Perl Exploits
2,849 exploits tracked across all sources.
Cisco VoIP Phone CP-7940 3.x - Spoofed SIP Status Message Handling
by DrFrancky
eRoom 6.0 PlugIn - Insecure File Download Handling
by c0ntex
Drupal 4.5.0-4.5.3, 4.6.0-4.6.1 - Remote Code Execution via Public Comment or Posting
Unknown vulnerability in Drupal 4.5.0 through 4.5.3, 4.6.0, and 4.6.1 allows remote attackers to execute arbitrary PHP code via a public comment or posting.
by dab
XOOPS <= 2.0.11 - SQL Injection via XMLRPC LoginUser Function
SQL injection vulnerability in the loginUser function in the XMLRPC server in XOOPS 2.0.11 and earlier allows remote attackers to execute arbitrary SQL commands and bypass authentication via crafted values in an XML file, as demonstrated using the blogger.getPost method.
by RusH
PEAR XML_RPC < 1.3.0 and PHPXMLRPC < 1.1 - Remote Code Execution via Unsanitized XML Input
Eval injection vulnerability in PEAR XML_RPC 1.3.0 and earlier (aka XML-RPC or xmlrpc) and PHPXMLRPC (aka XML-RPC For PHP or php-xmlrpc) 1.1 and earlier, as used in products such as (1) WordPress, (2) Serendipity, (3) Drupal, (4) egroupware, (5) MailWatch, (6) TikiWiki, (7) phpWebSite, (8) Ampache, and others, allows remote attackers to execute arbitrary PHP code via an XML file, which is not properly sanitized before being used in an eval statement.
by Mike Rifone
PEAR XML_RPC < 1.3.0 and PHPXMLRPC < 1.1 - Remote Code Execution via Unsanitized XML Input
Eval injection vulnerability in PEAR XML_RPC 1.3.0 and earlier (aka XML-RPC or xmlrpc) and PHPXMLRPC (aka XML-RPC For PHP or php-xmlrpc) 1.1 and earlier, as used in products such as (1) WordPress, (2) Serendipity, (3) Drupal, (4) egroupware, (5) MailWatch, (6) TikiWiki, (7) phpWebSite, (8) Ampache, and others, allows remote attackers to execute arbitrary PHP code via an XML file, which is not properly sanitized before being used in an eval statement.
by dukenn
phpBB 2.0.15 - 'highlight' Database Authentication Details
by SecureD
Cacti < 0.8.6d - Remote Code Execution via top_graph_header.php config[library_path] Parameter
PHP file inclusion vulnerability in top_graph_header.php in Cacti 0.8.6d and possibly earlier versions allows remote attackers to execute arbitrary PHP code via the config[library_path] parameter.
by Alberto Trivero
WordPress <= 1.5.1.2 - SQL Injection via HTTP_RAW_POST_DATA
SQL injection vulnerability in XMLRPC server in WordPress 1.5.1.2 and earlier allows remote attackers to execute arbitrary SQL commands via input that is not filtered in the HTTP_RAW_POST_DATA variable, which stores the data in an XML file.
by GulfTech Security
Community Link Pro - 'login.cgi?File' Remote Command Execution
by spher3
PlanetDNS PlanetFileServer - Remote Buffer Overflow (PoC)
by fRoGGz
Inframail Advantage Server Edition 6.0-6.7 - Denial of Service via Long SMTP FROM Field or FTP NLST Command
Buffer overflow in Inframail Advantage Server Edition 6.0 through 6.7 allows remote attackers to cause a denial of service (process crash) via a long (1) SMTP FROM field or possibly (2) FTP NLST command.
by Reed Arvin
Inframail Advantage Server Edition 6.0-6.7 - Denial of Service via Long SMTP FROM Field or FTP NLST Command
Buffer overflow in Inframail Advantage Server Edition 6.0 through 6.7 allows remote attackers to cause a denial of service (process crash) via a long (1) SMTP FROM field or possibly (2) FTP NLST command.
by Reed Arvin
ASP Nuke 0.80 - SQL Injection via TaskID Parameter
SQL injection vulnerability in comment_post.asp in ASP Nuke 0.80 allows remote attackers to execute arbitrary SQL statements via the TaskID parameter.
by Alberto Trivero
asp-nuke - SQL Injection via article.asp articleid Parameter
SQL injection vulnerability in article.asp in unknown versions of aspnuke allows remote attackers to execute arbitrary SQL commands via the articleid parameter.
by mh_p0rtal
IA eMailServer Corporate Edition 5.2.2 build 1051 - Denial of Service via IMAP4 LIST Command Format String
Format string vulnerability in IMAP4 in IA eMailServer Corporate Edition 5.2.2 build 1051 allows remote attackers to cause a denial of service (application crash) via a LIST command with format string specifiers as the second argument.
by Reed Arvin
PHP-Fusion 5.0 and 6.0 - Unprotected Database File Exposure via Predictable Filename
PHP-Fusion 5.0 and 6.0 stores the database file with a predictable filename under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct request to the filename in the administration/db_backups directory in PHP-Fusion 6.0 or the fusion_admin/db_backups directory in 5.0.
by Easyex
Solaris 10 - Local Privilege Escalation via Traceroute Argument Handling
traceroute in Sun Solaris 10 on x86 systems allows local users to execute arbitrary code with PRIV_NET_RAWACCESS privileges via (1) a large number of -g arguments or (2) a malformed -s argument with a trailing . (dot).
by Przemyslaw Frasunek
phpBB 2.0.15 - Register Multiple Users (Denial of Service)
by g30rg3_x
By Source