Exploitdb Exploits
2,814 exploits tracked across all sources.
WebConnect <6.5-6.4.4 - Path Traversal
Directory traversal vulnerability in jretest.html in WebConnect 6.5 and 6.4.4, and possibly earlier versions, allows remote attackers to read keys within arbitrary INI formatted files via "..//" sequences in the WCP_USER parameter.
by karak0rsan
AWStats 6.3-6.4 - Code Injection
Direct code injection vulnerability in awstats.pl in AWStats 6.3 and 6.4 allows remote attackers to execute portions of Perl code via the PluginMode parameter.
by GHC
Apple Mac OSX Adobe Version Cue - Local Privilege Escalation
by 0xdeadbabe
Mac OS X - Privilege Escalation
The Finder in Mac OS X and earlier allows local users to overwrite arbitrary files and gain privileges by creating a hard link from the .DS_Store file to an arbitrary file.
by vade79
Osh < 1.7.14 - Buffer Overflow
Buffer overflow in OSH before 1.7-15 allows local users to execute arbitrary code via a long current working directory and filename.
by Charles Stevenson
Logicnow Perldesk - SQL Injection
SQL injection vulnerability in PerlDesk 1.x allows remote attackers to inject arbitrary SQL commands via the view parameter.
by deluxe89
Savant Webserver - Buffer Overflow
Buffer overflow in Savant Web Server 3.1 allows remote attackers to execute arbitrary code via a long HTTP request.
by CorryL
Eternal Lines Web Server 1.0 - Remote Denial of Service
by Ziv Kamir
War FTP Daemon - Denial of Service
WarFTPD 1.82 RC9, when running as an NT service, allows remote authenticated users to cause a denial of service (access violation) via a CWD command with a crafted pathname, as demonstrated using a large string of "%s" sequences, possibly indicating a format string vulnerability.
by MC.Iglo
Siteman 1.1.10 - Remote Administrative Account Addition
by Noam Rathaus
Awstats < 6.3 - Improper Input Validation
AWStats 6.1, and other versions before 6.3, allows remote attackers to execute arbitrary commands via shell metacharacters in the configdir parameter to aswtats.pl.
by GHC
Kmint21 Software Golden FTP Server - Buffer Overflow
Buffer overflow in Golden FTP Server Pro (goldenftpd) 2.x allows remote attackers to execute arbitrary code via a long RNTO command.
by Barabas
Siteman <1.1.10 - Code Injection
CRLF injection vulnerability in users.php in Siteman 1.1.10 and earlier allows remote attackers to add arbitrary users and gain privileges via the line parameter in a docreate operation.
by Noam Rathaus
phpBB 2.0.10 - 'ssh.D.Worm' Bot Install Altavista
by Severino Honorato
Sanity.b - phpBB 2.0.10 Bot Install (AOL/Yahoo Search)
by anonymous
PHPInclude.Worm - PHP Scripts Automated Arbitrary File Inclusion
by anonymous
PHP Heaven Phpmychat - Access Control
PHPMyChat 0.14.5 does not remove or protect setup.php3 after installation, which allows attackers to obtain sensitive information including database passwords via a direct request.
by sysbug
phpBB < 2.0.10 - 'Santy.A Worm' 'highlight' Arbitrary File Upload
by anonymous
By Source