Exploitdb Exploits

2,814 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-107523 EXPLOITDB perl VERIFIED
Guestex Guestbook 1.00 - 'email' Remote Code Execution
by K-sPecial
CVE-2006-2926 EXPLOITDB perl VERIFIED
Qbik WinGate 6.1.1.1077 - Buffer Overflow
Stack-based buffer overflow in the WWW Proxy Server of Qbik WinGate 6.1.1.1077 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long URL HTTP request.
by kingcope
CVE-2006-2947 EXPLOITDB perl VERIFIED
Dmx Forum 2.1a - Info Disclosure
Dmx Forum 2.1a allows remote attackers to obtain username and password information via a direct request to pops/edit.php with a modified membre parameter.
by DarkFig
CVE-2006-7012 EXPLOITDB perl VERIFIED
SCart 2.0 - RCE
scart.cgi in SCart 2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the page parameter of a show_text action.
by K-159
CVE-2006-7063 EXPLOITDB perl VERIFIED
Tinyphpforum < 3.6 - Path Traversal
Directory traversal vulnerability in profile.php in TinyPHPforum 3.6 and earlier allows remote attackers to include and execute arbitrary files via ".." sequences in the uname parameter.
by Hessam-x
CVE-2006-2646 EXPLOITDB perl VERIFIED
Alt-n Mdaemon - Buffer Overflow
Buffer overflow in Alt-N MDaemon, possibly 9.0.1 and earlier, allows remote attackers to execute arbitrary code via a long A0001 argument that begins with a '"' (double quote).
by kcope
EIP-2026-103404 EXPLOITDB perl VERIFIED
Apache James Server 2.2 - SMTP Denial of Service
by y3dips
EIP-2026-100436 EXPLOITDB perl VERIFIED
MiniNuke 2.x - SQL Injection (Add Admin)
by nukedx
CVE-2006-3387 EXPLOITDB perl VERIFIED
Fusion News 1.0 - Path Traversal
Directory traversal vulnerability in sources/post.php in Fusion News 1.0, when register_globals is enabled, allows remote attackers to include arbitrary files via a .. (dot dot) sequence in the fil_config parameter, which can be used to execute PHP code that has been injected into a log file.
by X0r_1
CVE-2006-2569 EXPLOITDB perl VERIFIED
4R Linklist < 1.0_rc2 - SQL Injection
SQL injection vulnerability in links.php in 4R Linklist 1.0 RC2 and earlier, a module for Woltlab Burning Board, allows remote attackers to execute arbitrary SQL commands via the cat parameter.
by 666
CVE-2006-2523 EXPLOITDB perl VERIFIED
phpListPro <2.0.1 - RCE
PHP remote file inclusion vulnerability in config.php in phpListPro 2.0.1 and earlier, with magic_quotes_gpc disabled, allows remote attackers to execute arbitrary PHP code via a URL in the Language cookie.
by [Oo]
CVE-2006-2404 EXPLOITDB perl VERIFIED
Radscripts Radlance - Path Traversal
Directory traversal vulnerability in popup.php in RadScripts RadLance Gold 7.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the read parameter.
by Mr.CrackerZ
CVE-2006-2503 EXPLOITDB perl VERIFIED
Deluxebb - SQL Injection
SQL injection vulnerability in misc.php in DeluxeBB 1.06 allows remote attackers to execute arbitrary SQL commands via the name parameter.
by KingOfSka
CVE-2006-2341 EXPLOITDB perl VERIFIED
Symantec Enterprise Firewall - Information Disclosure
The HTTP proxy in Symantec Gateway Security 5000 Series 2.0.1 and 3.0, and Enterprise Firewall 8.0, when NAT is being used, allows remote attackers to determine internal IP addresses by using malformed HTTP requests, as demonstrated using a get request without a space separating the URI.
by Bernhard Mueller
CVE-2006-2284 EXPLOITDB perl VERIFIED
Claroline 1.7.5 - RCE
Multiple PHP remote file inclusion vulnerabilities in Claroline 1.7.5 allow remote attackers to execute arbitrary PHP code via a URL in the (1) clarolineRepositorySys parameter in ldap.inc.php and the (2) claro_CasLibPath parameter in casProcess.inc.php.
by beford
CVE-2006-2285 EXPLOITDB perl VERIFIED
Dokeos 1.6.4 - RCE
PHP remote file inclusion vulnerability in authldap.php in Dokeos 1.6.4 allows remote attackers to execute arbitrary PHP code via a URL in the includePath parameter.
