Perl Exploits

2,849 exploits tracked across all sources.

Sort: Activity Stars
CVE-2009-3807 EXPLOITDB perl VERIFIED
MixVibes 7.043 Pro - Stack-Based Buffer Overflow via .vib File
Stack-based buffer overflow in MixVibes 7.043 Pro allows remote attackers to cause a denial of service (crash) via a long string in a .vib file.
by hack4love
CVE-2009-3948 EXPLOITDB perl VERIFIED
COWON Media Center JetAudio 7.5.3 - Denial of Service via Long String in WAV File
JetAudio 7.5.3 COWON Media Center allows remote attackers to cause a denial of service (memory consumption and application crash) via a long string at the end of a .wav file.
by prodigy
EIP-2026-115419 EXPLOITDB perl VERIFIED
Icarus 2.0 - '.ICP' Local Stack Overflow (PoC)
by ThE g0bL!N
CVE-2009-2364 EXPLOITDB perl VERIFIED
mp3-nator 2.0 - Stack-Based Buffer Overflow via Long String in .plf or listdata.dat File
Stack-based buffer overflow in Mp3-Nator 2.0 allows remote attackers to execute arbitrary code via (1) a long string in a .plf file and (2) a long string in the listdata.dat file, possibly related to a track entry.
by ThE g0bL!N
CVE-2009-3857 EXPLOITDB perl VERIFIED
Softonic International SciTE 1.72 - Buffer Overflow
Buffer overflow in Softonic International SciTE 1.72 allows user-assisted remote attackers to cause a denial of service (application crash) via a Ruby (.rb) file containing a long string, which triggers the crash when a scroll bar is used.
by prodigy
EIP-2026-116074 EXPLOITDB perl VERIFIED
Playlistmaker 1.5 - '.m3u' / '.M3L' / '.TXT' Local Stack Overflow (PoC)
by ThE g0bL!N
EIP-2026-115566 EXPLOITDB perl VERIFIED
M3U/M3L to ASX/WPL 1.1 - '.asx' / '.m3u' / '.m3l' Local Buffer Overflow (PoC)
by ThE g0bL!N
CVE-2009-3717 EXPLOITDB perl VERIFIED
LucVil PatPlayer 3.9 - Heap-Based Buffer Overflow via Long URI in Playlist File
Heap-based buffer overflow in LucVil PatPlayer 3.9 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a long URI in a playlist (.m3u) file.
by Cyber-Zone
CVE-2009-3812 EXPLOITDB perl VERIFIED
OtsAV DJ, Radio, and TV 1.85.64.0 - Heap-Based Buffer Overflow via Long Playlist in OFL File
Heap-based buffer overflow in OtsAV DJ trial version 1.85.64.0, Radio trial version 1.85.64.0, TV trial version 1.85.64.0, and Free version 1.77.001 allows remote attackers to execute arbitrary code via a long playlist in an Ots File List (.ofl) file.
by hack4love
CVE-2009-3531 EXPLOITDB perl VERIFIED
Universe CMS 1.0.6 - SQL Injection via vnews.php id Parameter
SQL injection vulnerability in vnews.php in Universe CMS 1.0.6 allows remote attackers to execute arbitrary SQL commands via the id parameter.
by Mr.tro0oqy
CVE-2009-2362 EXPLOITDB perl VERIFIED
KUDRSOFT AudioPLUS 2.0.0.215 - Buffer Overflow
Stack-based buffer overflow in KUDRSOFT AudioPLUS 2.0.0.215 allows remote attackers to execute arbitrary code via a long string in a (1) .lst or (2) .m3u playlist file.
by hack4love
CVE-2009-2364 EXPLOITDB perl VERIFIED
mp3-nator 2.0 - Stack-Based Buffer Overflow via Long String in .plf or listdata.dat File
Stack-based buffer overflow in Mp3-Nator 2.0 allows remote attackers to execute arbitrary code via (1) a long string in a .plf file and (2) a long string in the listdata.dat file, possibly related to a track entry.
by ThE g0bL!N
CVE-2009-2363 EXPLOITDB perl VERIFIED
KUDRSOFT AudioPLUS 2.00.215 - Buffer Overflow
Stack-based buffer overflow in KUDRSOFT AudioPLUS 2.00.215 allows remote attackers to execute arbitrary code via a .pls playlist file with a playlist entry containing a long File1 argument.
