of a DIV element.
by David Barroso
CVE-2008-0248 EXPLOITDB html VERIFIED
StreamAudio ChainCast ProxyManager ActiveX Control - Buffer Overflow via InternalTuneIn Method
Buffer overflow in an ActiveX control in ccpm_0237.dll for StreamAudio ChainCast ProxyManager allows remote attackers to execute arbitrary code via a long URL argument to the InternalTuneIn method.
by Elazar
CVE-2008-4664 EXPLOITDB html VERIFIED
QVOD Player - Heap-Based Buffer Overflow via URL Property
Heap-based buffer overflow in QvodInsert.QvodCtrl.1 ActiveX control (QvodInsert.dll) in QVOD Player before 2.1.5 build 0053 allows remote attackers to execute arbitrary code via a long URL property. NOTE: some of these details are obtained from third party information.
by anonymous
CVE-2008-0290 EXPLOITDB html VERIFIED
digitalhive < 2.0_rc2 - SQL Injection via selectskin Parameter
Multiple SQL injection vulnerabilities in Digital Hive 2.0 RC2 and earlier allow (1) remote attackers to execute arbitrary SQL commands via the selectskin parameter to an unspecified program, or (2) remote authenticated administrators to execute arbitrary SQL commands via the user_id parameter in the gestion_membre.php page to base.php.
by j0j0
By Source
All 2,076 Writeup 62,482 Exploitdb 50,076 Nomisec 22,450 Github 3,674 Metasploit 3,315 Vulncheck_xdb 930 Inthewild 514 Gitlab 479 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,597 ruby 6,006 c 3,631 perl 2,849 html 2,076 php 1,333 bash 462 java 371 c++ 261 javascript 231 shell 133 go 73 postscript 25 typescript 25