Perl Exploits

2,854 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-114892 EXPLOITDB perl VERIFIED
Alt-N MDaemon 8.0 - IMAP Server CREATE Remote Buffer Overflow (PoC)
by kcope
EIP-2026-110223 EXPLOITDB perl VERIFIED
Open Bulletin Board 1.0.5 - SQL Injection
by RusH
EIP-2026-119148 EXPLOITDB perl VERIFIED
Small HTTP Server 3.05.28 - Arbitrary Data Execution
by basher13
CVE-2005-2305 EXPLOITDB perl VERIFIED
DG Remote Control Server - Buffer Overflow
DG Remote Control Server 1.6.2 allows remote attackers to cause a denial of service (crash or CPU consumption) and possibly execute arbitrary code via a long message to TCP port 1071 or 1073, possibly due to a buffer overflow.
by basher13
EIP-2026-115175 EXPLOITDB perl VERIFIED
DzSoft PHP Editor 3.1.2.8 - Denial of Service
by basher13
EIP-2026-118302 EXPLOITDB perl VERIFIED
Baby Web Server 2.6.2 - Command Validation
by basher13
EIP-2026-116177 EXPLOITDB perl VERIFIED
Remote File Explorer 1.0 - Denial of Service
by basher13
EIP-2026-114898 EXPLOITDB perl VERIFIED
AnalogX SimpleServer:WWW 1.05 - Denial of Service
by Qnix
EIP-2026-101205 EXPLOITDB perl VERIFIED
Cisco VoIP Phone CP-7940 3.x - Spoofed SIP Status Message Handling
by DrFrancky
EIP-2026-100794 EXPLOITDB perl VERIFIED
eRoom 6.0 PlugIn - Insecure File Download Handling
by c0ntex
CVE-2005-2106 EXPLOITDB perl VERIFIED
Drupal <4.5.4-4.6.2 - RCE
Unknown vulnerability in Drupal 4.5.0 through 4.5.3, 4.6.0, and 4.6.1 allows remote attackers to execute arbitrary PHP code via a public comment or posting.
by dab
CVE-2005-2113 EXPLOITDB perl VERIFIED
Xoops - SQL Injection
SQL injection vulnerability in the loginUser function in the XMLRPC server in XOOPS 2.0.11 and earlier allows remote attackers to execute arbitrary SQL commands and bypass authentication via crafted values in an XML file, as demonstrated using the blogger.getPost method.
by RusH
CVE-2005-1921 EXPLOITDB perl VERIFIED
PHP Xml Rpc < 1.3.0 - Code Injection
Eval injection vulnerability in PEAR XML_RPC 1.3.0 and earlier (aka XML-RPC or xmlrpc) and PHPXMLRPC (aka XML-RPC For PHP or php-xmlrpc) 1.1 and earlier, as used in products such as (1) WordPress, (2) Serendipity, (3) Drupal, (4) egroupware, (5) MailWatch, (6) TikiWiki, (7) phpWebSite, (8) Ampache, and others, allows remote attackers to execute arbitrary PHP code via an XML file, which is not properly sanitized before being used in an eval statement.
by Mike Rifone
CVE-2005-1921 EXPLOITDB perl VERIFIED
PHP Xml Rpc < 1.3.0 - Code Injection
Eval injection vulnerability in PEAR XML_RPC 1.3.0 and earlier (aka XML-RPC or xmlrpc) and PHPXMLRPC (aka XML-RPC For PHP or php-xmlrpc) 1.1 and earlier, as used in products such as (1) WordPress, (2) Serendipity, (3) Drupal, (4) egroupware, (5) MailWatch, (6) TikiWiki, (7) phpWebSite, (8) Ampache, and others, allows remote attackers to execute arbitrary PHP code via an XML file, which is not properly sanitized before being used in an eval statement.
by dukenn
EIP-2026-110948 EXPLOITDB perl VERIFIED
phpBB 2.0.15 - 'highlight' Database Authentication Details
by SecureD
CVE-2005-2116 EXPLOITDB perl VERIFIED
Rejected
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2005-1921. Reason: This candidate is a duplicate of CVE-2005-1921. Notes: All CVE users should reference CVE-2005-1921 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage
by ilo--
CVE-2005-1524 EXPLOITDB perl VERIFIED
Cacti <0.8.6d - RCE
PHP file inclusion vulnerability in top_graph_header.php in Cacti 0.8.6d and possibly earlier versions allows remote attackers to execute arbitrary PHP code via the config[library_path] parameter.
by Alberto Trivero
CVE-2005-2108 EXPLOITDB perl VERIFIED
Wordpress - SQL Injection
SQL injection vulnerability in XMLRPC server in WordPress 1.5.1.2 and earlier allows remote attackers to execute arbitrary SQL commands via input that is not filtered in the HTTP_RAW_POST_DATA variable, which stores the data in an XML file.
by GulfTech Security
EIP-2026-100779 EXPLOITDB perl VERIFIED
Community Link Pro - 'login.cgi?File' Remote Command Execution
by spher3
EIP-2026-116071 EXPLOITDB perl VERIFIED
PlanetDNS PlanetFileServer - Remote Buffer Overflow (PoC)
by fRoGGz
CVE-2005-2085 EXPLOITDB perl VERIFIED
Infradig Systems Inframail Advantage - Buffer Overflow
Buffer overflow in Inframail Advantage Server Edition 6.0 through 6.7 allows remote attackers to cause a denial of service (process crash) via a long (1) SMTP FROM field or possibly (2) FTP NLST command.
by Reed Arvin
CVE-2005-2085 EXPLOITDB perl VERIFIED
Infradig Systems Inframail Advantage - Buffer Overflow
Buffer overflow in Inframail Advantage Server Edition 6.0 through 6.7 allows remote attackers to cause a denial of service (process crash) via a long (1) SMTP FROM field or possibly (2) FTP NLST command.
by Reed Arvin
CVE-2005-2066 EXPLOITDB perl VERIFIED
Asp-nuke - SQL Injection
SQL injection vulnerability in comment_post.asp in ASP Nuke 0.80 allows remote attackers to execute arbitrary SQL statements via the TaskID parameter.
by Alberto Trivero
CVE-2005-2067 EXPLOITDB perl VERIFIED
Asp-nuke - SQL Injection
SQL injection vulnerability in article.asp in unknown versions of aspnuke allows remote attackers to execute arbitrary SQL commands via the articleid parameter.
by mh_p0rtal
CVE-2005-2083 EXPLOITDB perl VERIFIED
Truenorth Software IA Emailserver - Denial of Service
Format string vulnerability in IMAP4 in IA eMailServer Corporate Edition 5.2.2 build 1051 allows remote attackers to cause a denial of service (application crash) via a LIST command with format string specifiers as the second argument.
by Reed Arvin
By Source
All 2,854 Exploitdb 50,123 Writeup 46,867 Nomisec 21,211 Metasploit 3,189 Github 2,293 Vulncheck_xdb 900 Inthewild 518 Gitlab 439 Gitee 415 Patchapalooza 312
By Language
text 31,343 ruby 5,920 python 5,760 c 3,551 perl 2,854 html 2,055 php 1,334 bash 459 java 360 javascript 260 c++ 247 shell 73 go 42 postscript 25 xml 24