Exploitdb Exploits
2,814 exploits tracked across all sources.
Xchat < 2.6.7 - Denial of Service
Unspecified vulnerability in Xchat 2.6.7 and earlier allows remote attackers to cause a denial of service (crash) via unspecified vectors involving the PRIVMSG command. NOTE: the vendor has disputed this vulnerability, stating that it does not affect 2.6.7 "or any recent version"
by Elo
TWiki <4.0.4 - Code Injection
Eval injection vulnerability in the configure script in TWiki 4.0.0 through 4.0.4 allows remote attackers to execute arbitrary Perl code via an HTTP POST request containing a parameter name starting with "TYPEOF".
by Javier Olascoaga
Apple Mac OS X - Buffer Overflow
Stack-based buffer overflow in the Core Foundation Library in Mac OS X 10.3.5 and 10.3.6, and possibly earlier versions, allows local users to execute arbitrary code via a long CF_CHARSET_PATH environment variable.
by Kevin Finisterre
Apple Mac OSX 10.4.7 (x86) - 'fetchmail' Local Privilege Escalation
by Kevin Finisterre
Apple Mac OSX 10.4.7 (PPC) - 'fetchmail' Local Privilege Escalation
by Kevin Finisterre
Barracuda Networks Barracuda Spam Firewall - Path Traversal
Directory traversal vulnerability in cgi-bin/preview_email.cgi in Barracuda Spam Firewall (BSF) 3.3.01.001 through 3.3.03.053 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the file parameter.
by Greg Sinclair
Microsoft Windows XP/2000/2003 - Graphical Device Interface Plus Library Denial of Service
by Mr. Niega
Eiqnetworks Enterprise Security Analyzer < 2.4.0 - Memory Corruption
Multiple stack-based buffer overflows in eIQnetworks Enterprise Security Analyzer (ESA) before 2.5.0, as used in products including (a) Sidewinder, (b) iPolicy Security Manager, (c) Astaro Report Manager, (d) Fortinet FortiReporter, (e) Top Layer Network Security Analyzer, and possibly other products, allow remote attackers to execute arbitrary code via long (1) DELTAINTERVAL, (2) LOGFOLDER, (3) DELETELOGS, (4) FWASERVER, (5) SYSLOGPUBLICIP, (6) GETFWAIMPORTLOG, (7) GETFWADELTA, (8) DELETERDEPDEVICE, (9) COMPRESSRAWLOGFILE, (10) GETSYSLOGFIREWALLS, (11) ADDPOLICY, and (12) EDITPOLICY commands to the Syslog daemon (syslogserver.exe); (13) GUIADDDEVICE, (14) ADDDEVICE, and (15) DELETEDEVICE commands to the Topology server (Topology.exe); the (15) LICMGR_ADDLICENSE command to the License Manager (EnterpriseSecurityAnalyzer.exe); the (16) TRACE and (17) QUERYMONITOR commands to the Monitoring agent (Monitoring.exe); and possibly other vectors related to the Syslog daemon (syslogserver.exe).
by Kevin Finisterre
eIQnetworks ESA - Syslog Server Remote Buffer Overflow
by Kevin Finisterre
AIM Triton 1.0.4 - 'SipXtapi' Remote Buffer Overflow
by c0rrupt
SIPfoundry sipXtapi - 'CSeq' Remote Buffer Overflow
by Jacopo Cervini
FileCOPA FTP Server 1.01 - 'LIST' Remote Buffer Overflow (1)
by Jacopo Cervini
Microsoft Internet Explorer <6.0 SP2 - DoS
wininet.dll in Microsoft Internet Explorer 6.0 SP2 and earlier allows remote attackers to cause a denial of service (unhandled exception and crash) via a long Content-Type header, which triggers a stack overflow.
by Firestorm
Cisco Security Monitoring, Analysis and Response System <4.2.1 - Co...
Multiple unspecified vulnerabilities in the Command Line Interface (CLI) for Cisco Security Monitoring, Analysis and Response System (CS-MARS) before 4.2.1, allow local CS-MARS administrators to execute arbitrary commands as root.
by Jon Hart
Cisco Security Monitoring Analysis An... - Access Control
jmx-console/HtmlAdaptor in the jmx-console in the JBoss web application server, as shipped with Cisco Security Monitoring, Analysis and Response System (CS-MARS) before 4.2.1, allows remote attackers to gain privileges as the CS-MARS administrator and execute arbitrary Java code via an invokeOp action in the BSHDeployer jboss.scripts service name.
by Jon Hart
Invision Power Services Invision Power Board - SQL Injection
SQL injection vulnerability in classes/class_session.php in Invision Power Board (IPB) 2.1 up to 2.1.6 allows remote attackers to execute arbitrary SQL commands via the CLIENT_IP parameter.
by w4g.not null
Eskolar Cms - SQL Injection
Multiple SQL injection vulnerabilities in Eskolar CMS 0.9.0.0 allow remote attackers to execute arbitrary SQL commands via the (1) gr_1_id, (2) gr_2_id, (3) gr_3_id, and (4) doc_id parameters in (a) index.php; the (5) uid and (6) pwd parameters in (b) php/esa.php; and possibly other vectors related to files in php/lib/ including (c) del.php, (d) download_backup.php, (e) navig.php, (f) restore.php, (g) set_12.php, (h) set_14.php, and (i) upd_doc.php.
by Jacek Wlodarczyk
Rabox Winlpd < 1.26 - Buffer Overflow
Stack-based buffer overflow in Winlpd 1.26 allows remote attackers to execute arbitrary code via a long string in a request to TCP port 515.
by Pablo Isola
Webmin <1.290 - Info Disclosure
Webmin before 1.290 and Usermin before 1.220 calls the simplify_path function before decoding HTML, which allows remote attackers to read arbitrary files, as demonstrated using "..%01" sequences, which bypass the removal of "../" sequences before bytes such as "%01" are removed from the filename. NOTE: This is a different issue than CVE-2006-3274.
by UmZ
Invision Power Services Invision Power Board - SQL Injection
SQL injection vulnerability in classes/class_session.php in Invision Power Board (IPB) 2.1 up to 2.1.6 allows remote attackers to execute arbitrary SQL commands via the CLIENT_IP parameter.
by RusH
EJ3 TOPo 2.2 - 'descripcion' Remote Command Execution
by Hessam-x
SIPfoundry sipXtapi <20060324 - RCE
Buffer overflow in SIPfoundry sipXtapi released before 20060324 allows remote attackers to execute arbitrary code via a long CSeq field value in an INVITE message.
by Michael Thumann
Microsoft Word 2000/2003 - Hlink Local Buffer Overflow
by SYS 49152
Ottoman CMS 1.1.3 - '?default_path=' Remote File Inclusion (2)
by Jacek Wlodarczyk
Microsoft Excel 2003 (Italian) - Hlink Local Buffer Overflow
by oveRet
By Source