Html Exploits
2,076 exploits tracked across all sources.
PrecisionID Barcode 1.9 - Buffer Overflow
Stack-based buffer overflow in the PrecisionID Barcode 1.9 ActiveX control in PrecisionID_Barcode.dll allows remote attackers to cause a denial of service (Internet Explorer 6 crash), and possibly execute arbitrary code, via a long argument to the SaveBarCode method. NOTE: this issue might overlap CVE-2007-2657.
by shinnai
DB Software Laboratory DeWizardX - Buffer Overflow
The DB Software Laboratory DeWizardX (DEWizardAX.ocx) ActiveX control allows remote attackers to overwrite arbitrary files via the SaveToFile function.
by shinnai
ResManager < 1.2.1 - SQL Injection via id_reserv Parameter
SQL injection vulnerability in edit_day.php in the ResManager 1.2.1 and earlier module for Xoops allows remote attackers to execute arbitrary SQL commands via the id_reserv parameter.
by ajann
Clever Database Comparer 2.2 - Buffer Overflow
Stack-based buffer overflow in the Clever Database Comparer 2.2 ActiveX control (comparerax.ocx) allows remote attackers to execute arbitrary code via a long argument to the ConnectToDatabase function.
by shinnai
Akismet WordPress Plugin <2.0.2 akismet.php - Unspecified Vulnerability
Unspecified vulnerability in akismet.php in Matt Mullenweg Akismet before 2.0.2, a WordPress plugin, has unknown impact and attack vectors.
by David Kierznowski
ID Automation Linear Barcode 1.6.0.5 - DoS
Unspecified vulnerability in the ID Automation Linear Barcode 1.6.0.5 ActiveX control in IDAutomationLinear6.dll allows remote attackers to cause a denial of service via a long argument to the SaveEnhWMF method.
by shinnai
PrecisionID Barcode 1.3 - Denial of Service via SaveBarCode Method
Unspecified vulnerability in the PrecisionID Barcode 1.3 ActiveX control in PrecisionID_DataMatrix.DLL allows remote attackers to cause a denial of service via a long argument to the SaveBarCode method.
by shinnai
PhpFirstPost 0.1 - Remote File Inclusion via Include Parameter
PHP remote file inclusion vulnerability in block.php in PhpFirstPost 0.1 allows remote attackers to execute arbitrary PHP code via a URL in the Include parameter.
by Dj7xpl
Morovia Barcode ActiveX Pro 3.3.1304 - RCE
A certain ActiveX control in Morovia Barcode ActiveX Professional 3.3.1304 allows remote attackers to overwrite arbitrary files by calling the Save method with an arbitrary filename.
by shinnai
Hewlett-Packard (HP) Magview ActiveX <1.0.0.309 - Buffer Overflow
Stack-based buffer overflow in the Hewlett-Packard (HP) Magview ActiveX control in hpqvwocx.dll 1.0.0.309 allows remote attackers to cause a denial of service (application crash) and possibly have other impact via a long argument to the DeleteProfile method.
by callAX
Microsoft Windows Media Server - RCE
Unspecified vulnerability in the mdsauth.dll COM object in Microsoft Windows Media Server in the Microsoft Internet Explorer 5.01 SP4 on Windows 2000 SP4; 6 SP1 on Windows 2000 SP4; 6 and 7 on Windows XP SP2, or Windows Server 2003 SP1 or SP2; or 7 on Windows Vista allows remote attackers to overwrite arbitrary files via unspecified vectors, aka the "Arbitrary File Rewrite Vulnerability."
by Andres Tarasco
Remote Display Dev kit 1.2.1.0 - Buffer Overflow
Multiple buffer overflows in RControl.dll in Remote Display Dev kit 1.2.1.0 allow remote attackers to cause a denial of service (Internet Explorer 7 crash) via (1) a long first argument to the connect function or (2) a long InternalServer property value, possibly involving ntdll.dll.
by shinnai
Sienzo Digital Music Mentor 2.6.0.4 - SetEvalExpiryDate Overwrite (SEH)
by Parveen Vashishtha
Sienzo Digital Music Mentor 2.6.0.4 - SetEvalExpiryDate EIP Overwrite
by Parveen Vashishtha
BarCodeWiz ActiveX Control 2.0 and 2.52 - Stack-Based Buffer Overflow via Long Argument
Stack-based buffer overflow in the Verify function in the BarCodeWiz ActiveX control 2.0 and 2.52 (BarcodeWiz.dll) allows remote attackers to execute arbitrary code via a long argument.
by Parveen Vashishtha
McAfee VirusScan 10.0.21 - ActiveX control Stack Overflow (PoC)
by callAX
Ed Charkow SuperCharged Linking - SQL Injection
SQL injection vulnerability in browse.php in Ed Charkow SuperCharged Linking allows remote attackers to execute arbitrary SQL commands via the id parameter.
by rgod
BarCodeWiz ActiveX Control 2.0 and 2.52 - Stack-Based Buffer Overflow via Long Argument
Stack-based buffer overflow in the Verify function in the BarCodeWiz ActiveX control 2.0 and 2.52 (BarcodeWiz.dll) allows remote attackers to execute arbitrary code via a long argument.
by shinnai
phpmyportal 3.0.0 RC3 - Remote File Inclusion via GLOBALS[CHEMINMODULES] Parameter
PHP remote file inclusion vulnerability in inc/articles.inc.php in phpMyPortal 3.0.0 RC3 allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[CHEMINMODULES] parameter.
by GoLd_M
Taltech Tal Bar Code ActiveX Control - Denial of Service via SaveBarCode Function
The SaveBarCode function in the Taltech Tal Bar Code ActiveX control allows remote attackers to cause a denial of service (disk consumption) by uploading multiple bar codes, as demonstrated by a WSF package.
by Umesh Wanve
IncrediMail IMMenuShellExt ActiveX Control - Stack-based Buffer Overflow in DoWebMenuAction
Stack-based buffer overflow in the DoWebMenuAction function in the IncrediMail IMMenuShellExt ActiveX control (ImShExt.dll) allows remote attackers to execute arbitrary code via unspecified vectors.
by Umesh Wanve
SmartCode VNC Manager 3.6 - Buffer Overflow
Heap-based buffer overflow in the ConnectAsyncEx function in VNC Viewer ActiveX control (scvncctrl.dll) in the SmartCode VNC Manager 3.6 allows remote attackers to execute arbitrary code via a long argument.
by shinnai
Sienzo Digital Music Mentor - 'DSKernel2.dll' ActiveX Control Stack Buffer Overflow
by shinnai
VersalSoft HTTP File Upload < - RCE
Buffer overflow in the AddFile function in VersalSoft HTTP File Upload ActiveX control (UFileUploaderD.dll) allows remote attackers to execute arbitrary code via a long argument.
by shinnai
By Source