Perl Exploits
2,849 exploits tracked across all sources.
Express Burn Plus 4.58 - EBP Project File Handling Buffer Overflow (PoC)
by LiquidWorm
E-Mail Security Virtual Appliance ESVA_2057 - Unauthenticated OS Command Injection via learn-msg.cgi id Parameter
The E-Mail Security Virtual Appliance (ESVA) (tested on version ESVA_2057) contains an unauthenticated command injection vulnerability in the learn-msg.cgi script. The CGI handler fails to sanitize user-supplied input passed via the id parameter, allowing attackers to inject arbitrary shell commands. Exploitation requires no authentication and results in full command execution on the underlying system.
by iJoo
Pure-FTPd 1.0.21 (CentOS 6.2 / Ubuntu 8.04) - Null Pointer Dereference Crash (PoC)
by kingcope
Joomla! Component com_enmasse 1.2.0.4 - SQL Injection
by D4NB4R
VideoLAN VLC Media Player 2.0.2 - '.3gp' File Divide-by-Zero Denial of Service
by Dark-Puzzle
Photodex ProShow Producer 5.0.3256 - Local Buffer Overflow
by mr.pr0n
Simple Web Server 2.2 rc2 - Buffer Overflow
Simple Web Server 2.2 rc2 contains a stack-based buffer overflow vulnerability in its handling of the Connection HTTP header. When a remote attacker sends an overly long string in this header, the server uses vsprintf() without proper bounds checking, leading to a buffer overflow on the stack. This flaw allows remote attackers to execute arbitrary code with the privileges of the web server process. The vulnerability is triggered before authentication.
by mr.pr0n
WordPress Theme Diary/Notebook Site5 - Email Spoofing
by bwall
Zoom Player - '.avi' Divide-by-Zero Denial of Service
by Dark-Puzzle
VideoLAN VLC Media Player 2.0.1 - '.avi' File Denial of Service
by Dark-Puzzle
Real Networks RealPlayer - '.avi' File Divide-by-Zero Denial of Service
by Dark-Puzzle
Winamp 5.13 - '.m3u' File Exception Handling Remote Denial of Service
by Dark-Puzzle
ComSndFTP FTP Server <1.3.7 Beta - Code Injection
ComSndFTP FTP Server version 1.3.7 Beta contains a format string vulnerability in its handling of the USER command. By sending a specially crafted username containing format specifiers, a remote attacker can overwrite a hardcoded function pointer in memory (specifically WSACleanup from Ws2_32.dll). This allows the attacker to redirect execution flow and bypass DEP protections using a ROP chain, ultimately leading to arbitrary code execution. The vulnerability is exploitable without authentication and affects default configurations.
by demonalex
By Source