Exploitdb Exploits

2,809 exploits tracked across all sources.

Sort: Activity Stars
CVE-2008-2454 EXPLOITDB perl VERIFIED
Joomla com_xsstream-dm 0.01 Beta - SQL Injection via Movie Parameter
SQL injection vulnerability in the xsstream-dm (com_xsstream-dm) component 0.01 Beta for Joomla! allows remote attackers to execute arbitrary SQL commands via the movie parameter to index.php.
by Houssamix
CVE-2008-1802 EXPLOITDB perl VERIFIED
rdesktop 1.5.0 - Remote Code Execution via RDP Redirect Request Length Fields
Buffer overflow in the process_redirect_pdu (rdp.c) function in rdesktop 1.5.0 allows remote attackers to execute arbitrary code via a Remote Desktop Protocol (RDP) redirect request with modified length fields.
by Guido Landi
CVE-2008-2411 EXPLOITDB perl VERIFIED
SazCart < 1.5 - SQL Injection via prodid Parameter
SQL injection vulnerability in index.php in SazCart 1.5.1 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the prodid parameter in a details action.
by JosS
CVE-2008-2161 EXPLOITDB perl VERIFIED
TFTP Server SP 1.4 and 1.5 - Remote Code Execution via Long TFTP Error Packet
Buffer overflow in TFTP Server SP 1.4 and 1.5 on Windows, and possibly other versions, allows remote attackers to execute arbitrary code via a long TFTP error packet. NOTE: some of these details are obtained from third party information.
by tixxDZ
CVE-2005-1666 EXPLOITDB perl VERIFIED
orenosv_http_ftp_server < 0.8.1 - Authenticated Buffer Overflow via Long FTP Command Arguments
Multiple buffer overflows in Orenosv HTTP/FTP Server 0.8.1 allow remote authenticated users to cause a denial of service (server crash) and possibly execute arbitrary code via long arguments to FTP commands such as MKD, RMD, or DELE, which are processed by the (1) ftp_xlate_path, (2) ftp_is_canonical, or (3) os_fn_nativize functions, or (4) a long SSI command that is processed by the parse_cmd function in cgissi.exe.
by Samsta
CVE-2008-2223 EXPLOITDB perl VERIFIED
vShare YouTube Clone 2.6 - SQL Injection via tid Parameter
SQL injection vulnerability in group_posts.php in vShare YouTube Clone 2.6 allows remote attackers to execute arbitrary SQL commands via the tid parameter.
by Saime
CVE-2008-1801 EXPLOITDB perl VERIFIED
rdesktop 1.5.0 - Integer Underflow in iso_recv_msg Function
Integer underflow in the iso_recv_msg function (iso.c) in rdesktop 1.5.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a Remote Desktop Protocol (RDP) request with a small length field.
by Guido Landi
CVE-2008-6652 EXPLOITDB perl VERIFIED
OneCMS 2.5 - SQL Injection via sitename Parameter
SQL injection vulnerability in asd.php in OneCMS 2.5 allows remote attackers to execute arbitrary SQL commands via the sitename parameter.
by Cod3rZ
CVE-2008-2130 EXPLOITDB perl VERIFIED
iGaming CMS 1.5 - SQL Injection via poll_vote.php id Parameter
SQL injection vulnerability in poll_vote.php in iGaming CMS 1.5 allows remote attackers to execute arbitrary SQL commands via the id parameter.
by Cod3rZ
CVE-2005-4195 EXPLOITDB perl VERIFIED
Scout Portal Toolkit <= 1.3.1 - SQL Injection via Multiple Parameters
Multiple SQL injection vulnerabilities in Scout Portal Toolkit (SPT) 1.3.1 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the ParentId parameter in SPT--BrowseResources.php, (2) ResourceId parameter in SPT--FullRecord.php, (3) ResourceOffset parameter in SPT--Home.php, and (4) F_UserName and (5) F_Password in SPT--UserLogin.php. NOTE: it was later reported that vector 1 is also present in 1.4.0.
by JosS
CVE-2008-6617 EXPLOITDB perl VERIFIED
SiteXS CMS 0.1.1 - Unauthenticated Arbitrary File Upload via adm/visual/upload.php
Unrestricted file upload vulnerability in adm/visual/upload.php in SiteXS CMS 0.1.1 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in images/.
