Exploitdb Exploits

2,814 exploits tracked across all sources.

Sort: Activity Stars
CVE-2008-0502 EXPLOITDB perl VERIFIED
Connectix Boards < 0.8.2 - Code Injection
PHP remote file inclusion vulnerability in templates/Official/part_userprofile.php in Connectix Boards 0.8.2 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the template_path parameter.
by Houssamix
EIP-2026-114498 EXPLOITDB perl VERIFIED
YaBB SE 1.5.5 - Remote Command Execution
by RST/GHC
CVE-2008-0478 EXPLOITDB perl VERIFIED
Setcms - Path Traversal
Directory traversal vulnerability in index.php in SetCMS 3.6.5 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the set parameter, as demonstrated by sending a certain CLIENT_IP HTTP header in an enter action to index.php, and injecting PHP sequences into files/enter.set, which is then included by index.php.
by RST/GHC
CVE-2008-0421 EXPLOITDB perl VERIFIED
Invision Power Services Invision Gallery < 2.0.7 - SQL Injection
SQL injection vulnerability in Invision Gallery 2.0.7 and earlier allows remote attackers to execute arbitrary SQL commands via the album parameter in a rate command.
by RST/GHC
CVE-2008-0357 EXPLOITDB perl VERIFIED
Galaxyscripts Mini File Host < 1.2.1 - Path Traversal
Directory traversal vulnerability in pages/upload.php in Galaxyscripts Mini File Host 1.2.1 and earlier allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the language parameter.
by shinmai
CVE-2008-0390 EXPLOITDB perl VERIFIED
Auracms - Code Injection
stat.php in AuraCMS 1.62, and Mod Block Statistik for AuraCMS, allows remote attackers to inject arbitrary PHP code into online.db.txt via the X-Forwarded-For HTTP header in a stat action to index.php, and execute online.db.txt via a certain request to index.php.
by k1tk4t
CVE-2008-0361 EXPLOITDB perl VERIFIED
Instituto Politicnico Nacional Gradman < 0.1.3 - Path Traversal
Directory traversal vulnerability in agregar_info.php in GradMan 0.1.3 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the tabla parameter.
by JosS
CVE-2008-7216 EXPLOITDB perl VERIFIED
Peter's Math Anti-Spam Spinoff - Info Disclosure
Peter's Math Anti-Spam Spinoff plugin for WordPress generates audio CAPTCHA clips by concatenating static audio files without any additional distortion, which allows remote attackers to bypass CAPTCHA protection by reading certain bytes from the generated clip.
by Romero
CVE-2008-0279 EXPLOITDB perl VERIFIED
Xforum - SQL Injection
SQL injection vulnerability in liretopic.php in Xforum 1.4 and possibly others allows remote attackers to execute arbitrary SQL commands via the topic parameter. NOTE: the categorie parameter might also be affected.
by j0j0
CVE-2008-7161 EXPLOITDB perl VERIFIED
Fortinet FortiGate-1000 <3.00 - Auth Bypass
Fortinet FortiGuard Fortinet FortiGate-1000 3.00 build 040075,070111 allows remote attackers to bypass URL filtering via fragmented GET or POST requests that use HTTP/1.0 without the Host header. NOTE: this issue might be related to CVE-2005-3058.
by Danux
CVE-2008-0291 EXPLOITDB perl VERIFIED
Hangzhou Rui-qiang Richstrong Cms - SQL Injection
SQL injection vulnerability in showproduct.asp in RichStrong CMS allows remote attackers to execute arbitrary SQL commands via the cat parameter.
by JosS
CVE-2008-0262 EXPLOITDB perl VERIFIED
Agares Media Phpautovideo - SQL Injection
SQL injection vulnerability in includes/articleblock.php in Agares PhpAutoVideo 2.21 allows remote attackers to execute arbitrary SQL commands via the articlecat parameter.
by Pr0metheuS
CVE-2008-0297 EXPLOITDB perl VERIFIED
Keil Software Photokorn - Information Disclosure
PhotoKorn allows remote attackers to obtain database credentials via a direct request to update/update3.php, which includes the credentials in its output.
