Exploitdb Exploits

2,814 exploits tracked across all sources.

Sort: Activity Stars
CVE-2007-6664 EXPLOITDB perl VERIFIED
WebPortal CMS <0.6.0 - SQL Injection
SQL injection vulnerability in index.php in WebPortal CMS 0.6.0 and earlier allows remote attackers to execute arbitrary SQL commands via the m parameter.
by x0kster
EIP-2026-106285 EXPLOITDB perl VERIFIED
CustomCMS 3.1 - 'vars.php' SQL Injection
by Pr0metheuS
CVE-2007-6638 EXPLOITDB perl VERIFIED
March Networks DVR 3204 - Info Disclosure
March Networks DVR 3204 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain usernames, passwords, device names, and IP addresses via a direct request for scripts/logfiles.tar.gz.
by Alex Hernandez
CVE-2007-6566 EXPLOITDB perl VERIFIED
XZero Community Classifieds <4.95.11 - SQL Injection
SQL injection vulnerability in post.php in XZero Community Classifieds 4.95.11 and earlier allows remote attackers to execute arbitrary SQL commands via the subcatid parameter to index.php.
by Kw3[R]Ln
CVE-2007-6567 EXPLOITDB perl VERIFIED
XZero Community Classifieds <4.95.11 - Path Traversal
Directory traversal vulnerability in index.php in XZero Community Classifieds 4.95.11 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the pagename parameter in a page view action.
by Kw3[R]Ln
CVE-2007-6544 EXPLOITDB perl VERIFIED
RunCMS <1.6.1 - SQL Injection
Multiple SQL injection vulnerabilities in RunCMS before 1.6.1 allow remote attackers to execute arbitrary SQL commands via the lid parameter to (1) brokenfile.php, (2) visit.php, or (3) ratefile.php in modules/mydownloads/; or (4) ratelink.php, (5) modlink.php, or (6) brokenlink.php in modules/mylinks/.
by sh2kerr
CVE-2007-6544 EXPLOITDB perl VERIFIED
RunCMS <1.6.1 - SQL Injection
Multiple SQL injection vulnerabilities in RunCMS before 1.6.1 allow remote attackers to execute arbitrary SQL commands via the lid parameter to (1) brokenfile.php, (2) visit.php, or (3) ratefile.php in modules/mydownloads/; or (4) ratelink.php, (5) modlink.php, or (6) brokenlink.php in modules/mylinks/.
by sh2kerr
CVE-2007-6552 EXPLOITDB perl VERIFIED
AuraCMS 2.2 - Path Traversal
Directory traversal vulnerability in index.php in AuraCMS 2.2 allows remote authenticated users to include and execute arbitrary local files via a .. (dot dot) in the act parameter, possibly involving the news pilih component; as demonstrated by including admin/admin_users.php to bypass a protection mechanism against direct request.
by k1tk4t
CVE-2007-6377 EXPLOITDB perl VERIFIED
BadBlue <2.72b - Buffer Overflow
Stack-based buffer overflow in the PassThru functionality in ext.dll in BadBlue 2.72b and earlier allows remote attackers to execute arbitrary code via a long query string.
by Jacopo Cervini
CVE-2007-6578 EXPLOITDB perl VERIFIED
PHP ZLink 0.3 - SQL Injection
SQL injection vulnerability in go.php in PHP ZLink 0.3 allows remote attackers to execute arbitrary SQL commands via the id parameter.
by DNX
CVE-2006-4343 EXPLOITDB perl VERIFIED
Openssl - NULL Pointer Dereference
The get_server_hello function in the SSLv2 client code in OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions allows remote servers to cause a denial of service (client crash) via unknown vectors that trigger a null pointer dereference.
by Noam Rathaus
CVE-2007-4560 EXPLOITDB perl VERIFIED
ClamAV <0.91.2 - RCE
clamav-milter in ClamAV before 0.91.2, when run in black hole mode, allows remote attackers to execute arbitrary commands via shell metacharacters that are used in a certain popen call, involving the "recipient field of sendmail."
by eliteboy
EIP-2026-119563 EXPLOITDB perl VERIFIED
3proxy 0.5.3g (Windows x86) - 'logurl()' Remote Buffer Overflow
by Marcin Kozlowski
EIP-2026-117363 EXPLOITDB perl VERIFIED
jetAudio 7.0.5 COWON Media Center MP4 - Local Stack Overflow
by SYS 49152
CVE-2007-6466 EXPLOITDB perl VERIFIED
FreeWebshop 2.2.1 - SQL Injection
Multiple SQL injection vulnerabilities in index.php in FreeWebshop 2.2.1 allow remote attackers to execute arbitrary SQL commands via (1) the prod parameter in a details action, (2) the cat parameter in a browse list action, or (3) the group parameter in a categories action. NOTE: it was later reported that MOG - Web Shop (MOG-WebShop), a product based on the same code, is also affected.
