Exploitdb Exploits

2,814 exploits tracked across all sources.

Sort: Activity Stars
CVE-2009-0372 EXPLOITDB perl VERIFIED
Miltenovik Manojlo MemHT Portal <4.0.1 - RCE
Unrestricted file upload vulnerability in index.php in Miltenovik Manojlo MemHT Portal 4.0.1 and earlier allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension and an image content type via a users editProfile action, then accessing this file via a direct request to the file in images/avatar/uploaded/.
by StAkeR
EIP-2026-116928 EXPLOITDB perl VERIFIED
Browser3D 3.5 - '.sfs' Local Stack Overflow
by AlpHaNiX
CVE-2009-0349 EXPLOITDB perl VERIFIED
FTPShell Server 4.3 - Buffer Overflow
Stack-based buffer overflow in FTPShell Server 4.3 allows user-assisted remote attackers to cause a denial of service (persistent daemon crash) and possibly execute arbitrary code via a long string in a licensing key (aka .key) file.
by LiquidWorm
CVE-2009-0381 EXPLOITDB perl VERIFIED
Joomla! com_prod 5.0 - SQL Injection
SQL injection vulnerability in the BazaarBuilder Ecommerce Shopping Cart (com_prod) 5.0 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the cid parameter in a products action to index.php.
by XaDoS
EIP-2026-109164 EXPLOITDB perl VERIFIED
LinPHA Photo Gallery 2.0 - Remote Command Execution
by Osirys
CVE-2009-0329 EXPLOITDB perl VERIFIED
PcCookBook - Joomla! - SQL Injection
SQL injection vulnerability in the PcCookBook (com_pccookbook) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the recipe_id parameter in a viewrecipe action to index.php, a different vector than CVE-2008-0844.
by InjEctOr5
EIP-2026-107081 EXPLOITDB perl VERIFIED
Fhimage 1.2.1 - Remote Index Change
by Osirys
EIP-2026-107080 EXPLOITDB perl VERIFIED
Fhimage 1.2.1 - Remote Command Execution (mq = off)
by Osirys
EIP-2026-115967 EXPLOITDB perl VERIFIED
Novell Netware 6.5 - 'ICEbrowser' Remote System Denial of Service
by Jeremy Brown
EIP-2026-103580 EXPLOITDB perl VERIFIED
MPlayer 1.0rc2 - TwinVQ Stack Buffer Overflow (PoC)
by sCORPINo
CVE-2009-0251 EXPLOITDB perl VERIFIED
Ryneezy phoSheezy 0.2 - Code Injection
Static code injection vulnerability in admin.php in Ryneezy phoSheezy 0.2 allows remote authenticated administrators to inject arbitrary PHP code into config/footer via the footer parameter. NOTE: this can be exploited by unauthenticated attackers by leveraging CVE-2009-0250. NOTE: some of these details are obtained from third party information.
by Osirys
CVE-2009-0250 EXPLOITDB perl VERIFIED
Ryneezy phoSheezy 0.2 - Info Disclosure
Ryneezy phoSheezy 0.2 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the file containing the administrator's password hash via a direct request for config/password.
by Osirys
CVE-2009-0275 EXPLOITDB perl VERIFIED
Ryneezy phoSheezy 0.2 - Code Injection
Static code injection vulnerability in admin.php in Ryneezy phoSheezy 0.2 allows remote authenticated administrators to inject arbitrary PHP code into config/header via the header parameter. NOTE: this can be exploited by unauthenticated attackers by leveraging CVE-2009-0250. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by Osirys
EIP-2026-115130 EXPLOITDB perl VERIFIED
dBpowerAMP Audio Player 2 - '.pls' Local Buffer Overflow (PoC)
by Stack
EIP-2026-100815 EXPLOITDB perl VERIFIED
HSPell 1.1 - 'cilla.cgi' Remote Command Execution
by ZeN
CVE-2009-0133 EXPLOITDB perl VERIFIED
Microsoft HTML Help Workshop <4.74 - Buffer Overflow
Buffer overflow in Microsoft HTML Help Workshop 4.74 and earlier allows context-dependent attackers to execute arbitrary code via a .hhp file with a long "Index file" field, possibly a related issue to CVE-2006-0564.
by SkD
EIP-2026-112107 EXPLOITDB perl VERIFIED
Simple Machines Forum (SMF) 1.0.13/1.1.5 - 'Destroyer 0.1' Password Reset Security Bypass
by Xianur0
CVE-2009-0174 EXPLOITDB perl VERIFIED
VUPlayer 2.49 - Buffer Overflow
Stack-based buffer overflow in VUPlayer 2.49 allows remote attackers to execute arbitrary code via a long .asf URI in the HREF attribute of a REF element in a .asx file.
by sCORPINo
CVE-2009-0119 EXPLOITDB perl VERIFIED
Microsoft Windows XP SP3 - Buffer Overflow
Buffer overflow in Microsoft Windows XP SP3 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted .chm file.
by securfrog
EIP-2026-115009 EXPLOITDB perl VERIFIED
Browse3D 3.5 - '.sfs' Local Buffer Overflow (PoC)
by Houssamix
EIP-2026-108601 EXPLOITDB perl VERIFIED
Joomla! Component com_xevidmegahd - SQL Injection
by EcHoLL
EIP-2026-108385 EXPLOITDB perl VERIFIED
Joomla! Component com_jashowcase - 'catid' SQL Injection
by EcHoLL
CVE-2009-0174 EXPLOITDB perl VERIFIED
VUPlayer 2.49 - Buffer Overflow
Stack-based buffer overflow in VUPlayer 2.49 allows remote attackers to execute arbitrary code via a long .asf URI in the HREF attribute of a REF element in a .asx file.
by Houssamix
CVE-2009-0174 EXPLOITDB perl VERIFIED
VUPlayer 2.49 - Buffer Overflow
Stack-based buffer overflow in VUPlayer 2.49 allows remote attackers to execute arbitrary code via a long .asf URI in the HREF attribute of a REF element in a .asx file.
by aBo MoHaMeD
CVE-2009-0175 EXPLOITDB perl VERIFIED
Heathco Software MP3 TrackMaker <1.5 - Buffer Overflow
Heap-based buffer overflow in Heathco Software MP3 TrackMaker 1.5 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long string in an invalid .mp3 file.
by Houssamix
By Source
All 2,814 Exploitdb 50,121 Writeup 46,692 Nomisec 21,135 Metasploit 3,189 Github 2,237 Vulncheck_xdb 900 Inthewild 518 Gitlab 439 Gitee 415 Patchapalooza 312
By Language
text 31,341 ruby 5,920 python 5,731 c 3,550 perl 2,854 html 2,054 php 1,334 bash 459 java 359 javascript 260 c++ 246 shell 68 go 41 postscript 25 xml 24