by Stack
CVE-2009-2363 EXPLOITDB perl VERIFIED
KUDRSOFT AudioPLUS 2.00.215 - Buffer Overflow
Stack-based buffer overflow in KUDRSOFT AudioPLUS 2.00.215 allows remote attackers to execute arbitrary code via a .pls playlist file with a playlist entry containing a long File1 argument.
by hack4love
CVE-2009-2384 EXPLOITDB perl VERIFIED
Brothersoft PEamp 1.02b - Buffer Overflow
Buffer overflow in amp.exe in Brothersoft PEamp 1.02b allows user-assisted remote attackers to execute arbitrary code via a long string in a .m3u playlist file. NOTE: some of these details are obtained from third party information.
by ThE g0bL!N
CVE-2009-2566 EXPLOITDB perl VERIFIED
TFM MMPlayer 2.0- - Buffer Overflow
Stack-based buffer overflow in TFM MMPlayer 2.0, and possibly 2.0.0.30, allows remote attackers to execute arbitrary code via a long string in a playlist (.m3u) file.
by ThE g0bL!N
CVE-2009-2385 EXPLOITDB perl VERIFIED
Simple Machines Forum 1.0.2 - SQL Injection
SQL injection vulnerability in the awardsMembers function in Sources/Profile.php in the Member Awards component 1.0.2 for Simple Machines Forum (SMF) allows remote attackers to execute arbitrary SQL commands via the id parameter in a profile action to index.php. NOTE: some of these details are obtained from third party information.
by eLwaux
CVE-2009-2276 EXPLOITDB perl VERIFIED
Vote For Us Extension < 1.0.1 - SQL Injection via 'out' Parameter
SQL injection vulnerability in voteforus.php in the Vote For Us extension 1.0.1 and earlier for PunBB allows remote attackers to execute arbitrary SQL commands via the out parameter.
by Dante90
CVE-2009-2308 EXPLOITDB perl VERIFIED
Affiliation module for PunBB <= 1.1.0 - SQL Injection via in or out Parameter
Multiple SQL injection vulnerabilities in affiliates.php in the Affiliation (aka Affiliates) module 1.1.0 and earlier for PunBB allow remote attackers to execute arbitrary SQL commands via the (1) in or (2) out parameter.
by Dante90
CVE-2009-2485 EXPLOITDB perl VERIFIED
HT-MP3Player 1.0 - Stack-Based Buffer Overflow via Long String in .ht3 File
Stack-based buffer overflow in HT-MP3Player 1.0 allows remote attackers to execute arbitrary code via a long string in a .ht3 file.
by hack4love
CVE-2009-2403 EXPLOITDB perl VERIFIED
SCMPX 1.5.1 - Heap-Based Buffer Overflow via Long String in M3U Playlist File
Heap-based buffer overflow in SCMPX 1.5.1 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a long string in a .m3u playlist file.
by hack4love
CVE-2009-2389 EXPLOITDB perl VERIFIED
USOLVED NEWSolved 1.1.6 - SQL Injection
Multiple SQL injection vulnerabilities in newsscript.php in USOLVED NEWSolved 1.1.6, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) jahr or (2) idneu parameter in an archive action, or (3) the newsid parameter.
by jmp-esp
CVE-2009-3860 EXPLOITDB perl VERIFIED
COMRaider - File Creation/Overwrite
Multiple insecure method vulnerabilities in Idefense Labs COMRaider allow remote attackers to create or overwrite arbitrary files via the (1) CreateFolder and (2) Copy methods. NOTE: this might only be a vulnerability in certain insecure configurations of Internet Explorer.
by Khashayar Fereidani
EIP-2026-103584 EXPLOITDB perl VERIFIED
Multiple HTTP Server - 'slowloris.pl' Low Bandwidth Denial of Service
by RSnake
CVE-2009-2173 EXPLOITDB perl VERIFIED
Carom3D 5.06 - Authenticated Denial of Service via Crafted HTTP Request
The LAN game feature in Carom3D 5.06 allows remote authenticated users to cause a denial of service (application hang) via a crafted HTTP request to TCP port 28012.
by LiquidWorm
By Source
All 2,849 Writeup 62,043 Exploitdb 50,076 Nomisec 22,336 Github 3,517 Metasploit 3,299 Vulncheck_xdb 927 Inthewild 514 Gitlab 470 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,515 ruby 5,989 c 3,622 perl 2,849 html 2,072 php 1,332 bash 462 java 370 c++ 257 javascript 228 shell 130 go 72 postscript 25 typescript 25