Perl Exploits
2,854 exploits tracked across all sources.
Osgeo Mapserver < 6.0.0 - Resource Management Error
Double free vulnerability in the msAddImageSymbol function in mapsymbol.c in MapServer before 6.0.1 might allow remote attackers to cause a denial of service (application crash) or have unspecified other impact via crafted mapfile data.
by rouault
Mini-stream Ripper 2.9.7.273 - '.m3u' Universal Buffer Overflow
by D3r K0n!G
DVD X Player 5.5 Professional - '.plf' Universal Buffer Overflow
by D3r K0n!G
Yahoo! player 1.5 - '.m3u' Universal Buffer Overflow (SEH)
by D3r K0n!G
Groovy Media Player 2.6.0 - '.m3u' Local Buffer Overflow (PoC)
by D3r K0n!G
Zazavi 1.2.1 - '/FileManager/Controller.php' Arbitrary File Upload
by KedAns-Dz
Apache HTTP Server < 2.0.65 - Denial of Service
The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x through 2.0.64, and 2.2.x through 2.2.19 allows remote attackers to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as exploited in the wild in August 2011, a different vulnerability than CVE-2007-0086.
by kingcope
Tripodworks Gigapod Officehard Firmware < 3.04.03 - Denial of Service
GIGAPOD file servers (Appliance model and Software model) provide two web interfaces, 80/tcp and 443/tcp for user operation, and 8001/tcp for administrative operation.
8001/tcp is served by a version of Apache HTTP server containing a flaw in handling HTTP requests (CVE-2011-3192), which may lead to a denial-of-service (DoS) condition.
by kingcope
CVSS 7.5
D.R. Software Audio Converter 8.1 - DEP Bypass
by C4SS!0 G0M3S
Microsoft Excel - Memory Corruption
Buffer overflow in Microsoft Excel 2002 SP3, 2003 SP3, and 2007 SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Excel Viewer SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Excel spreadsheet, related to improper validation of record information, aka "Excel Buffer Overrun Vulnerability."
by webDEViL
Free CD to MP3 Converter 3.1 - Universal DEP Bypass
by C4SS!0 G0M3S
MPlayer Lite r33064 - '.m3u' Local Buffer Overflow (DEP Bypass)
by C4SS!0 & h1ch4m
ZipGenius 6.3.2.3000 - '.zip' Local Buffer Overflow
by C4SS!0 G0M3S
Manageengine Servicedesk Plus < 8.0.0.12 - Path Traversal
Directory traversal vulnerability in FileDownload.jsp in ManageEngine ServiceDesk Plus 8.0.0.12 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the FILENAME parameter. NOTE: this might overlap the US-CERT VU#543310 issue.
by @ygoltsev
Kaillera Server 0.86 - DoS
Kaillera Server version 0.86 is vulnerable to a denial-of-service condition triggered by sending a malformed UDP packet after the initial handshake. Once a client sends a valid HELLO0.83 packet and receives a response, any subsequent malformed packet causes the server to crash and become unresponsive. This flaw stems from improper input validation in the server’s UDP packet handler, allowing unauthenticated remote attackers to disrupt service availability.
by Sil3nt_Dre4m
PHP-Nuke 8.3 - 'upload.php' Arbitrary File Upload (2)
by pentesters.ir
Data::FormValidator <4.66 - Info Disclosure
The Data::FormValidator module 4.66 and earlier for Perl, when untaint_all_constraints is enabled, does not properly preserve the taint attribute of data, which might allow remote attackers to bypass the taint protection mechanism via form input.
by dst
PikaCMS - Multiple Local File Disclosure Vulnerabilities
by KnocKout
By Source