Exploitdb Exploits

2,814 exploits tracked across all sources.

Sort: Activity Stars
CVE-2004-2262 EXPLOITDB perl VERIFIED
e107 <0.617 - RCE
ImageManager in e107 before 0.617 does not properly check the types of uploaded files, which allows remote attackers to execute arbitrary code by uploading a PHP file via the upload parameter to images.php.
by sysbug
EIP-2026-104127 EXPLOITDB perl VERIFIED
Webmin - Brute Force / Command Execution
by Di42lo
EIP-2026-104132 EXPLOITDB perl VERIFIED
wget 1.9 - Directory Traversal
by jjminar
CVE-2000-0998 EXPLOITDB perl VERIFIED
top <unknown> - Privilege Escalation
Format string vulnerability in top program allows local attackers to gain root privileges via the "kill" or "renice" function.
by Kevin Finisterre
CVE-2004-1488 EXPLOITDB perl VERIFIED
wget <1.8.x-1.9.x - Code Injection
wget 1.8.x and 1.9.x does not filter or quote control characters when displaying HTTP responses to the terminal, which may allow remote malicious web servers to inject terminal escape sequences and execute arbitrary code.
by Jan Minar
EIP-2026-110944 EXPLOITDB perl VERIFIED
phpBB 2.0.10 - Remote Command Execution (CGI)
by ZzagorR
CVE-2004-2513 EXPLOITDB perl VERIFIED
Mercury (Pegasus) Mail 4.01 - RCE
Buffer overflow in the IMAP service of Mercury (Pegasus) Mail 4.01 allows remote attackers to execute arbitrary code via a long SELECT command.
by Reed Arvin
CVE-2001-1021 EXPLOITDB perl VERIFIED
Progress WS FTP Server - Buffer Overflow
Buffer overflows in WS_FTP 2.02 allow remote attackers to execute arbitrary code via long arguments to (1) DELE, (2) MDTM, (3) MLST, (4) MKD, (5) RMD, (6) RNFR, (7) RNTO, (8) SIZE, (9) STAT, (10) XMKD, or (11) XRMD.
by Reed Arvin
EIP-2026-114821 EXPLOITDB perl VERIFIED
3Dmax 6.x backburner Manager 2.2 - Denial of Service
by Xtiger
CVE-2004-1315 EXPLOITDB perl VERIFIED
phpBB 2.x <2.0.11 - RCE
viewtopic.php in phpBB 2.x before 2.0.11 improperly URL decodes the highlight parameter when extracting words and phrases to highlight, which allows remote attackers to execute arbitrary PHP code by double-encoding the highlight value so that special characters are inserted into the result, which is then processed by PHP exec, as exploited by the Santy.A worm.
by RusH
CVE-2004-1531 EXPLOITDB perl VERIFIED
Invision Power Services Invision Board - SQL Injection
SQL injection vulnerability in post.php in Invision Power Board (IPB) 2.0.0 through 2.0.2 allows remote attackers to execute arbitrary SQL commands via the qpid parameter.
by RusH
CVE-2004-1533 EXPLOITDB perl VERIFIED
Digital Mappings Systems Pop3 Server - Buffer Overflow
Buffer overflow in pop3svr.exe for DMS POP3 1.5.3.27 and earlier allows remote attackers to cause a denial of service (service crash) via a long (1) username or (2) password.
by Reed Arvin
EIP-2026-107404 EXPLOITDB perl VERIFIED
GFHost PHP GMail - Remote Command Execution
by spabam
CVE-2004-1037 EXPLOITDB perl VERIFIED
TWiki 20030201 - Command Injection
The search function in TWiki 20030201 allows remote attackers to execute arbitrary commands via shell metacharacters in a search string.
by RoMaNSoFt
CVE-2004-1535 EXPLOITDB perl VERIFIED
phpBB - RCE
PHP remote file inclusion vulnerability in admin_cash.php for the Cash Mod module for phpBB allows remote attackers to execute arbitrary PHP code by modifying the phpbb_root_path parameter to reference a URL on a remote web server that contains the code.
by Jerome Athias
EIP-2026-116227 EXPLOITDB perl VERIFIED
Secure Network Messenger 1.4.2 - Denial of Service
by ClearScreen
EIP-2026-112846 EXPLOITDB perl VERIFIED
UBBCentral UBB.Threads 6.2.x < 6.3x - One Char Brute Force
by RusH
CVE-2004-1520 EXPLOITDB perl VERIFIED
Ipswitch Imail - Buffer Overflow
Stack-based buffer overflow in IPSwitch IMail 8.13 allows remote authenticated users to execute arbitrary code via a long IMAP DELETE command.
by Zatlander
EIP-2026-116228 EXPLOITDB perl VERIFIED
SecureAction Research Secure Network Messenger 1.4.x - Remote Denial of Service
by Luigi Auriemma
EIP-2026-116552 EXPLOITDB perl VERIFIED
WinFTP Server 1.6 - Denial of Service
by KaGra
CVE-2006-2027 EXPLOITDB perl VERIFIED
Pablo Software Solutions Quick N Easy FTP Server - Buffer Overflow
Buffer overflow in Unicode processing in the logging functionality in Pablo Software Solutions Quick 'n Easy FTP Server Professional and Lite, probably 3.0, allows remote authenticated users to execute arbitrary code by sending a command with a long argument, which triggers a buffer overflow when an admin selects the Logging section in the FTP server main window. NOTE: the original researcher claims that the vendor disputes this issue.
by KaGra
EIP-2026-114983 EXPLOITDB perl VERIFIED
BaSoMail Server 1.24 - POP3/SMTP Remote Denial of Service
by KaGra
CVE-2003-0718 EXPLOITDB perl VERIFIED
IIS 5.0-6.0 - DoS
The WebDAV Message Handler for Internet Information Services (IIS) 5.0, 5.1, and 6.0 allows remote attackers to cause a denial of service (memory and CPU exhaustion, application crash) via a PROPFIND request with an XML message containing XML elements with a large number of attributes.
by Amit Klein
CVE-2004-1612 EXPLOITDB perl VERIFIED
Saleslogix - Path Traversal
Directory traversal vulnerability in SalesLogix 6.1 allows remote attackers to upload arbitrary files via a .. (dot dot) in a ProcessQueueFile request.
by Carl Livitt
CVE-2004-1612 EXPLOITDB perl VERIFIED
Saleslogix - Path Traversal
Directory traversal vulnerability in SalesLogix 6.1 allows remote attackers to upload arbitrary files via a .. (dot dot) in a ProcessQueueFile request.
by Carl Livitt
By Source
All 2,814 Exploitdb 50,130 Writeup 46,870 Nomisec 21,221 Metasploit 3,189 Github 2,316 Vulncheck_xdb 900 Inthewild 518 Gitlab 439 Gitee 415 Patchapalooza 312
By Language
text 31,346 ruby 5,920 python 5,770 c 3,560 perl 2,854 html 2,055 php 1,334 bash 459 java 360 javascript 260 c++ 247 shell 74 go 43 postscript 25 xml 24