Exploitdb Exploits

2,814 exploits tracked across all sources.

Sort: Activity Stars
CVE-2005-1134 EXPLOITDB perl VERIFIED
Serendipity <0.8 - SQL Injection
SQL injection vulnerability in exit.php for Serendipity 0.8 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) url_id or (2) entry_id parameters.
by kre0n
CVE-2005-0048 EXPLOITDB perl VERIFIED
Microsoft Windows 2000 - Denial of Service
Microsoft Windows XP SP2 and earlier, 2000 SP3 and SP4, Server 2003, and older operating systems allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IP packets with malformed options, aka the "IP Validation Vulnerability."
by Song Liu
CVE-2005-0404 EXPLOITDB perl VERIFIED
KDE 3.3.2 - Info Disclosure
KMail 1.7.1 in KDE 3.3.2 allows remote attackers to spoof email information, such as whether the email has been digitally signed or encrypted, via HTML formatted email.
by Noam Rathaus
CVE-2005-0689 EXPLOITDB perl VERIFIED
The Includer - Command Injection
includer.cgi in The Includer allows remote attackers to execute arbitrary commands via shell metacharacters in (1) the URL or (2) the template parameter.
by K-C0d3r
CVE-2005-0689 EXPLOITDB perl VERIFIED
The Includer - Command Injection
includer.cgi in The Includer allows remote attackers to execute arbitrary commands via shell metacharacters in (1) the URL or (2) the template parameter.
by GreenwooD
CVE-2005-1013 EXPLOITDB perl VERIFIED
MailEnable <1.04 - DoS
The SMTP service in MailEnable Enterprise 1.04 and earlier and Professional 1.54 and earlier allows remote attackers to cause a denial of service (server crash) via an EHLO command with a Unicode string.
by CorryL
CVE-2005-1019 EXPLOITDB perl VERIFIED
Aeon <0.2a - Privilege Escalation
Buffer overflow in the getConfig function in Aeon 0.2a and earlier allows local users to gain privileges via a long HOME environment variable.
by lammat
EIP-2026-110946 EXPLOITDB perl VERIFIED
phpBB 2.0.13 - 'Calendar Pro' mod Get Hash
by CereBrums
EIP-2026-110947 EXPLOITDB perl VERIFIED
phpBB 2.0.13 - 'downloads.php' mod Get Hash
by CereBrums
EIP-2026-111581 EXPLOITDB perl VERIFIED
PunBB 1.2.2 - Authentication Bypass
by RusH
EIP-2026-116281 EXPLOITDB perl VERIFIED
SPECTral Personal SMTP Server 0.4.2 - Denial of Service
by GreenwooD
CVE-2005-2323 EXPLOITDB perl VERIFIED
Class-1 Forum - SQL Injection
Multiple SQL injection vulnerabilities in Class-1 Forum 0.24.4 and 0.23.2, and Clever Copy with forums installed, allow remote attackers to modify SQL statements via the (1) id parameter to viewattach.php, (2) viewuser_id parameter to users.php, or the (3) id or (4) forum parameter to viewforum.php.
by basher13
CVE-2005-0847 EXPLOITDB perl VERIFIED
Code Ocean Ocean FTP Server - Denial of Service
Code Ocean FTP server 1.0 allows remote attackers to cause a denial of service via a large number of connections.
by GSS IT
EIP-2026-115595 EXPLOITDB perl VERIFIED
MCPWS Personal WebServer 1.3.21 - Denial of Service
by Nico Spicher
CVE-2005-0614 EXPLOITDB perl VERIFIED
phpBB 2.0.12 - Privilege Escalation
sessions.php in phpBB 2.0.12 and earlier allows remote attackers to gain administrator privileges via the autologinid value in a cookie.
by Kutas
EIP-2026-102955 EXPLOITDB perl VERIFIED
PostScript Utilities - 'psnup' Local Buffer Overflow
by lammat
EIP-2026-116072 EXPLOITDB perl VERIFIED
PlatinumFTP 1.0.18 - Multiple Remote Denial of Service Vulnerabilities
by ports
CVE-2005-0788 EXPLOITDB perl VERIFIED
LimeWire <4.5.6 - Info Disclosure
LimeWire 4.1.2 through 4.5.6 allows remote attackers to read arbitrary files by specifying the full pathname in a Gnutella GET request.
by lammat
EIP-2026-103472 EXPLOITDB perl VERIFIED
Freeciv Server 2.0.0beta8 - Denial of Service
by Nico Spicher
CVE-2005-0385 EXPLOITDB perl VERIFIED
Frank Mcingvale Luxman - Buffer Overflow
Buffer overflow in luxman before 0.41, if used with certain insecure svgalib libraries, allows local users to execute arbitrary code via a long -f command line argument.
by Kevin Finisterre
CVE-2005-0691 EXPLOITDB perl VERIFIED
PHP - RCE
PHP remote file inclusion vulnerability in article mode for modules.php in SocialMPN allows remote attackers to execute arbitrary PHP code by modifying the name parameter to reference a URL on a remote web server that contains the code.
by y3dips
CVE-2005-0709 EXPLOITDB perl VERIFIED
Mysql - Code Injection
MySQL 4.0.23 and earlier, and 4.1.x up to 4.1.10, allows remote authenticated users with INSERT and DELETE privileges to execute arbitrary code by using CREATE FUNCTION to access libc calls, as demonstrated by using strcat, on_exit, and exit.
by Stefano Di Paola
CVE-2005-0779 EXPLOITDB perl VERIFIED
Platinumftpserver - Denial of Service
PlatinumFTP 1.0.18, and possibly earlier versions, allows remote attackers to cause a denial of service (server crash) via multiple connection attempts with a \ (backslash) in the username.
by ports
EIP-2026-112418 EXPLOITDB perl VERIFIED
Stadtaus.Com PHP Form Mail Script 2.3 - Remote File Inclusion
by mozako
CVE-2004-0942 EXPLOITDB perl VERIFIED
Apache webserver <2.0.52 - DoS
Apache webserver 2.0.52 and earlier allows remote attackers to cause a denial of service (CPU consumption) via an HTTP GET request with a MIME header containing multiple lines with a large number of space characters.
by GreenwooD
By Source
All 2,814 Exploitdb 50,123 Writeup 46,867 Nomisec 21,211 Metasploit 3,189 Github 2,293 Vulncheck_xdb 900 Inthewild 518 Gitlab 439 Gitee 415 Patchapalooza 312
By Language
text 31,343 ruby 5,920 python 5,760 c 3,551 perl 2,854 html 2,055 php 1,334 bash 459 java 360 javascript 260 c++ 247 shell 73 go 42 postscript 25 xml 24