by Pr0metheuS
CVE-2008-0255 EXPLOITDB perl VERIFIED
Igamingcms Igaming Cms < 1.3.1 - SQL Injection
SQL injection vulnerability in archive.php in iGaming 1.5, and 1.3.1 and earlier, allows remote attackers to execute arbitrary SQL commands via the section parameter.
by Eugene Minaev
EIP-2026-104800 EXPLOITDB perl VERIFIED
0DayDB 2.3 - 'id' Remote Authentication Bypass
by Pr0metheuS
CVE-2008-0127 EXPLOITDB perl VERIFIED
Mcafee E-business Server < 8.5.2 - Memory Corruption
The administration interface in McAfee E-Business Server 8.5.2 and earlier allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a long initial authentication packet.
by Leon Juranic
CVE-2008-0147 EXPLOITDB perl VERIFIED
Smallnuke - SQL Injection
SQL injection vulnerability in index.php in SmallNuke 2.0.4 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via (1) the user_email parameter and possibly (2) username parameter in a Members action.
by Eugene Minaev
CVE-2008-0219 EXPLOITDB perl VERIFIED
Php Webquest - SQL Injection
SQL injection vulnerability in soporte_horizontal_w.php in PHP Webquest 2.6 allows remote attackers to execute arbitrary SQL commands via the id_actividad parameter, a different vector than CVE-2007-4920.
by ka0x
CVE-2008-0157 EXPLOITDB perl VERIFIED
Flexbb < 0.6.3 - SQL Injection
SQL injection vulnerability in FlexBB 0.6.3 and earlier allows remote attackers to execute arbitrary SQL commands via the flexbb_temp_id parameter in a cookie.
by Eugene Minaev
CVE-2008-0159 EXPLOITDB perl VERIFIED
Eggblog < 3.1.0 - SQL Injection
SQL injection vulnerability in index.php in eggBlog 3.1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the eggblogpassword parameter in a cookie.
by Eugene Minaev
CVE-2008-0224 EXPLOITDB perl VERIFIED
Runcms - SQL Injection
SQL injection vulnerability in index.php in the Newbb_plus 0.92 and earlier module in RunCMS 1.6.1 allows remote attackers to execute arbitrary SQL commands via the Client-Ip parameter.
by Eugene Minaev
CVE-2006-6288 EXPLOITDB perl VERIFIED
Niek Albers CoolPlayer <216 - Buffer Overflow
Multiple buffer overflows in Niek Albers CoolPlayer 216 and earlier allow remote attackers to execute arbitrary code via (1) a playlist file with long song names, because of an overflow in the CPL_AddPrefixedFile function in CPI_Playlist.c; (2) a skin file with long button names, because of an overflow in the main_skin_check_ini_value function in skin.c; and (3) a skin file with long bitmap filenames, because of an overflow in the main_skin_open function in skin.c.
by Trancek
CVE-2008-7155 EXPLOITDB perl VERIFIED
NetRisk 1.9.7 - Info Disclosure
NetRisk 1.9.7 does not properly restrict access to admin/change_submit.php, which allows remote attackers to change the password of arbitrary users via a direct request.
by Cod3rZ
CVE-2008-7188 EXPLOITDB perl VERIFIED
ClipShare 2.6 - Info Disclosure
ClipShare 2.6 does not properly restrict access to certain functionality, which allows remote attackers to change the profile of arbitrary users via a modified uid variable to siteadmin/useredit.php. NOTE: this can be used to recover the password of the user by using the modified e-mail address in the email parameter to recoverpass.php.
by Pr0metheuS
CVE-2007-6666 EXPLOITDB perl VERIFIED
Zenphoto <1.1.3 - SQL Injection
SQL injection vulnerability in rss.php in Zenphoto 1.1 through 1.1.3 allows remote attackers to execute arbitrary SQL commands via the albumnr parameter.
by Silentz
By Source
All 2,814 Exploitdb 50,121 Writeup 46,758 Nomisec 21,200 Metasploit 3,189 Github 2,253 Vulncheck_xdb 900 Inthewild 518 Gitlab 439 Gitee 415 Patchapalooza 312
By Language
text 31,341 ruby 5,920 python 5,740 c 3,550 perl 2,854 html 2,054 php 1,334 bash 459 java 360 javascript 260 c++ 247 shell 69 go 41 postscript 25 xml 24