Perl Exploits

2,849 exploits tracked across all sources.

Sort: Activity Stars
CVE-2007-5630 EXPLOITDB perl VERIFIED
BBPortalS 1.5.10-2.0 - SQL Injection via tnews.php id Parameter
SQL injection vulnerability in tnews.php in BBsProcesS BBPortalS 1.5.10 through 2.0 allows remote attackers to execute arbitrary SQL commands via the id parameter in a tnews action.
by Max007
CVE-2007-5461 EXPLOITDB perl VERIFIED
Apache Tomcat 4.0.0-4.0.6, 4.1.0, 5.0.0, 5.5.0-5.5.25, 6.0.0-6.0.14 Path Traversal via WebDAV
Absolute path traversal vulnerability in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0, 5.0.0, 5.5.0 through 5.5.25, and 6.0.0 through 6.0.14, under certain configurations, allows remote authenticated users to read arbitrary files via a WebDAV write request that specifies an entity with a SYSTEM tag.
by h3rcul3s
CVE-2007-5646 EXPLOITDB perl VERIFIED
Simple Machines Forum 1.1.3 - SQL Injection via Userspec Parameter
SQL injection vulnerability in Sources/Search.php in Simple Machines Forum (SMF) 1.1.3, when MySQL 5 is used, allows remote attackers to execute arbitrary SQL commands via the userspec parameter in a search2 action to index.php.
by Michael Brooks
CVE-2007-5637 EXPLOITDB perl VERIFIED
Nortel Business Communications Manager - Unauthenticated Eavesdropping via Open Audio Stream
The Nortel UNIStim IP Softphone 2050, IP Phone 1140E, and additional Nortel products from the IP Phone, Business Communications Manager (BCM), and other product lines allow remote attackers to eavesdrop on the physical environment via an Open Audio Stream message that enables "surveillance mode." NOTE: issues relating to a small ID number space can be leveraged to make this attack easier.
by Daniel Stirnimann
CVE-2007-4980 EXPLOITDB perl VERIFIED
GCALDaemon 1.0-beta13 - Denial of Service via Large Content-Length Header
The readRequest method in org/gcaldaemon/core/http/HTTPListener.java in GCALDaemon 1.0-beta13 allows remote attackers to cause a denial of service via a large integer value in the Content-Length HTTP header, which triggers a fatal Java OutOfMemoryError.
by ikki
CVE-2007-5488 EXPLOITDB perl VERIFIED
Asterisk-Addons < 1.2.7 - SQL Injection via Source/Destination Numbers or SIP URI
Multiple SQL injection vulnerabilities in cdr_addon_mysql in Asterisk-Addons before 1.2.8, and 1.4.x before 1.4.4, allow remote attackers to execute arbitrary SQL commands via the (1) source and (2) destination numbers, and probably (3) SIP URI, when inserting a record.
by Humberto J. Abdelnur
CVE-2007-5466 EXPLOITDB perl VERIFIED
eXtremail <= 2.1.1 - Remote Code Execution via IMAP Buffer Overflow
Multiple buffer overflows in eXtremail 2.1.1 and earlier allow remote attackers to (1) have an unknown impact by sending multiple long strings to the IMAP port (143/tcp); (2) execute arbitrary code via a long string in an IMAP AUTHENTICATE PLAIN action, involving the ifParseAuthPlain function; (3) execute arbitrary code via a long LOGIN command to the admin interface port (4501/tcp); or (4) execute arbitrary code via a long string in an IMAP AUTHENTICATE LOGIN (aka CRAM-MD5 authentication) action, involving the ifProcImapAuth1 function.
by mu-b
CVE-2007-5467 EXPLOITDB perl VERIFIED
eXtremail < 2.1.1 - Remote Code Execution via POP3 USER Command Integer Overflow
Integer overflow in eXtremail 2.1.1 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long USER command containing "%s" sequences to the pop3 port (110/tcp), which are expanded to "%%s" before being used in the memmove function, possibly due to an incomplete fix for CVE-2001-1078.
by mu-b
CVE-2007-5467 EXPLOITDB perl VERIFIED
eXtremail < 2.1.1 - Remote Code Execution via POP3 USER Command Integer Overflow
Integer overflow in eXtremail 2.1.1 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long USER command containing "%s" sequences to the pop3 port (110/tcp), which are expanded to "%%s" before being used in the memmove function, possibly due to an incomplete fix for CVE-2001-1078.
by mu-b
CVE-2007-5461 EXPLOITDB perl VERIFIED
Apache Tomcat 4.0.0-4.0.6, 4.1.0, 5.0.0, 5.5.0-5.5.25, 6.0.0-6.0.14 Path Traversal via WebDAV
Absolute path traversal vulnerability in Apache Tomcat 4.0.0 through 4.0.6, 4.1.0, 5.0.0, 5.5.0 through 5.5.25, and 6.0.0 through 6.0.14, under certain configurations, allows remote authenticated users to read arbitrary files via a WebDAV write request that specifies an entity with a SYSTEM tag.
by eliteboy
EIP-2026-112684 EXPLOITDB perl VERIFIED
TikiWiki 1.9.8 - 'tiki-graph_formula.php' Command Execution
by str0ke
CVE-2007-5458 EXPLOITDB perl VERIFIED
KwsPHP Newsletter Module 1.0 - SQL Injection via Newsletter Parameter
SQL injection vulnerability in index.php in the newsletter module 1.0 for KwsPHP, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the newsletter parameter.
