Exploitdb Exploits

2,012 exploits tracked across all sources.

Sort: Activity Stars
CVE-2007-2851 EXPLOITDB html VERIFIED
LeadTools Raster Variant Object Library <14.5.0.44 - Code Injection
A certain ActiveX control in LeadTools Raster Variant Object Library (LTRVR14e.dll) 14.5.0.44 allows remote attackers to overwrite arbitrary files via the WriteDataToFile method.
by shinnai
CVE-2007-2806 EXPLOITDB html VERIFIED
GaliX 2.0 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in index.php in GaliX 2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) galix_cat_detail, (2) galix_gal_detail, and (3) galix_cat_detail_sort parameters.
by John Martinelli
CVE-2007-2787 EXPLOITDB html VERIFIED
LeadTools Raster Thumbnail Object Library <14.5.0.44 - Buffer Overflow
Stack-based buffer overflow in the BrowseDir function in the (1) lttmb14E.ocx or (2) LTRTM14e.DLL ActiveX control in LeadTools Raster Thumbnail Object Library 14.5.0.44 allows remote attackers to execute arbitrary code via a long argument.
by shinnai
CVE-2007-2787 EXPLOITDB html VERIFIED
LeadTools Raster Thumbnail Object Library <14.5.0.44 - Buffer Overflow
Stack-based buffer overflow in the BrowseDir function in the (1) lttmb14E.ocx or (2) LTRTM14e.DLL ActiveX control in LeadTools Raster Thumbnail Object Library 14.5.0.44 allows remote attackers to execute arbitrary code via a long argument.
by shinnai
CVE-2007-2771 EXPLOITDB html VERIFIED
LEAD Technologies LeadTools <14.5.0.35 - Buffer Overflow
Stack-based buffer overflow in the LEAD Technologies LeadTools JPEG 2000 LEADJ2K.LEADJ2K.140 ActiveX control (LTJ2K14.ocx) 14.5.0.35 allows remote attackers to execute arbitrary code via a long BitmapDataPath property.
by shinnai
CVE-2007-2763 EXPLOITDB html VERIFIED
Sienzo DMM 2.6.0.4 - Buffer Overflow
Buffer overflow in the UnlockSupport function in the LockModules subsystem in a certain ActiveX control in ltmm15.dll in Sienzo Digital Music Mentor (DMM) 2.6.0.4 allows remote attackers to execute arbitrary code via a long string in the second argument, a different issue than CVE-2007-2564.
by shinnai
CVE-2007-2757 EXPLOITDB html VERIFIED
Redoable 1.2 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in Redoable 1.2 allow remote attackers to inject arbitrary web script or HTML via the s parameter to (1) wp-content/themes/redoable/searchloop.php or (2) wp-content/themes/redoable/header.php.
by John Martinelli
EIP-2026-100606 EXPLOITDB html VERIFIED
VP-ASP Shopping Cart 6.50 - 'ShopContent.asp' Cross-Site Scripting
by John Martinelli
CVE-2007-2755 EXPLOITDB html VERIFIED
PrecisionID Barcode 1.9 - Path Traversal
The PrecisionID Barcode 1.9 ActiveX control in PrecisionID_Barcode.dll, when Internet Explorer 6 is used, allows remote attackers to overwrite arbitrary files via a full pathname to the SaveToFile function, a different vulnerability than CVE-2007-2744.
by shinnai
EIP-2026-119050 EXPLOITDB html VERIFIED
PrecisionID Barcode - 'PrecisionID_Barcode.dll' ActiveX 1.9 Control Arbitrary File Overwrite
by shinnai
CVE-2007-2744 EXPLOITDB html VERIFIED
PrecisionID Barcode 1.9 - Buffer Overflow
Stack-based buffer overflow in the PrecisionID Barcode 1.9 ActiveX control in PrecisionID_Barcode.dll allows remote attackers to cause a denial of service (Internet Explorer 6 crash), and possibly execute arbitrary code, via a long argument to the SaveBarCode method. NOTE: this issue might overlap CVE-2007-2657.
by shinnai
CVE-2007-2725 EXPLOITDB html VERIFIED
DB Software Laboratory DeWizardX - Buffer Overflow
The DB Software Laboratory DeWizardX (DEWizardAX.ocx) ActiveX control allows remote attackers to overwrite arbitrary files via the SaveToFile function.
by shinnai
CVE-2007-2735 EXPLOITDB html VERIFIED
ResManager <1.2.1 - SQL Injection
SQL injection vulnerability in edit_day.php in the ResManager 1.2.1 and earlier module for Xoops allows remote attackers to execute arbitrary SQL commands via the id_reserv parameter.