by k1tk4t
EIP-2026-107247 EXPLOITDB perl VERIFIED
FreeWebShop 2.2.7 - 'cookie' Admin Password Grabber
by k1tk4t
CVE-2007-6466 EXPLOITDB perl VERIFIED
FreeWebshop 2.2.1 - SQL Injection
Multiple SQL injection vulnerabilities in index.php in FreeWebshop 2.2.1 allow remote attackers to execute arbitrary SQL commands via (1) the prod parameter in a details action, (2) the cat parameter in a browse list action, or (3) the group parameter in a categories action. NOTE: it was later reported that MOG - Web Shop (MOG-WebShop), a product based on the same code, is also affected.
by k1tk4t
CVE-2007-6341 EXPLOITDB perl VERIFIED
Net::DNS <0.60 - DoS
Net/DNS/RR/A.pm in Net::DNS 0.60 build 654, as used in packages such as SpamAssassin and OTRS, allows remote attackers to cause a denial of service (program "croak") via a crafted DNS response.
by beSTORM
EIP-2026-109552 EXPLOITDB perl VERIFIED
MonAlbum 0.87 - Arbitrary File Upload / Password Grabber
by v0l4arrra
CVE-2007-6403 EXPLOITDB perl VERIFIED
Nullsoft Winamp 5.32 - Buffer Overflow
Stack-based buffer overflow in Nullsoft Winamp 5.32 allows user-assisted remote attackers to execute arbitrary code via crafted unicode in a .mp4 file, with crafted tags, contained in a certain .rar archive, a related issue to CVE-2007-2498. NOTE: for exploitation, the victim must select a certain menu option at the time of the attack.
by SYS 49152
CVE-2007-6401 EXPLOITDB perl VERIFIED
Microsoft Windows Media Player (WMP) 6.4 - Buffer Overflow
Stack-based buffer overflow in mplayer2.exe in Microsoft Windows Media Player (WMP) 6.4, when used with the 3ivx 4.5.1 or 5.0.1 codec, allows remote attackers to execute arbitrary code via a certain .mp4 file, possibly a related issue to CVE-2007-6402.
by SYS 49152
CVE-2007-6402 EXPLOITDB perl VERIFIED
Media Player Classic <6.4.9 - Buffer Overflow
Stack-based buffer overflow in mplayerc.exe in Media Player Classic (MPC) 6.4.9, when used with the 3ivx 4.5.1 or 5.0.1 codec, allows remote attackers to execute arbitrary code via a certain .mp4 file, possibly a related issue to CVE-2007-6401.
by SYS 49152
CVE-2007-5583 EXPLOITDB perl VERIFIED
Cisco IP Phone 7940 - Memory Corruption
Cisco IP Phone 7940 with firmware P0S3-08-7-00 allows remote attackers to cause a denial of service ("486 Busy" responses or device reboot) via a sequence of SIP INVITE transactions in which the Request-URI lacks a user name, a different vulnerability than CVE-2007-4459.
by MADYNES
CVE-2007-6124 EXPLOITDB perl VERIFIED
Softbiz Freelancers Script - XSS
Cross-site scripting (XSS) vulnerability in signin.php in Softbiz Freelancers Script 1 allows remote attackers to inject arbitrary web script or HTML via the errmsg parameter.
by Khashayar Fereidani
CVE-2007-6125 EXPLOITDB perl VERIFIED
Softbiz Freelancers Script - SQL Injection
SQL injection vulnerability in search_form.php in Softbiz Freelancers Script 1 allows remote attackers to execute arbitrary SQL commands via the sb_protype parameter.
by Khashayar Fereidani
By Source
All 2,814 Exploitdb 50,121 Writeup 46,758 Nomisec 21,200 Metasploit 3,189 Github 2,253 Vulncheck_xdb 900 Inthewild 518 Gitlab 439 Gitee 415 Patchapalooza 312
By Language
text 31,341 ruby 5,920 python 5,740 c 3,550 perl 2,854 html 2,054 php 1,334 bash 459 java 360 javascript 260 c++ 247 shell 69 go 41 postscript 25 xml 24