Perl Exploits
2,854 exploits tracked across all sources.
Bpowerhouse Bpgames - SQL Injection
Multiple SQL injection vulnerabilities in BPowerHouse BPGames 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) cat_id parameter to main.php and (2) game_id parameter to game.php.
by OoN Boy
Rick Estrada Com Mytube - SQL Injection
SQL injection vulnerability in the MyRemote Video Gallery (com_mytube) component 1.0 Beta for Joomla! allows remote attackers to execute arbitrary SQL commands via the user_id parameter in a videos action to index.php.
by Chip d3 bi0s
MP3-Cutter Ease Audio Cutter <1.20 - DoS
Unspecified vulnerability in MP3-Cutter Ease Audio Cutter 1.20 allows user-assisted remote attackers to cause a denial of service (application crash) via a long string in a WAV file.
by zAx
Jforjoomla Com Jreservation - SQL Injection
SQL injection vulnerability in the JReservation (com_jreservation) component 1.0 and 1.5 for Joomla! allows remote attackers to execute arbitrary SQL commands via the pid parameter in a propertycpanel action to index.php.
by Chip d3 bi0s
Joomla! Component com_jlord_rss - 'id' Blind SQL Injection
by Chip d3 bi0s
Collectorz Mp3 Collector - Denial of Service
MP3 Collector 2.3 allows remote attackers to cause a denial of service (application crash) via a long URL in a .m3u playlist file.
by zAx
E-Soft DJ Studio Pro <5.1.4.3.1 - Buffer Overflow
Stack-based buffer overflow in E-Soft DJ Studio Pro 4.2 including 4.2.2.7.5, and 5.x including 5.1.4.3.1, allows user-assisted remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a playlist file (.pls) containing a long string. NOTE: some of these details are obtained from third party information.
by prodigy
Techlogica HTTP Server 1.03 - Arbitrary File Disclosure
by ThE g0bL!N
Invisible Browsing <5.0.52 - RCE
Buffer overflow in Invisible Browsing 5.0.52 allows user-assisted remote attackers to execute arbitrary code via a crafted .ibkey file containing a long string.
by PLATEN
Jasper Httpdx - Format String Vulnerability
Format string vulnerability in the h_readrequest function in http.c in httpdx Web Server 1.4 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via format string specifiers in the Host header.
by Pankaj Kohli
Phpprobid Php Pro Bid - SQL Injection
SQL injection vulnerability in auction_details.php in PHP Pro Bid allows remote attackers to execute arbitrary SQL commands via the auction_id parameter.
by NoGe
Randomsoftware Icarus - Memory Corruption
Stack-based buffer overflow in Icarus 2.0 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a crafted Portable Game Notation (.pgn) file.
by germaya_x
Apple Safari - Resource Management Error
Stack consumption vulnerability in WebKit.dll in WebKit in Apple Safari 3.2.3, and possibly other versions before 4.1.2, allows remote attackers to cause a denial of service (application crash) via JavaScript code that calls eval on a long string composed of A/ sequences.
by Jeremy Brown
jetAudio 7.1.9.4030 plus - vx(asx/wax/wvx) Universal Local Buffer Overflow (SEH)
by hack4love
ROB Schultz Media Player Classic - Numeric Error
Integer overflow in Media Player Classic 6.4.9 allows user-assisted remote attackers to cause a denial of service (application crash) via a MIDI file (.mid) with a malformed header, which triggers a buffer overflow, a different vulnerability than CVE-2007-4940.
by PLATEN
Ipswitch WS_FTP Pro <12.2 - DoS
Format string vulnerability in Ipswitch WS_FTP Professional 12 before 12.2 allows remote attackers to cause a denial of service (crash) via format string specifiers in the status code portion of an HTTP response.
by Jeremy Brown
Joomla! com_tpdugg 1.1 - SQL Injection
SQL injection vulnerability in the TemplatePlaza.com TPDugg (com_tpdugg) component 1.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a tags action to index.php.
by NoGe
Agoko CMS <0.4 - Code Injection
Unrestricted file upload vulnerability in admintools/editpage-2.php in Agoko CMS 0.4 and earlier allows remote attackers to inject and execute arbitrary PHP code via the filename and text parameters.
by StAkeR
OTS Labs Otsturntables - Memory Corruption
Buffer overflow in Ots Labs OTSTurntables 1.00 allows user-assisted remote attackers to execute arbitrary code via a long file path in an m3u file.
by hack4love
SAP Player 0.9 - '.m3u' Universal Local Buffer Overflow (SEH)
by PLATEN
Hamster Audio Player 0.3a - 'Associations.cfg' Local Buffer (SEH) (2)
by hack4love
Microsoft Internet Information Server < 6.0 - Buffer Overflow
Buffer overflow in the FTP Service in Microsoft Internet Information Services (IIS) 5.0 through 6.0 allows remote authenticated users to execute arbitrary code via a crafted NLST (NAME LIST) command that uses wildcards, leading to memory corruption, aka "IIS FTP Service RCE and DoS Vulnerability."
by muts
Hamster Audio Player 0.3a - 'Associations.cfg' Local Buffer (SEH) (1)
by ThE g0bL!N
Nokia MultiMedia Player 1.1 - Remote Denial of Service
by opt!x hacker
dTunes 2.72 - Filename Processing Local Format String (PoC)
by TheLeader
By Source