Exploitdb Exploits

2,809 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-116451 EXPLOITDB perl VERIFIED
UltraPlayer 2.112 - '.avi' File Denial of Service
by KedAns-Dz
CVE-2012-5315 EXPLOITDB perl VERIFIED
php_ireport 1.0 - Cross-Site Scripting via Message Parameter
Multiple cross-site scripting (XSS) vulnerabilities in php ireport 1.0 allow remote attackers to inject arbitrary web script or HTML via the message parameter to (1) messages_viewer.php, (2) home.php, or (3) history.php.
by Or4nG.M4N
CVE-2012-5326 EXPLOITDB perl
iSupport 1.x - Cross-Site Request Forgery via Administrator Account Addition
Cross-site request forgery (CSRF) vulnerability in admin/function.php in IDevSpot iSupport 1.x allows remote attackers to hijack the authentication of administrators for requests that add administrator accounts via an administrators action.
by Or4nG.M4N
EIP-2026-116895 EXPLOITDB perl VERIFIED
Blade API Monitor 3.6.9.2 - Unicode Stack Buffer Overflow
by FullMetalFouad
CVE-2012-1024 EXPLOITDB perl
Enigma2 Webinterface <1.5 - Path Traversal
Directory traversal vulnerability in file in Enigma2 Webinterface 1.5rc1 and 1.5beta4 allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.
by Todor Donev
CVE-2012-1025 EXPLOITDB perl
Enigma2 Webinterface <1.7.0 - Path Traversal
Absolute path traversal vulnerability in file in Enigma2 Webinterface 1.6.0 through 1.6.8, 1.6rc3, and 1.7.0 allows remote attackers to read arbitrary files via a full pathname in the file parameter.
by Todor Donev
CVE-2012-6044 EXPLOITDB perl VERIFIED
M-Player 0.4 - Denial of Service via Crafted MP3 File
M-Player 0.4 allows remote attackers to cause a denial of service (crash) via a crafted MP3 file.
by JaMbA
CVE-2012-0902 EXPLOITDB perl
AirTies Air 4450 1.1.2.18 - Denial of Service via Direct Request to cgi-bin/loader
AirTies Air 4450 1.1.2.18 allows remote attackers to cause a denial of service (reboot) via a direct request to cgi-bin/loader.
by rigan
CVE-2012-5345 EXPLOITDB perl VERIFIED
IpTools 0.1.4 - Denial of Service via Long String to TCP Port 23
Buffer overflow in the Remote command server (Rcmd.bat) in IpTools (aka Tiny TCP/IP server) 0.1.4 allows remote attackers to cause a denial of service (crash) via a long string to TCP port 23.
by demonalex
CVE-2012-0904 EXPLOITDB perl VERIFIED
VLC media player 1.1.11 - Denial of Service via Long String in AMR File
VLC media player 1.1.11 allows remote attackers to cause a denial of service (crash) via a long string in an amr file.
by Fabi@habsec
CVE-2011-5043 EXPLOITDB perl
TomatoSoft Free Mp3 Player 1.0 - Denial of Service via Long String in MP3 File
TomatoSoft Free Mp3 Player 1.0 allows remote attackers to cause a denial of service (application crash) via a long string in an MP3 file, possibly a buffer overflow.
by JaMbA
CVE-2011-5219 EXPLOITDB perl
mPDF < 5.3 - Path Traversal via Filename Parameter
Directory traversal vulnerability in examples/show_code.php in mPDF 5.3 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter.
by ZadYree
CVE-2011-4717 EXPLOITDB perl
zFTPServer Suite 6.0.0.52 - Authenticated Path Traversal via RMD Command
Directory traversal vulnerability in zFTPServer Suite 6.0.0.52 allows remote authenticated users to delete arbitrary directories via a crafted RMD (aka rmdir) command.
by Stefan Schurtz
EIP-2026-115295 EXPLOITDB perl VERIFIED
Free Opener - Local Denial of Service
by Iolo Morganwg
EIP-2026-101010 EXPLOITDB perl
D-Link DNS-320 ShareCenter - Remote Reboot/Shutdown/Reset (Denial of Service)
by rigan
CVE-2011-5173 EXPLOITDB perl
Bugbear Entertainment FlatOut 2005 - Buffer Overflow via BED File Title Field
Buffer overflow in Bugbear Entertainment FlatOut 2005 allows user-assisted remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in the title field in a bed file.
by Silent_Dream
CVE-2009-0302 EXPLOITDB perl
PHP-Nuke <8.1.0.3.5b - SQL Injection
SQL injection vulnerability in the Downloads module for PHP-Nuke 8.0 8.1.0.3.5b and earlier allows remote authenticated users to execute arbitrary SQL commands via the url parameter in the Add operation to modules.php.
by Dante90
EIP-2026-116261 EXPLOITDB perl VERIFIED
Soda PDF Professional 1.2.155 - '.pdf' / '.WWF' File Handling Denial of Service
by LiquidWorm
EIP-2026-101605 EXPLOITDB perl
COMTREND CT-5624 Router - Root/Support Password Disclosure/Change
by Todor Donev
CVE-2011-4122 EXPLOITDB perl VERIFIED
OpenPAM <r478 - Privilege Escalation
Directory traversal vulnerability in openpam_configure.c in OpenPAM before r478 on FreeBSD 8.1 allows local users to load arbitrary DSOs and gain privileges via a .. (dot dot) in the service_name argument to the pam_start function, as demonstrated by a .. in the -c option to kcheckpass.
by IKCE
CVE-2011-4716 EXPLOITDB perl
DreamBox DM800 Firmware < 1.6 - Path Traversal via File Parameter
Directory traversal vulnerability in file in DreamBox DM800 1.6rc3, 1.5rc1, and earlier allows remote attackers to read arbitrary files via the file parameter.
by Todor Donev
EIP-2026-115001 EXPLOITDB perl
BlueZone Desktop - Multiple Malformed Files Local Denial of Service Vulnerabilities
by Silent_Dream
EIP-2026-114999 EXPLOITDB perl VERIFIED
BlueZone - '.zft' File Local Denial of Service
by Iolo Morganwg
EIP-2026-115000 EXPLOITDB perl
BlueZone Desktop - '.zap' file Local Denial of Service
by Silent_Dream
EIP-2026-114935 EXPLOITDB perl
Ashampoo Burning Studio Elements 10.0.9 - '.ashprj' Heap Overflow
by LiquidWorm
By Source
All 2,809 Writeup 61,943 Exploitdb 50,073 Nomisec 22,300 Github 3,477 Metasploit 3,294 Vulncheck_xdb 926 Inthewild 514 Gitlab 470 Gitee 415 Patchapalooza 312
By Language
text 31,383 python 6,492 ruby 5,984 c 3,619 perl 2,849 html 2,071 php 1,331 bash 462 java 370 c++ 255 javascript 228 shell 126 go 72 postscript 25 typescript 25