Perl Exploits

2,854 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-108201 EXPLOITDB perl VERIFIED
Joomla! Component altas 1.0 - Multiple SQL Injections
by Houssamix
CVE-2008-3154 EXPLOITDB perl VERIFIED
WebBlizzard CMS - SQL Injection
SQL injection vulnerability in index.php in WebBlizzard CMS allows remote attackers to execute arbitrary SQL commands via the page parameter.
by Bl@ckbe@rD
EIP-2026-108837 EXPLOITDB perl VERIFIED
Joomla! Component QuickTime VR 0.1 - SQL Injection
by Houssamix
EIP-2026-108678 EXPLOITDB perl VERIFIED
Joomla! Component is 1.0.1 - Multiple SQL Injections
by Houssamix
CVE-2008-2703 EXPLOITDB perl VERIFIED
Novell Groupwise Messenger - Memory Corruption
Multiple stack-based buffer overflows in Novell GroupWise Messenger (GWIM) Client before 2.0.3 HP1 for Windows allow remote attackers to execute arbitrary code via "spoofed server responses" that contain a long string after the NM_A_SZ_TRANSACTION_ID field name.
by Francisco Amato
CVE-2008-3133 EXPLOITDB perl VERIFIED
BareNuked CMS 1.1.0 - SQL Injection
SQL injection vulnerability in admin/index.php in BareNuked CMS 1.1.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the password parameter.
by CWH Underground
CVE-2008-3136 EXPLOITDB perl VERIFIED
AShop Deluxe 4.x - SQL Injection
SQL injection vulnerability in catalogue.php in AShop Deluxe 4.x allows remote attackers to execute arbitrary SQL commands via the cat parameter.
by n0c0py
CVE-2008-5200 EXPLOITDB perl VERIFIED
Joomla! - SQL Injection
SQL injection vulnerability in the Xe webtv (com_xewebtv) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a detail action to index.php.
by His0k4
EIP-2026-109283 EXPLOITDB perl VERIFIED
Mambo Component Articles - 'artid' Blind SQL Injection
by Ded MustD!e
EIP-2026-112736 EXPLOITDB perl VERIFIED
TOKOKITA - 'produk_id' SQL Injection
by k1tk4t
CVE-2008-0071 EXPLOITDB perl VERIFIED
Bittorrent < 6.0.2 - Improper Input Validation
The Web UI interface in (1) BitTorrent before 6.0.3 build 8642 and (2) uTorrent before 1.8beta build 10524 allows remote attackers to cause a denial of service (application crash) via an HTTP request with a malformed Range header.
by Exodus
EIP-2026-106868 EXPLOITDB perl VERIFIED
emuCMS 0.3 - 'FCKeditor' Arbitrary File Upload
by Stack
EIP-2026-106414 EXPLOITDB perl VERIFIED
Demo4 CMS 1b - 'FCKeditor' Arbitrary File Upload
by Stack
CVE-2008-6745 EXPLOITDB perl VERIFIED
Blogphp - Improper Input Validation
index.php in BlogPHP 2.0 allows remote attackers to gain administrator privileges via a crafted email parameter in a register2 action.
by Cod3rZ
CVE-2008-2835 EXPLOITDB perl VERIFIED
Igsuite - SQL Injection
SQL injection vulnerability in cgi-bin/igsuite in IGSuite 3.2.4 allows remote attackers to execute arbitrary SQL commands via the formid parameter.
by Guido Landi
CVE-2008-2834 EXPLOITDB perl VERIFIED
Sidb Scientific Image Database - SQL Injection
SQL injection vulnerability in projects.php in Scientific Image DataBase 0.41 allows remote attackers to execute arbitrary SQL commands via the id parameter.
by t0pP8uZz
CVE-2008-2833 EXPLOITDB perl VERIFIED
Worldlevel Le.cms < 1.4 - Authentication Bypass
admin/upload.php in le.cms 1.4 and earlier allows remote attackers to bypass administrative authentication, and upload and execute arbitrary files in images/, via a nonzero value for the submit0 parameter in conjunction with filenames in the filename and upload parameters.
by t0pP8uZz
EIP-2026-109068 EXPLOITDB perl VERIFIED
LaserNet CMS 1.5 - Arbitrary File Upload
by t0pP8uZz
CVE-2008-2791 EXPLOITDB perl VERIFIED
Kalptaru Infotech Comparison Engine Power Script - SQL Injection
SQL injection vulnerability in product.detail.php in Kalptaru Infotech Comparison Engine Power Script 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.
by Mr.SQL
CVE-2008-2815 EXPLOITDB perl VERIFIED
Mymarket - SQL Injection
SQL injection vulnerability in shopping/index.php in MyMarket 1.72 allows remote attackers to execute arbitrary SQL commands via the id parameter.
by anonymous
CVE-2008-2922 EXPLOITDB perl VERIFIED
T0pp8uzz Dana Irc Client < 1.3 - Memory Corruption
Stack-based buffer overflow in artegic Dana IRC client 1.3 and earlier allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a long IRC message.
by t0pP8uZz
EIP-2026-106474 EXPLOITDB perl VERIFIED
DIY - 'did' Blind SQL Injection
by Mr.SQL
CVE-2008-2918 EXPLOITDB perl VERIFIED
Application Dynamics Cartweaver - SQL Injection
SQL injection vulnerability in details.php in Application Dynamics Cartweaver 3.0 allows remote attackers to execute arbitrary SQL commands via the prodId parameter, possibly a related issue to CVE-2006-2046.3.
by anonymous
CVE-2007-5962 EXPLOITDB perl VERIFIED
vsftpd <2.0.5 - DoS
Memory leak in a certain Red Hat patch, applied to vsftpd 2.0.5 on Red Hat Enterprise Linux (RHEL) 5 and Fedora 6 through 8, and on Foresight Linux and rPath appliances, allows remote attackers to cause a denial of service (memory consumption) via a large number of CWD commands, as demonstrated by an attack on a daemon with the deny_file configuration option.
by Praveen Darshanam
CVE-2008-2907 EXPLOITDB perl VERIFIED
Webchamado - SQL Injection
SQL injection vulnerability in admin/index.php in WebChamado 1.1, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the eml parameter.
by CWH Underground
By Source
All 2,854 Exploitdb 50,121 Writeup 46,751 Nomisec 21,199 Metasploit 3,189 Github 2,250 Vulncheck_xdb 900 Inthewild 518 Gitlab 439 Gitee 415 Patchapalooza 312
By Language
text 31,341 ruby 5,920 python 5,738 c 3,550 perl 2,854 html 2,054 php 1,334 bash 459 java 360 javascript 260 c++ 247 shell 68 go 41 postscript 25 xml 24