by beford
CVE-2006-7048 EXPLOITDB perl VERIFIED
Claroline 1.7.5 - RCE
Multiple PHP remote file inclusion vulnerabilities in Claroline 1.7.5 allow remote attackers to execute arbitrary PHP code via a URL in the (1) clarolineRepositorySys parameter to (a) atutor.inc.php (b) db-generic.inc.php (c) docebo.inc.php (d) dokeos.1.6.inc.php (e) dokeos.inc.php (f) ganesha.inc.php (g) mambo.inc.php (h) moodle.inc.php (i) phpnuke.inc.php (j) postnuke.inc.php and (k) spip.inc.php in claroline/auth/extauth/drivers/; (2) includePath parameter in mambo.inc.php, postnuke.inc.php, and (l) inc/lib/event/init_event_manager.inc.php; and (3) rootSys parameter in (m) inc/lib/export_exe_tracking.class.php, a different set of vectors than CVE-2006-2284.
by beford
CVE-2006-2270 EXPLOITDB perl VERIFIED
Jetbox CMS 2.1 - RCE
PHP remote file inclusion vulnerability in includes/config.php in Jetbox CMS 2.1 allows remote attackers to execute arbitrary code via a URL in the relative_script_path parameter.
by beford
CVE-2006-7007 EXPLOITDB perl VERIFIED
H. Nomura Tiny Ftpd < 1.4 - Buffer Overflow
Buffer overflow in Tiny FTPd 1.4 and earlier allows remote attackers to cause a denial of service (daemon crash) via a long USER command, a different vector than CVE-2000-0133.
by [Oo]
CVE-2006-0759 EXPLOITDB perl VERIFIED
Hivemail - SQL Injection
Multiple SQL injection vulnerabilities in HiveMail 1.3 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the contactgroupid parameter in addressbook.update.php, (2) the messageid parameter in addressbook.add.php, (3) the folderid parameter in folders.update.php, and possibly certain parameters in (4) calendar.event.php, (5) index.php, (6) pop.download.php, (7) read.bounce.php, (8) rules.block.php, (9) language.php, and (10) certain other scripts; and allow remote authenticated users to execute arbitrary SQL commands via (11) the folderid parameter in index.php and (12) possibly other parameters in certain other scripts, because $_SERVER['PHP_SELF'] is improperly handled.
by [Oo]
CVE-2006-2253 EXPLOITDB perl VERIFIED
Statit 4 - RCE
PHP remote file inclusion vulnerability in visible_count_inc.php in Statit 4 (060207) allows remote attackers to execute arbitrary PHP code via a URL in the statitpath parameter.
by IGNOR3
CVE-2006-2242 EXPLOITDB perl VERIFIED
Acftp - Denial of Service
acFTP 1.4 allows remote attackers to cause a denial of service (application crash) via a long string with "{" (brace) characters to the USER command.
by Preddy
CVE-2006-2245 EXPLOITDB perl VERIFIED
Phpbb Group Phpbb-auction - Code Injection
PHP remote file inclusion vulnerability in auction\auction_common.php in Auction mod 1.3m for phpBB allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
by webDEViL
CVE-2006-2222 EXPLOITDB perl VERIFIED
Norz Zawhttpd - Buffer Overflow
Buffer overflow in zawhttpd 0.8.23, and possibly previous versions, allows remote attackers to cause a denial of service (daemon crash) via a request for a URI composed of several "\" (backslash) characters.
by Kamil Sienicki
CVE-2006-2180 EXPLOITDB perl VERIFIED
Kmint21 Software Golden FTP Server - Memory Corruption
Buffer overflow in Golden FTP Server Pro 2.70 allows remote attackers to cause a denial of service (application crash) and execute arbitrary code via a long argument to the (1) NLST or (2) APPE commands, as demonstrated by the Infigo FTPStress Fuzzer.
by Jerome Athias
By Source
All 2,814 Exploitdb 50,121 Writeup 46,832 Nomisec 21,209 Metasploit 3,189 Github 2,268 Vulncheck_xdb 900 Inthewild 518 Gitlab 439 Gitee 415 Patchapalooza 312
By Language
text 31,341 ruby 5,920 python 5,746 c 3,550 perl 2,854 html 2,055 php 1,334 bash 459 java 360 javascript 260 c++ 247 shell 73 go 41 postscript 25 xml 24