Exploitdb Exploits

2,814 exploits tracked across all sources.

Sort: Activity Stars
CVE-2009-0659 EXPLOITDB perl VERIFIED
TPTEST 3.1.7 - Buffer Overflow
Stack-based buffer overflow in the GetStatsFromLine function in TPTEST 3.1.7 allows remote attackers to have an unknown impact via a STATS line with a long email field. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by ffwd
EIP-2026-112155 EXPLOITDB perl VERIFIED
simplePms CMS 0.1.4 - Local File Inclusion / Remote Command Execution
by Osirys
EIP-2026-109410 EXPLOITDB perl VERIFIED
MemHT Portal 4.0.1 - Delete All Private Messages
by StAkeR
CVE-2009-5095 EXPLOITDB perl VERIFIED
Ea-style Gbook - Code Injection
PHP remote file inclusion vulnerability in index_inc.php in ea gBook 0.1 and 0.1.4 allows remote attackers to execute arbitrary PHP code via a URL in the inc_ordner parameter.
by bd0rk
CVE-2009-5094 EXPLOITDB perl VERIFIED
Cmsfaethon Cms Faethon - SQL Injection
SQL injection vulnerability in info.php in CMS Faethon 2.2.0 Ultimate allows remote attackers to execute arbitrary SQL commands via the item parameter.
by Osirys
EIP-2026-105532 EXPLOITDB perl VERIFIED
BlogWrite 0.91 - Remote File Disclosure / SQL Injection
by Osirys
EIP-2026-107870 EXPLOITDB perl VERIFIED
InselPhoto 1.1 - 'query' SQL Injection
by Osirys
CVE-2009-5090 EXPLOITDB perl VERIFIED
Daman371 Bloggeruniverse - SQL Injection
SQL injection vulnerability in editcomments.php in Bloggeruniverse Beta 2, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the id parameter and possibly other unspecified vectors.
by Osirys
EIP-2026-107158 EXPLOITDB perl VERIFIED
Fluorine CMS 0.1 rc 1 - File Disclosure / SQL Injection / Command Execution
by Osirys
CVE-2009-0542 EXPLOITDB perl VERIFIED
ProFTPD Server <1.3.2rc2 - SQL Injection
SQL injection vulnerability in ProFTPD Server 1.3.1 through 1.3.2rc2 allows remote attackers to execute arbitrary SQL commands via a "%" (percent) character in the username, which introduces a "'" (single quote) character during variable substitution by mod_sql.
by AlpHaNiX
CVE-2009-0546 EXPLOITDB perl VERIFIED
NewsGator FeedDemon <2.7 - Buffer Overflow
Stack-based buffer overflow in NewsGator FeedDemon 2.7 and earlier allows user-assisted remote attackers to execute arbitrary code via a long text attribute in an outline element in a .opml file.
by cenjan
EIP-2026-113172 EXPLOITDB perl VERIFIED
w3bcms 3.5.0 - Multiple Vulnerabilities
by DNX
CVE-2009-0604 EXPLOITDB perl VERIFIED
PHP Director <0.21 - SQL Injection
SQL injection vulnerability in index.php in PHP Director 0.21 and earlier allows remote attackers to execute arbitrary SQL commands via the searching parameter.
by darkjoker
EIP-2026-107572 EXPLOITDB perl VERIFIED
Hedgehog-CMS 1.21 - Remote Command Execution
by darkjoker
EIP-2026-107571 EXPLOITDB perl VERIFIED
Hedgehog-CMS 1.21 - Local File Inclusion / Remote Command Execution
by Osirys
CVE-2009-0478 EXPLOITDB perl VERIFIED
Squid <3.1.0.4 - DoS
Squid 2.7 to 2.7.STABLE5, 3.0 to 3.0.STABLE12, and 3.1 to 3.1.0.4 allows remote attackers to cause a denial of service via an HTTP request with an invalid version number, which triggers a reachable assertion in (1) HttpMsg.c and (2) HttpStatusLine.c.
by Praveen Darshanam
CVE-2009-0643 EXPLOITDB perl VERIFIED
Simple PHP News 1.0 - Code Injection
Static code injection vulnerability in post.php in Simple PHP News 1.0 final allows remote attackers to inject arbitrary PHP code into news.txt via the post parameter, and then execute the code via a direct request to display.php. NOTE: some of these details are obtained from third party information.
by Osirys
EIP-2026-104805 EXPLOITDB perl VERIFIED
1024 CMS 1.4.4 - Remote Command Execution / Remote File Inclusion
by JosS
EIP-2026-117749 EXPLOITDB perl VERIFIED
Password Door 8.4 - Local Buffer Overflow
by b3hz4d
CVE-2009-0546 EXPLOITDB perl VERIFIED
NewsGator FeedDemon <2.7 - Buffer Overflow
Stack-based buffer overflow in NewsGator FeedDemon 2.7 and earlier allows user-assisted remote attackers to execute arbitrary code via a long text attribute in an outline element in a .opml file.
by Praveen Darshanam
EIP-2026-118253 EXPLOITDB perl VERIFIED
Amaya Web Browser 11 (Windows XP) - bdo tag Remote Stack Overflow
by Rob Carter
EIP-2026-118252 EXPLOITDB perl VERIFIED
Amaya Web Browser 11 (Windows Vista) - bdo tag Remote Stack Overflow
by Rob Carter
CVE-2009-0476 EXPLOITDB perl VERIFIED
MultiMedia Soft AdjMmsEng.dll <7.11.2.7 - Buffer Overflow
Stack-based buffer overflow in MultiMedia Soft AdjMmsEng.dll 7.11.1.0 and 7.11.2.7, as distributed in multiple MultiMedia Soft audio components for .NET, allows remote attackers to execute arbitrary code via a long string in a playlist (.pls) file, as originally reported for Euphonics Audio Player 1.0. NOTE: some of these details are obtained from third party information.
by Houssamix
CVE-2009-0410 EXPLOITDB perl VERIFIED
Novell GroupWise <8.0 - RCE
Off-by-one error in the SMTP daemon in GroupWise Internet Agent (GWIA) in Novell GroupWise 6.5x, 7.0, 7.01, 7.02, 7.03, 7.03HP1a, and 8.0 allows remote attackers to execute arbitrary code via a long e-mail address in a malformed RCPT command, leading to a buffer overflow.
by Praveen Darshanam
CVE-2009-0183 EXPLOITDB perl VERIFIED
Free Download Manager <3.0.844 - Buffer Overflow
Stack-based buffer overflow in Remote Control Server in Free Download Manager (FDM) 2.5 Build 758 and 3.0 Build 844 allows remote attackers to execute arbitrary code via a long Authorization header in an HTTP request.
by Praveen Darshanam
By Source
All 2,814 Exploitdb 50,121 Writeup 46,662 Nomisec 21,135 Metasploit 3,189 Github 2,237 Vulncheck_xdb 900 Inthewild 518 Gitlab 439 Gitee 415 Patchapalooza 312
By Language
text 31,341 ruby 5,920 python 5,731 c 3,550 perl 2,854 html 2,054 php 1,334 bash 459 java 359 javascript 260 c++ 246 shell 68 go 41 postscript 25 xml 24