Exploitdb Exploits

2,009 exploits tracked across all sources.

Sort: Activity Stars
CVE-2007-2585 EXPLOITDB html VERIFIED
BarCodeWiz ActiveX Control 2.0 and 2.52 - Stack-Based Buffer Overflow via Long Argument
Stack-based buffer overflow in the Verify function in the BarCodeWiz ActiveX control 2.0 and 2.52 (BarcodeWiz.dll) allows remote attackers to execute arbitrary code via a long argument.
by shinnai
CVE-2007-2594 EXPLOITDB html VERIFIED
phpmyportal 3.0.0 RC3 - Remote File Inclusion via GLOBALS[CHEMINMODULES] Parameter
PHP remote file inclusion vulnerability in inc/articles.inc.php in phpMyPortal 3.0.0 RC3 allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[CHEMINMODULES] parameter.
by GoLd_M
CVE-2007-2566 EXPLOITDB html VERIFIED
Taltech Tal Bar Code ActiveX Control - Denial of Service via SaveBarCode Function
The SaveBarCode function in the Taltech Tal Bar Code ActiveX control allows remote attackers to cause a denial of service (disk consumption) by uploading multiple bar codes, as demonstrated by a WSF package.
by Umesh Wanve
CVE-2007-1683 EXPLOITDB html VERIFIED
IncrediMail IMMenuShellExt ActiveX Control - Stack-based Buffer Overflow in DoWebMenuAction
Stack-based buffer overflow in the DoWebMenuAction function in the IncrediMail IMMenuShellExt ActiveX control (ImShExt.dll) allows remote attackers to execute arbitrary code via unspecified vectors.
by Umesh Wanve
CVE-2007-2526 EXPLOITDB html VERIFIED
SmartCode VNC Manager 3.6 - Buffer Overflow
Heap-based buffer overflow in the ConnectAsyncEx function in VNC Viewer ActiveX control (scvncctrl.dll) in the SmartCode VNC Manager 3.6 allows remote attackers to execute arbitrary code via a long argument.
by shinnai
EIP-2026-103609 EXPLOITDB html VERIFIED
Opera 9.10 - 'alert()' Remote Denial of Service
by Dj7xpl
EIP-2026-119135 EXPLOITDB html VERIFIED
Sienzo Digital Music Mentor - 'DSKernel2.dll' ActiveX Control Stack Buffer Overflow
by shinnai
CVE-2007-2563 EXPLOITDB html VERIFIED
VersalSoft HTTP File Upload < - RCE
Buffer overflow in the AddFile function in VersalSoft HTTP File Upload ActiveX control (UFileUploaderD.dll) allows remote attackers to execute arbitrary code via a long argument.
by shinnai
CVE-2007-2576 EXPLOITDB html VERIFIED
East Wind Software advdaudio.ocx <1.5.1.1 - Buffer Overflow
Buffer overflow in the East Wind Software advdaudio.ocx 1.5.1.1 ActiveX control allows user-assisted remote attackers to execute arbitrary code via a long OpenDVD property value. NOTE: this issue might be related to CVE-2007-0976.
by shinnai
CVE-2007-0976 EXPLOITDB html VERIFIED
ActSoft DVD-Tools - Buffer Overflow
Buffer overflow in the ActSoft DVD-Tools ActiveX control (dvdtools.ocx) allows remote attackers to execute arbitrary code via a long DVD_TOOLS.OpenDVD property value.
by shinnai
CVE-2007-2588 EXPLOITDB html VERIFIED
Office Viewer OCX 3.2 - Buffer Overflow
Multiple buffer overflows in the Office Viewer OCX ActiveX control (oa.ocx) 3.2 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long argument to the (1) HttpDownloadFile, (2) Open, (3) OpenWebFile, (4) DoOleCommand, (5) FTPDownloadFile, (6) FTPUploadFile, (7) HttpUploadFile, (8) Save, or (9) SaveWebFile function.