by ajann
CVE-2007-2648 EXPLOITDB html VERIFIED
Clever Database Comparer 2.2 - Buffer Overflow
Stack-based buffer overflow in the Clever Database Comparer 2.2 ActiveX control (comparerax.ocx) allows remote attackers to execute arbitrary code via a long argument to the ConnectToDatabase function.
by shinnai
CVE-2007-2714 EXPLOITDB html VERIFIED
Matt Mullenweg Akismet <2.0.2 - Unknown Vuln
Unspecified vulnerability in akismet.php in Matt Mullenweg Akismet before 2.0.2, a WordPress plugin, has unknown impact and attack vectors.
by David Kierznowski
CVE-2007-2658 EXPLOITDB html VERIFIED
ID Automation Linear Barcode 1.6.0.5 - DoS
Unspecified vulnerability in the ID Automation Linear Barcode 1.6.0.5 ActiveX control in IDAutomationLinear6.dll allows remote attackers to cause a denial of service via a long argument to the SaveEnhWMF method.
by shinnai
CVE-2007-2657 EXPLOITDB html VERIFIED
PrecisionID Barcode <1.3 - DoS
Unspecified vulnerability in the PrecisionID Barcode 1.3 ActiveX control in PrecisionID_DataMatrix.DLL allows remote attackers to cause a denial of service via a long argument to the SaveBarCode method.
by shinnai
CVE-2007-2665 EXPLOITDB html VERIFIED
PhpFirstPost <0.1 - RCE
PHP remote file inclusion vulnerability in block.php in PhpFirstPost 0.1 allows remote attackers to execute arbitrary PHP code via a URL in the Include parameter.
by Dj7xpl
CVE-2007-2644 EXPLOITDB html VERIFIED
Morovia Barcode ActiveX Pro 3.3.1304 - RCE
A certain ActiveX control in Morovia Barcode ActiveX Professional 3.3.1304 allows remote attackers to overwrite arbitrary files by calling the Save method with an arbitrary filename.
by shinnai
CVE-2007-2656 EXPLOITDB html VERIFIED
Hewlett-Packard (HP) Magview ActiveX <1.0.0.309 - Buffer Overflow
Stack-based buffer overflow in the Hewlett-Packard (HP) Magview ActiveX control in hpqvwocx.dll 1.0.0.309 allows remote attackers to cause a denial of service (application crash) and possibly have other impact via a long argument to the DeleteProfile method.
by callAX
CVE-2007-2221 EXPLOITDB html VERIFIED
Microsoft Windows Media Server - RCE
Unspecified vulnerability in the mdsauth.dll COM object in Microsoft Windows Media Server in the Microsoft Internet Explorer 5.01 SP4 on Windows 2000 SP4; 6 SP1 on Windows 2000 SP4; 6 and 7 on Windows XP SP2, or Windows Server 2003 SP1 or SP2; or 7 on Windows Vista allows remote attackers to overwrite arbitrary files via unspecified vectors, aka the "Arbitrary File Rewrite Vulnerability."
by Andres Tarasco
CVE-2007-2623 EXPLOITDB html VERIFIED
Remote Display Dev kit 1.2.1.0 - Buffer Overflow
Multiple buffer overflows in RControl.dll in Remote Display Dev kit 1.2.1.0 allow remote attackers to cause a denial of service (Internet Explorer 7 crash) via (1) a long first argument to the connect function or (2) a long InternalServer property value, possibly involving ntdll.dll.
by shinnai
EIP-2026-119137 EXPLOITDB html VERIFIED
Sienzo Digital Music Mentor 2.6.0.4 - SetEvalExpiryDate Overwrite (SEH)
by Parveen Vashishtha
EIP-2026-119136 EXPLOITDB html VERIFIED
Sienzo Digital Music Mentor 2.6.0.4 - SetEvalExpiryDate EIP Overwrite
by Parveen Vashishtha
CVE-2007-2585 EXPLOITDB html VERIFIED
BarCodeWiz <2.52 - Buffer Overflow
Stack-based buffer overflow in the Verify function in the BarCodeWiz ActiveX control 2.0 and 2.52 (BarcodeWiz.dll) allows remote attackers to execute arbitrary code via a long argument.
by Parveen Vashishtha
By Source
All 2,012 Exploitdb 50,121 Writeup 46,830 Nomisec 21,202 Metasploit 3,189 Github 2,258 Vulncheck_xdb 900 Inthewild 518 Gitlab 439 Gitee 415 Patchapalooza 312
By Language
text 31,341 ruby 5,920 python 5,742 c 3,550 perl 2,854 html 2,055 php 1,334 bash 459 java 360 javascript 260 c++ 247 shell 69 go 41 postscript 25 xml 24