Exploitdb Exploits
2,809 exploits tracked across all sources.
Typsoft FTP Server < 1.11 - Denial of Service via Multiple RETR Commands
Typsoft FTP Server 1.11, with "Sub Directory Include" enabled, allows remote attackers to cause a denial of service (crash) by sending multiple RETR commands. NOTE: it was later reported that 1.10 is also affected.
by wood
Solaris 10 (x86) - DtPrintinfo/Session Privilege Escalation
by Charles Stevenson
RBExplorer 1.0 - Hijacking Command Denial of Service
by basher13
phpBB 2.0.13 - 'admin_styles.php' Remote Command Execution
by RusH
phpMyAdmin 2.6.4 and 2.6.4-pl1 - Remote File Inclusion via $__redirect Parameter
PHP file inclusion vulnerability in grab_globals.lib.php in phpMyAdmin 2.6.4 and 2.6.4-pl1 allows remote attackers to include local files via the $__redirect parameter, possibly involving the subform array.
by cXIb8O3
xine-lib 1-beta-1.0.2 and 1.1.1 - Remote Code Execution via CDDB Metadata Format String
Format string vulnerability in input_cdda.c in xine-lib 1-beta through 1-beta 3, 1-rc, 1.0 through 1.0.2, and 1.1.1 allows remote servers to execute arbitrary code via format string specifiers in metadata in CDDB server responses when the victim plays a CD.
by Ulf Harnhammar
wzdftpd 0.5.4 - Authenticated Remote Command Execution via SITE Command
wzdftpd 0.5.4 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the SITE command.
by kingcope
MCCS 1.0 - Denial of Service
Multi-Computer Control System (MCCS) 1.0 allows remote attackers to cause a denial of service via a malformed UDP packet.
by basher13
Fastream NETFile Server 7.1.2 - DoS
Fastream NETFile Server 7.1.2 does not properly handle keep-alive connection timeouts and does not close the connection after a HEAD request, which allows remote attackers to perform a denial of service (connection consumption) by sending a large number HTTP HEAD requests.
by karak0rsan
phpWebSite 1.4.0 - Cross-Site Scripting via Search Parameter
Cross-site scripting (XSS) vulnerability in index.php in the search module in Appalachian State University phpWebSite 1.4.0 allows remote attackers to inject arbitrary web script or HTML via the search parameter.
by RusH
COOL! Remote Control 1.12 - Remote Denial of Service
by basher13
PhpTagCool 1.0.3 - SQL Injection via X-Forwarded-For HTTP Header
SQL injection vulnerability in post.php in PhpTagCool 1.0.3 allows remote attackers to execute arbitrary SQL commands via the X-Forwarded-For field in an HTTP header.
by Megabyte
FTP Internet Access Manager 1.2 - Command Execution
by basher13
Free SMTP Server 2.2 - Open Redirect
Free SMTP Server 2.2 allows remote attackers to use the server as an open mail relay (spam proxy).
by basher13
Simple PHP Blog - Unauthenticated Arbitrary File Deletion via comment_delete_cgi.php comment parameter
comment_delete_cgi.php in Simple PHP Blog allows remote attackers to delete arbitrary files via the comment parameter.
by Kenneth Belva
Savant Web Server < 3.1 - Remote Code Execution via Long HTTP GET Request
Buffer overflow in Savant Web Server 3.1 and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request.
by basher13
Adobe Version Cue <1.3 - Local Privilege Escalation
VCNative for Adobe Version Cue 1.0 and 1.0.1, as used in Creative Suite 1.0 and 1.3, and when running on Mac OS X with Version Cue Workspace, creates temporary log files with predictable names, which allows local users to modify arbitrary files via a symlink attack.
by vade79
GTChat 0.95 Alpha - 'adduser' Remote Denial of Service
by VTECin5th
MyBulletinBoard 1.00 RC1-RC4 - SQL Injection via search.php uid Parameter
SQL injection vulnerability in search.php for MyBulletinBoard (MyBB) 1.00 Release Candidate 1 through 4 allows remote attackers to execute arbitrary SQL commands via the uid parameter. NOTE: this issue might overlap CVE-2005-0282.
by Alpha_Programmer
Microsoft Internet Explorer 5.01-6 - Remote Code Execution via Unsafe COM Object Instantiation
Microsoft Internet Explorer 5.01, 5.5, and 6 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a web page with embedded CLSIDs that reference certain COM objects that are not intended for use within Internet Explorer, as originally demonstrated using the (1) DDS Library Shape Control (Msdds.dll) COM object, and other objects including (2) Blnmgrps.dll, (3) Ciodm.dll, (4) Comsvcs.dll, (5) Danim.dll, (6) Htmlmarq.ocx, (7) Mdt2dd.dll (as demonstrated using a heap corruption attack with uninitialized memory), (8) Mdt2qd.dll, (9) Mpg4ds32.ax, (10) Msadds32.ax, (11) Msb1esen.dll, (12) Msb1fren.dll, (13) Msb1geen.dll, (14) Msdtctm.dll, (15) Mshtml.dll, (16) Msoeacct.dll, (17) Msosvfbr.dll, (18) Mswcrun.dll, (19) Netshell.dll, (20) Ole2disp.dll, (21) Outllib.dll, (22) Psisdecd.dll, (23) Qdvd.dll, (24) Repodbc.dll, (25) Shdocvw.dll, (26) Shell32.dll, (27) Soa.dll, (28) Srchui.dll, (29) Stobject.dll, (30) Vdt70.dll, (31) Vmhelper.dll, and (32) Wbemads.dll, aka a variant of the "COM Object Instantiation Memory Corruption vulnerability."
by anonymous
osh < 1.7.14 - Buffer Overflow via Long Working Directory and Filename
Buffer overflow in OSH before 1.7-15 allows local users to execute arbitrary code via a long current working directory and filename.
by Charles Stevenson
Grandstream BudgeTone 101 and 102 < 1.0.6.7 - Denial of Service via Large UDP Packet
Grandstream BudgeTone 101 and 102 running firmware 1.0.6.7 and possibly earlier versions, allows remote attackers to cause a denial of service (device hang or reboot) via a large UDP packet to port 5060.
by Pierre Kroma
By Source