by shinnai
CVE-2007-2496 EXPLOITDB html VERIFIED
WordViewer.ocx 3.2.0.5 - Denial of Service via Long Property Value
The WordOCX ActiveX control in WordViewer.ocx 3.2.0.5 allows remote attackers to cause a denial of service (Internet Explorer 7 crash) via a long (1) DoOleCommand, (2) FTPDownloadFile, (3) FTPUploadFile, (4) HttpUploadFile, (5) GotoPage, (6) Save, (7) SaveWebFile, (8) HttpDownloadFile, (9) Open, (10) OpenWebFile, (11) SaveAs, or (12) ShowWordStandardDialog property value.
by shinnai
CVE-2007-2495 EXPLOITDB html VERIFIED
ExcelViewer.ocx 3.1.0.6 - Buffer Overflow
Multiple stack-based buffer overflows in the ExcelOCX ActiveX control in ExcelViewer.ocx 3.1.0.6 allow remote attackers to cause a denial of service (Internet Explorer 7 crash) via a long (1) DoOleCommand, (2) FTPDownloadFile, (3) FTPUploadFile, (4) HttpUploadFile, (5) Save, (6) SaveWebFile, (7) HttpDownloadFile, (8) Open, or (9) OpenWebFile property value. NOTE: some of these details are obtained from third party information.
by shinnai
CVE-2007-2494 EXPLOITDB html VERIFIED
PowerPointViewer.ocx 3.1.0.3 - Buffer Overflow
Multiple stack-based buffer overflows in the PowerPointOCX ActiveX control in PowerPointViewer.ocx 3.1.0.3 allow remote attackers to cause a denial of service (Internet Explorer 7 crash) via a long (1) DoOleCommand, (2) FTPDownloadFile, (3) FTPUploadFile, (4) HttpUploadFile, (5) Save, (6) SaveWebFile, (7) HttpDownloadFile, (8) Open, or (9) OpenWebFile property value. NOTE: some of these details are obtained from third party information.
by shinnai
CVE-2007-2671 EXPLOITDB html VERIFIED
Mozilla Firefox 2.0.0.3 - Denial of Service via Long Hostname in HREF Attribute
Mozilla Firefox 2.0.0.3 allows remote attackers to cause a denial of service (application crash) via a long hostname in an HREF attribute in an A element, which triggers an out-of-bounds memory access.
by Carl Hardwick
CVE-2007-2424 EXPLOITDB html VERIFIED
The Merchant 2.2 - Remote File Inclusion via help/index.php show Parameter
PHP remote file inclusion vulnerability in help/index.php in The Merchant (themerchant) 2.2 allows remote attackers to execute arbitrary PHP code via a URL in the show parameter.
by kezzap66345
CVE-2007-0018 EXPLOITDB html VERIFIED
Altdo Convert Mp3 Master - Memory Corruption
Stack-based buffer overflow in the NCTAudioFile2.AudioFile ActiveX control (NCTAudioFile2.dll), as used by multiple products, allows remote attackers to execute arbitrary code via a long argument to the SetFormatLikeSample function. NOTE: the products include (1) NCTsoft NCTAudioStudio, NCTAudioEditor, and NCTDialogicVoice; (2) Magic Audio Recorder, Music Editor, and Audio Converter; (3) Aurora Media Workshop; DB Audio Mixer And Editor; (4) J. Hepple Products including Fx Audio Editor and others; (5) EXPStudio Audio Editor; (6) iMesh; (7) Quikscribe; (8) RMBSoft AudioConvert and SoundEdit Pro 2.1; (9) CDBurnerXP; (10) Code-it Software Wave MP3 Editor and aBasic Editor; (11) Movavi VideoMessage, DVD to iPod, and others; (12) SoftDiv Software Dexster, iVideoMAX, and others; (13) Sienzo Digital Music Mentor (DMM); (14) MP3 Normalizer; (15) Roemer Software FREE and Easy Hi-Q Recorder, and Easy Hi-Q Converter; (16) Audio Edit Magic; (17) Joshua Video and Audio Converter; (18) Virtual CD; (19) Cheetah CD and DVD Burner; (20) Mystik Media AudioEdit Deluxe, Blaze Media, and others; (21) Power Audio Editor; (22) DanDans Digital Media Full Audio Converter, Music Editing Master, and others; (23) Xrlly Software Text to Speech Makerand Arial Sound Recorder / Audio Converter; (24) Absolute Sound Recorder, Video to Audio Converter, and MP3 Splitter; (25) Easy Ringtone Maker; (26) RecordNRip; (27) McFunSoft iPod Audio Studio, Audio Recorder for Free, and others; (28) MP3 WAV Converter; (29) BearShare 6.0.2.26789; and (30) Oracle Siebel SimBuilder and CRM 7.x.
