Exploitdb Exploits

2,809 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-107122 EXPLOITDB perl
Flat Calendar 1.1 - HTML Injection
by ZoRLu Bugrahan
CVE-2015-9499 EXPLOITDB CRITICAL perl VERIFIED
Showbiz Pro < 1.7.1 - Unauthenticated PHP File Upload via ZIP Archive
The Showbiz Pro plugin through 1.7.1 for WordPress has PHP code execution by uploading a .php file within a ZIP archive.
by Simo Ben Youssef
CVSS 9.8
CVE-2014-9448 EXPLOITDB perl
Mini-stream RM-MP3 Converter <3.1.2.1.2010.03.30 - Buffer Overflow
Buffer overflow in Mini-stream RM-MP3 Converter 3.1.2.1.2010.03.30 allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a long string in a WAX file.
by ZoRLu Bugrahan
CVE-2014-9001 EXPLOITDB perl
Incredible PBX 11 2.0.6.5.0 - Command Injection
reminders/index.php in Incredible PBX 11 2.0.6.5.0 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the (1) APPTMIN, (2) APPTHR, (3) APPTDA, (4) APPTMO, (5) APPTYR, or (6) APPTPHONE parameters.
by Simo Ben Youssef
CVE-2009-1324 EXPLOITDB perl VERIFIED
Mini-stream ASX to MP3 Converter 3.0.0.7 - Stack-based Buffer Overflow via Long URI in Playlist File
Stack-based buffer overflow in Mini-stream ASX to MP3 Converter 3.0.0.7 allows remote attackers to execute arbitrary code via a long URI in a playlist (.m3u) file.
by Amir Tavakolian
EIP-2026-101899 EXPLOITDB perl
Nucom ADSL ADSLR5000UN - ISP Credentials Disclosure
by Sebastián Magof
EIP-2026-102145 EXPLOITDB perl
ZYXEL Prestig P-660HNU-T1 - ISP Credentials Disclosure
by Sebastián Magof
EIP-2026-115236 EXPLOITDB perl
Fast Image Resizer 098 - Local Crash (PoC)
by niko sec
CVE-2014-6436 EXPLOITDB CRITICAL perl VERIFIED
Aztech DSL5018EN DSL705E DSL705EU - Unauthenticated Remote Command Execution via Session Bypass
Aztech ADSL DSL5018EN (1T1R), DSL705E, and DSL705EU devices improperly manage sessions, which allows remote attackers to bypass authentication in opportunistic circumstances and execute arbitrary commands with administrator privileges by leveraging an existing web portal login.
by Eric Fajardo
CVSS 9.8
CVE-2014-6435 EXPLOITDB HIGH perl VERIFIED
Aztech ADSL DSL5018EN-DSL705EU - DoS
cgi-bin/AZ_Retrain.cgi in Aztech ADSL DSL5018EN (1T1R), DSL705E, and DSL705EU devices does not check for authentication, which allows remote attackers to cause a denial of service (WAN connectivity reset) via a direct request.
by Federick Joe P Fajardo
CVSS 7.5
EIP-2026-113004 EXPLOITDB perl
vBulletin 4.0.x < 4.1.2 - 'search.php?cat' SQL Injection
by D35m0nd142
CVE-2014-5381 EXPLOITDB CRITICAL perl VERIFIED
Grand MA 300 Firmware - Insufficiently Protected Credentials via Weak PIN Verification
Grand MA 300 allows a brute-force attack on the PIN.
by Eric Sesterhenn
CVSS 9.8
CVE-2014-5380 EXPLOITDB HIGH perl VERIFIED
Grand MA 300 Firmware - Cleartext Transmission of Sensitive PIN Data
Grand MA 300 allows retrieval of the access PIN from sniffed data.
by Eric Sesterhenn
CVSS 7.5
EIP-2026-102667 EXPLOITDB perl VERIFIED
Make 3.81 - Heap Overflow (PoC)
by HyP
CVE-2014-4334 EXPLOITDB perl
Ubisoft Rayman Legends <1.3.140380 - Buffer Overflow
Stack-based buffer overflow in Ubisoft Rayman Legends before 1.3.140380 allows remote attackers to execute arbitrary code via a long string in the "second connection" to TCP port 1001.
by LiquidWorm
CVE-2014-3805 EXPLOITDB perl VERIFIED
AlienVault OSSIM < 4.7.0 - Remote Code Execution via av-centerd SOAP Service
The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allows remote attackers to execute arbitrary commands via a crafted (1) get_license, (2) get_log_line, or (3) update_system/upgrade_pro_web request, a different vulnerability than CVE-2014-3804.
by Alfredo Ramirez
EIP-2026-117012 EXPLOITDB perl
CyberLink Power2Go Essential 9.0.1002.0 - Registry Buffer Overflow (SEH Unicode)
by Mike Czumak
CVE-2014-3442 EXPLOITDB perl VERIFIED
Winamp < 5.666 - Denial of Service via Malformed FLV File
Winamp 5.666 and earlier allows remote attackers to cause a denial of service (memory corruption and crash) via a malformed .FLV file, related to f263.w5s.
by Aryan Bayaninejad
EIP-2026-104113 EXPLOITDB perl VERIFIED
UPS Web/SNMP-Manager CS121 - Authentication Bypass
by jkmac
EIP-2026-116403 EXPLOITDB perl VERIFIED
TFTPD32 4.5 / TFTPD64 4.5 - Denial of Service (PoC)
by Martinez FrostCard
EIP-2026-116402 EXPLOITDB perl VERIFIED
TFTPD32 / Tftpd64 - Denial of Service
by j0s3h4x0r
CVE-2013-1612 EXPLOITDB perl
Symantec Endpoint Protection Manager - Memory Corruption
Buffer overflow in secars.dll in the management console in Symantec Endpoint Protection Manager (SEPM) 12.1.x before 12.1.3, and Symantec Endpoint Protection Center (SPC) Small Business Edition 12.0.x, allows remote attackers to execute arbitrary code via unspecified vectors.
by st3n
CVE-2010-4107 EXPLOITDB perl
HP 9000 - Path Traversal
The default configuration of the PJL Access value in the File System External Access settings on HP LaserJet MFP printers, Color LaserJet MFP printers, and LaserJet 4100, 4200, 4300, 5100, 8150, and 9000 printers enables PJL commands that use the device's filesystem, which allows remote attackers to read arbitrary files via a command inside a print job, as demonstrated by a directory traversal attack.
by @0x00string
EIP-2026-116902 EXPLOITDB perl VERIFIED
BlazeDVD Pro Player 6.1 - Stack Buffer Overflow Jump ESP
by Deepak Rathore
EIP-2026-115567 EXPLOITDB perl
MA Lighting Technology grandMA onPC 6.808 - Remote Denial of Service
by LiquidWorm
By Source
All 2,809 Writeup 61,941 Exploitdb 50,073 Nomisec 22,294 Github 3,475 Metasploit 3,294 Vulncheck_xdb 926 Inthewild 514 Gitlab 470 Gitee 415 Patchapalooza 312
By Language
text 31,383 python 6,491 ruby 5,984 c 3,619 perl 2,849 html 2,071 php 1,331 bash 462 java 370 c++ 255 javascript 227 shell 126 go 72 postscript 25 typescript 25