Exploitdb Exploits
2,814 exploits tracked across all sources.
Manageengine Servicedesk Plus < 8.0.0.12 - Path Traversal
Directory traversal vulnerability in FileDownload.jsp in ManageEngine ServiceDesk Plus 8.0.0.12 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the FILENAME parameter. NOTE: this might overlap the US-CERT VU#543310 issue.
by @ygoltsev
Kaillera Server 0.86 - DoS
Kaillera Server version 0.86 is vulnerable to a denial-of-service condition triggered by sending a malformed UDP packet after the initial handshake. Once a client sends a valid HELLO0.83 packet and receives a response, any subsequent malformed packet causes the server to crash and become unresponsive. This flaw stems from improper input validation in the server’s UDP packet handler, allowing unauthenticated remote attackers to disrupt service availability.
by Sil3nt_Dre4m
PHP-Nuke 8.3 - 'upload.php' Arbitrary File Upload (2)
by pentesters.ir
Data::FormValidator <4.66 - Info Disclosure
The Data::FormValidator module 4.66 and earlier for Perl, when untaint_all_constraints is enabled, does not properly preserve the taint attribute of data, which might allow remote attackers to bypass the taint protection mechanism via form input.
by dst
PikaCMS - Multiple Local File Disclosure Vulnerabilities
by KnocKout
Brother HL-5370DW - series Authentication Bypass printer flooder
by chrisB
SpongeBob SquarePants Typing - Local Buffer Overflow (SEH)
by Infant Overflow
AVS Ringtone Maker 1.6.1 - '.au' File Remote Buffer Overflow
by KedAns-Dz
Novell eDirectory 8.8 and Netware LDAP-SSL Daemon - Denial of Service
by Knud
Adobe Audition < 3.0.1 - Memory Corruption
Buffer overflow in Adobe Audition 3.0.1 and earlier allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted Audition Session (aka .ses) file.
by LiquidWorm
Chasys Media Player 2.0 - Local Buffer Overflow (SEH)
by h1ch4m
BlueVoda Website Builder 11 - '.bvp' Local Stack Buffer Overflow
by KedAns-Dz
Perl - Denial of Service
Perl 5.10.x allows context-dependent attackers to cause a denial of service (NULL pointer dereference and application crash) by leveraging an ability to inject arguments into a (1) getpeername, (2) readdir, (3) closedir, (4) getsockname, (5) rewinddir, (6) tell, or (7) telldir function call.
by Jonathan Brossard
OpenMyZip 0.1 - '.zip' Remote Buffer Overflow
by C4SS!0 G0M3S
NetOp v9.5 - Buffer Overflow
NetOp (now part of Impero Software) Remote Control Client v9.5 is vulnerable to a stack-based buffer overflow when processing .dws configuration files. If a .dws file contains a string longer than 520 bytes, the application fails to perform proper bounds checking, allowing an attacker to execute arbitrary code when the file is opened.
by chap0
eXPert PDF 7.0.880.0 - '.pj' Heap Buffer Overflow
by KedAns-Dz
Fish - Buffer Overflow
Multiple stack-based buffer overflows in the (1) ExtractRnick and (2) decrypt_topic_332 functions in FiSH allow remote attackers to execute arbitrary code via long strings.
by Caleb James DeLisle
SimplyPlay 66 - '.pls' Local Buffer Overflow
by C4SS!0 G0M3S
By Source