by shinnai
CVE-2007-1687 EXPLOITDB html VERIFIED
Internet Pictures Corporation iPIX Image Well ActiveX Control - Remote Code Execution via Buffer Overflow
Multiple buffer overflows in the Internet Pictures Corporation iPIX Image Well ActiveX control (iPIX-ImageWell-ipix.dll) allow remote attackers to execute arbitrary code via unspecified vectors.
by Umesh Wanve
CVE-2007-1691 EXPLOITDB html VERIFIED
Second Sight Software ActiveMod - Stack-Based Buffer Overflow
Stack-based buffer overflow in Second Sight Software ActiveMod ActiveX control (ActiveMod.ocx) allows remote attackers to execute arbitrary code via unspecified vectors.
by Umesh Wanve
CVE-2007-1690 EXPLOITDB html VERIFIED
Second Sight Software ActiveGS - Stack-Based Buffer Overflow
Multiple stack-based buffer overflows in Second Sight Software ActiveGS ActiveX control (ActiveGS.ocx) allow remote attackers to execute arbitrary code via unspecified vectors.
by Umesh Wanve
CVE-2007-2678 EXPLOITDB html VERIFIED
Netsprint Toolbar 1.1 - Buffer Overflow in isChecked Function
Buffer overflow in the isChecked function in toolbar.dll in Netsprint Toolbar 1.1 might allow remote attackers to execute arbitrary code via unspecified vectors.
by Umesh Wanve
CVE-2007-2273 EXPLOITDB html VERIFIED
Alessandro Lulli wavewoo 0.1.1 - RCE
PHP remote file inclusion vulnerability in include/loading.php in Alessandro Lulli wavewoo 0.1.1 allows remote attackers to execute arbitrary PHP code via a URL in the path_include parameter.
by kezzap66345
CVE-2007-2207 EXPLOITDB html VERIFIED
ripe_website_manager < 0.8.4 - SQL Injection via ripeformpost Parameter
SQL injection vulnerability in contact/index.php in Ripe Website Manager 0.8.4 and earlier allows remote attackers to execute arbitrary SQL commands via the ripeformpost parameter.
by John Martinelli
CVE-2007-2247 EXPLOITDB html VERIFIED
phpMySpace Gold 8.10 - SQL Injection via item_id Parameter
SQL injection vulnerability in modules/news/article.php in phpMySpace Gold 8.10 allows remote attackers to execute arbitrary SQL commands via the item_id parameter.
by John Martinelli
CVE-2007-2339 EXPLOITDB html VERIFIED
Phorum < 5.1.20 - SQL Injection via Multiple Parameters
Multiple SQL injection vulnerabilities in Phorum before 5.1.22 allow remote attackers to execute arbitrary SQL commands via (1) a modified recipients parameter name in (a) pm.php; (2) the curr parameter to the (b) badwords (aka censorlist) or (c) banlist module in admin.php; or (3) the "Edit groups / Add group" field in the (d) groups module in admin.php.
by Janek Vind
By Source
All 2,009 Writeup 62,260 Exploitdb 50,076 Nomisec 22,408 Github 3,623 Metasploit 3,312 Vulncheck_xdb 927 Inthewild 514 Gitlab 479 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,570 ruby 6,003 c 3,626 perl 2,849 html 2,075 php 1,333 bash 462 java 371 c++ 261 javascript 229 shell 131 go 73 postscript 25 typescript 25