by Hadi Kiamarsi
EIP-2026-109029 EXPLOITDB perl VERIFIED
KnowledgeQuest 2.6 - Administration Multiple Authentication Bypass Vulnerabilities
by Cod3rZ
CVE-2008-6653 EXPLOITDB perl VERIFIED
com_webhosting < 1.1 - SQL Injection via catid Parameter
SQL injection vulnerability in webhosting.php in the Webhosting Component (com_webhosting) module before 1.1 RC7 for Joomla! and Mambo allows remote attackers to execute arbitrary SQL commands via the catid parameter to index.php.
by cO2
EIP-2026-110020 EXPLOITDB perl VERIFIED
ODFaq 2.1.0 - Blind SQL Injection
by cO2
EIP-2026-108823 EXPLOITDB perl VERIFIED
Joomla! Component paxxgallery 0.2 - 'gid' Blind SQL Injection
by ZAMUT
CVE-2008-1559 EXPLOITDB perl VERIFIED
Joomla! com_alphacontent 2.5.8 - SQL Injection
SQL injection vulnerability in the Bernard Gilly AlphaContent (com_alphacontent) 2.5.8 component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a view action to index.php.
by cO2
CVE-2008-1608 EXPLOITDB perl VERIFIED
Clever Copy 3.0 - SQL Injection via ID Parameter
SQL injection vulnerability in postview.php in Clever Copy 3.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter, a different vector than CVE-2008-0363 and CVE-2006-0583.
by U238
EIP-2026-114552 EXPLOITDB perl VERIFIED
YouTube Clone Script - 'spages.php' Remote Code Execution
by Inphex
CVE-2008-1954 EXPLOITDB perl VERIFIED
Web Calendar Pro <4.1 - SQL Injection
SQL injection vulnerability in one_day.php in Web Calendar Pro 4.1 and earlier allows remote attackers to execute arbitrary SQL commands via the user_id parameter.
by t0pP8uZz
EIP-2026-114475 EXPLOITDB perl VERIFIED
XOOPS Module Recipe 2.2 - 'detail.php' SQL Injection
by S@BUN
CVE-2008-6523 EXPLOITDB perl VERIFIED
openInvoice 0.90 beta and earlier - Unauthenticated Authentication Bypass via oiauth Cookie
auth.php in openInvoice 0.90 beta and earlier allows remote attackers to bypass authentication and gain privileges by setting the oiauth cookie. NOTE: this can be leveraged with a separate vulnerability in resetpass.php to modify passwords for arbitrary users.
by t0pP8uZz
CVE-2008-6524 EXPLOITDB perl VERIFIED
openInvoice < 0.90 - Authenticated Arbitrary Password Reset via UID Parameter
resetpass.php in openInvoice 0.90 beta and earlier allows remote authenticated users to change the passwords of arbitrary users via a modified uid parameter. NOTE: this can be leveraged with a separate vulnerability in auth.php to modify passwords without authentication.
by t0pP8uZz
CVE-2008-1912 EXPLOITDB perl VERIFIED
DivX Player <6.7.0.22 - Buffer Overflow
Stack-based buffer overflow in DivX Player 6.7 build 6.7.0.22 and earlier allows user-assisted remote attackers to cause a denial of service (application crash) or execute arbitrary code via a long subtitle in a .SRT file.
by securfrog
CVE-2007-6584 EXPLOITDB perl VERIFIED
1024 CMS 1.3.1 - Path Traversal via Lang or Theme Parameters
Multiple directory traversal vulnerabilities in 1024 CMS 1.3.1 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in (1) the lang parameter to pages/print/default/ops/news.php or (2) the theme_dir parameter to pages/download/default/ops/search.php; or the admin_theme_dir parameter to (3) download.php, (4) forum.php, or (5) news.php in admin/ops/reports/ops/. NOTE: it was later reported that 1.4.2 beta and earlier are also affected for vector 1.
by girex
CVE-2008-1911 EXPLOITDB perl VERIFIED
1024 CMS 1.4.2 beta and earlier - SQL Injection via cookpass Cookie
SQL injection vulnerability in includes/system.php in 1024 CMS 1.4.2 beta and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via a cookpass cookie.
by girex
By Source
All 2,809 Writeup 62,204 Exploitdb 50,076 Nomisec 22,391 Github 3,608 Metasploit 3,311 Vulncheck_xdb 927 Inthewild 514 Gitlab 479 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,563 ruby 6,002 c 3,626 perl 2,849 html 2,075 php 1,333 bash 462 java 370 c++ 260 javascript 229 shell 131 go 73 postscript 25 typescript 25