by s4mi
CVE-2007-5408 EXPLOITDB perl VERIFIED
cpDynaLinks 1.02 - SQL Injection via Category Parameter
SQL injection vulnerability in category.php in cpDynaLinks 1.02 allows remote attackers to execute arbitrary SQL commands via the category parameter.
by ka0x
CVE-2007-5300 EXPLOITDB perl VERIFIED
wzdftpd 0.8.0 0.8.2 - Denial of Service via Long USER Command
Off-by-one error in the do_login_loop function in libwzd-core/wzd_login.c in wzdftpd 0.8.0, 0.8.2, and possibly other versions allows remote attackers to cause a denial of service (daemon crash) via a long USER command that triggers a stack-based buffer overflow. NOTE: some of these details are obtained from third party information.
by k1tk4t
CVE-2007-5256 EXPLOITDB perl VERIFIED
FSD 2.052 d9 and earlier - Remote Code Execution via Long HELP Command
Multiple stack-based buffer overflows in FSD 2.052 d9 and earlier, and FSFDT FSD 3.000 d9 and earlier, allow (1) remote attackers to execute arbitrary code via a long HELP command on TCP port 3010 to the sysuser::exechelp function in sysuser.cc and (2) remote authenticated users to execute arbitrary code via long commands on TCP port 6809 to the servinterface::sendmulticast function in servinterface.cc, as demonstrated by a PIcallsign command.
by weak
CVE-2007-5261 EXPLOITDB perl VERIFIED
MultiCart 1.0 - SQL Injection via catid or ddlCategory Parameter
Multiple SQL injection vulnerabilities in MultiCart 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) catid parameter to categorydetail.php and the (2) ddlCategory parameter to search.php.
by k1tk4t
CVE-2007-5256 EXPLOITDB perl VERIFIED
FSD 2.052 d9 and earlier - Remote Code Execution via Long HELP Command
Multiple stack-based buffer overflows in FSD 2.052 d9 and earlier, and FSFDT FSD 3.000 d9 and earlier, allow (1) remote attackers to execute arbitrary code via a long HELP command on TCP port 3010 to the sysuser::exechelp function in sysuser.cc and (2) remote authenticated users to execute arbitrary code via long commands on TCP port 6809 to the servinterface::sendmulticast function in servinterface.cc, as demonstrated by a PIcallsign command.
by Luigi Auriemma
CVE-2007-5222 EXPLOITDB perl VERIFIED
MAXdev MDPro 1.0.76 - SQL Injection via Referer Header
SQL injection vulnerability in index.php in MAXdev MDPro (MD-Pro) 1.0.76 allows remote attackers to execute arbitrary SQL commands via a "Firefox ID=" substring in a Referer HTTP header.
by undefined1_
CVE-2007-5222 EXPLOITDB perl VERIFIED
MAXdev MDPro 1.0.76 - SQL Injection via Referer Header
SQL injection vulnerability in index.php in MAXdev MDPro (MD-Pro) 1.0.76 allows remote attackers to execute arbitrary SQL commands via a "Firefox ID=" substring in a Referer HTTP header.
by unidentified1_ is
CVE-2007-5063 EXPLOITDB perl VERIFIED
Adam Scheinberg Flip <= 3.0 - Unauthenticated Sensitive Information Exposure via Direct Request
Adam Scheinberg Flip 3.0 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a file containing login credentials via a direct request for var/users.txt.
by undefined1_
CVE-2007-5062 EXPLOITDB perl VERIFIED
Adam Scheinberg Flip < 3.0 - Unauthenticated Administrative Account Creation via account.php un Parameter
account.php in Adam Scheinberg Flip 3.0 and earlier allows remote attackers to create administrative accounts via the un parameter in a register action.
by undefined1_
CVE-2007-5018 EXPLOITDB perl VERIFIED
Mercury/32 4.52 - Authenticated Stack-Based Buffer Overflow via IMAP SEARCH ON Command
Stack-based buffer overflow in IMAPD in Mercury/32 4.52 allows remote authenticated users to execute arbitrary code via a long argument in a SEARCH ON command. NOTE: this issue might overlap with CVE-2004-1211.
by void
CVE-2007-5016 EXPLOITDB perl VERIFIED
OneCMS 2.4 - SQL Injection via userreviews.php abc Parameter
SQL injection vulnerability in userreviews.php in OneCMS 2.4 allows remote attackers to execute arbitrary SQL commands via the abc parameter.
by str0ke
CVE-2007-4984 EXPLOITDB perl VERIFIED
Ktauber StylesDemo - SQL Injection via s Parameter
SQL injection vulnerability in index.php in the Ktauber.com StylesDemo mod for phpBB 2.0.xx allows remote attackers to execute arbitrary SQL commands via the s parameter.
by nexen
CVE-2007-5036 EXPLOITDB perl VERIFIED
AirDefense Airsensor M520 4.3.1.1 and 4.4.1.4 - Authenticated Denial of Service via Crafted HTTPS Query String
Multiple buffer overflows in the AirDefense Airsensor M520 with firmware 4.3.1.1 and 4.4.1.4 allow remote authenticated users to cause a denial of service (HTTPS service outage) via a crafted query string in an HTTPS request to (1) adLog.cgi, (2) post.cgi, or (3) ad.cgi, related to the "files filter."
by Alex Hernandez
By Source
All 2,849 Writeup 62,260 Exploitdb 50,076 Nomisec 22,408 Github 3,623 Metasploit 3,312 Vulncheck_xdb 927 Inthewild 514 Gitlab 479 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,570 ruby 6,003 c 3,626 perl 2,849 html 2,075 php 1,333 bash 462 java 371 c++ 261 javascript 229 shell 131 go 73 postscript 25 typescript 25