Perl Exploits
2,854 exploits tracked across all sources.
IncrediMail 5.86 - Cross-Site Scripting Script Execution
by Bui Quang Minh
POP Peeper 3.4.0.0 - '.html' Universal Overwrite (SEH)
by Stack
POP Peeper 3.4.0.0 - '.eml' Universal Overwrite (SEH)
by Stack
Brother Soft Exescope - Memory Corruption
Buffer overflow in eXeScope 6.50 allows user-assisted remote attackers to execute arbitrary code via a crafted executable (.exe) file.
by Koshi
Extensible-BioLawCom CMS <0.2.0 - SQL Injection
SQL injection vulnerability in include/get_read.php in Extensible-BioLawCom CMS (X-BLC) 0.2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the section parameter.
by dun
rGallery 1.2.3 - SQL Injection
SQL injection vulnerability in the rGallery plugin 1.2.3 for WoltLab Burning Board (WBB3) allows remote attackers to execute arbitrary SQL commands via the userID parameter in the RGalleryUserGallery page to index.php, a different vector than CVE-2008-4627.
by Invisibility
Syzygy CMS 0.3 - Local File Inclusion / SQL Injection
by Osirys
Codice CMS 2 - SQL Injection
SQL injection vulnerability in index.php in Codice CMS 2 allows remote attackers to execute arbitrary SQL commands via the tag parameter.
by darkjoker
Chasys Media Player - '.lst Playlist' Local Buffer Overflow
by zAx
Talkative IRC v0.4.4.16 - Buffer Overflow
Talkative IRC v0.4.4.16 is vulnerable to a stack-based buffer overflow when processing specially crafted response strings sent to a connected client. An attacker can exploit this flaw by sending an overly long message that overflows a fixed-length buffer, potentially leading to arbitrary code execution in the context of the vulnerable process. This vulnerability is exploitable remotely and does not require authentication.
by LiquidWorm
Solarwinds Serv-u File Server - Path Traversal
Directory traversal vulnerability in the FTP server in Rhino Software Serv-U File Server 7.0.0.1 through 7.4.0.1 allows remote attackers to create arbitrary directories via a \.. (backslash dot dot) in an MKD request.
by Jonathan Salwan
Winasm Studio - Memory Corruption
Buffer overflow in WinAsm Studio 5.1.5.0 allows user-assisted remote attackers to execute arbitrary code via a crafted project (.wap) file.
by Stack
Videolan Vlc Media Player - Improper Input Validation
requests/status.xml in VLC 0.9.8a allows remote attackers to cause a denial of service (stack consumption and crash) via a long input argument in an in_play action.
by TheLeader
Solarwinds Serv-u File Server - Resource Management Error
The FTP server in Serv-U 7.0.0.1 through 7.4.0.1 allows remote authenticated users to cause a denial of service (service hang) via a large number of SMNT commands without an argument.
by Jonathan Salwan
Foxit Reader <3.0 Build 1506 - Buffer Overflow
Stack-based buffer overflow in Foxit Reader 3.0 before Build 1506, including 1120 and 1301, allows remote attackers to execute arbitrary code via a long (1) relative path or (2) absolute path in the filename argument in an action, as demonstrated by the "Open/Execute a file" action.
by SkD
Poppeeper Pop Peeper < 3.4.0.0 - Memory Corruption
Stack-based buffer overflow in POP Peeper 3.4.0.0 and earlier allows remote POP3 servers to execute arbitrary code via a long Date header, related to Imap.dll.
by Jeremy Brown
GuildFTPd FTP Server 0.999.14 - Remote Delete Files
by Jonathan Salwan
IBM Director < 5.20.3 - Path Traversal
Directory traversal vulnerability in the CIM server in IBM Director before 5.20.3 Service Update 2 on Windows allows remote attackers to load and execute arbitrary local DLL code via a .. (dot dot) in a /CIMListener/ URI in an M-POST request.
by Bernhard Mueller
RoomPHPlanning 1.6 - 'userform.php' Create Admin User
by Jonathan Salwan
Mediacoder 0.6.2.4275 - '.m3u' Universal Stack Overflow
by Stack
EFS Easy Chat Server 2.2 - Authentication Request Buffer Overflow
by Dr4sH
Yaws <1.80 - DoS
Yaws before 1.80 allows remote attackers to cause a denial of service (memory consumption and crash) via a request with a large number of headers.
by Praveen Darshanam
By Source