Exploitdb Exploits
2,814 exploits tracked across all sources.
Themepunch Showbiz Pro < 1.7.1 - Unrestricted File Upload
The Showbiz Pro plugin through 1.7.1 for WordPress has PHP code execution by uploading a .php file within a ZIP archive.
by Simo Ben Youssef
CVSS 9.8
Mini-stream RM-MP3 Converter <3.1.2.1.2010.03.30 - Buffer Overflow
Buffer overflow in Mini-stream RM-MP3 Converter 3.1.2.1.2010.03.30 allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a long string in a WAX file.
by ZoRLu Bugrahan
Incredible PBX 11 2.0.6.5.0 - Command Injection
reminders/index.php in Incredible PBX 11 2.0.6.5.0 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the (1) APPTMIN, (2) APPTHR, (3) APPTDA, (4) APPTMO, (5) APPTYR, or (6) APPTPHONE parameters.
by Simo Ben Youssef
Mini-stream Asx TO Mp3 Converter - Memory Corruption
Stack-based buffer overflow in Mini-stream ASX to MP3 Converter 3.0.0.7 allows remote attackers to execute arbitrary code via a long URI in a playlist (.m3u) file.
by Amir Tavakolian
Nucom ADSL ADSLR5000UN - ISP Credentials Disclosure
by Sebastián Magof
ZYXEL Prestig P-660HNU-T1 - ISP Credentials Disclosure
by Sebastián Magof
Aztech ADSL - Privilege Escalation
Aztech ADSL DSL5018EN (1T1R), DSL705E, and DSL705EU devices improperly manage sessions, which allows remote attackers to bypass authentication in opportunistic circumstances and execute arbitrary commands with administrator privileges by leveraging an existing web portal login.
by Eric Fajardo
CVSS 9.8
Aztech ADSL DSL5018EN-DSL705EU - DoS
cgi-bin/AZ_Retrain.cgi in Aztech ADSL DSL5018EN (1T1R), DSL705E, and DSL705EU devices does not check for authentication, which allows remote attackers to cause a denial of service (WAN connectivity reset) via a direct request.
by Federick Joe P Fajardo
CVSS 7.5
vBulletin 4.0.x < 4.1.2 - 'search.php?cat' SQL Injection
by D35m0nd142
Granding Grand Ma300 Firmware - Insufficiently Protected Credentials
Grand MA 300 allows a brute-force attack on the PIN.
by Eric Sesterhenn
CVSS 9.8
Granding Grand Ma300 Firmware - Cleartext Transmission
Grand MA 300 allows retrieval of the access PIN from sniffed data.
by Eric Sesterhenn
CVSS 7.5
Ubisoft Rayman Legends <1.3.140380 - Buffer Overflow
Stack-based buffer overflow in Ubisoft Rayman Legends before 1.3.140380 allows remote attackers to execute arbitrary code via a long string in the "second connection" to TCP port 1001.
by LiquidWorm
Alienvault Open Source Security Infor... - Code Injection
The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allows remote attackers to execute arbitrary commands via a crafted (1) get_license, (2) get_log_line, or (3) update_system/upgrade_pro_web request, a different vulnerability than CVE-2014-3804.
by Alfredo Ramirez
CyberLink Power2Go Essential 9.0.1002.0 - Registry Buffer Overflow (SEH Unicode)
by Mike Czumak
Nullsoft Winamp < 5.666 - Memory Corruption
Winamp 5.666 and earlier allows remote attackers to cause a denial of service (memory corruption and crash) via a malformed .FLV file, related to f263.w5s.
by Aryan Bayaninejad
TFTPD32 4.5 / TFTPD64 4.5 - Denial of Service (PoC)
by Martinez FrostCard
Symantec Endpoint Protection Manager - Memory Corruption
Buffer overflow in secars.dll in the management console in Symantec Endpoint Protection Manager (SEPM) 12.1.x before 12.1.3, and Symantec Endpoint Protection Center (SPC) Small Business Edition 12.0.x, allows remote attackers to execute arbitrary code via unspecified vectors.
by st3n
HP 9000 - Path Traversal
The default configuration of the PJL Access value in the File System External Access settings on HP LaserJet MFP printers, Color LaserJet MFP printers, and LaserJet 4100, 4200, 4300, 5100, 8150, and 9000 printers enables PJL commands that use the device's filesystem, which allows remote attackers to read arbitrary files via a command inside a print job, as demonstrated by a directory traversal attack.
by @0x00string
BlazeDVD Pro Player 6.1 - Stack Buffer Overflow Jump ESP
by Deepak Rathore
By Source