Exploitdb Exploits
1,269 exploits tracked across all sources.
phpBB 2.x <2.0.11 - RCE
viewtopic.php in phpBB 2.x before 2.0.11 improperly URL decodes the highlight parameter when extracting words and phrases to highlight, which allows remote attackers to execute arbitrary PHP code by double-encoding the highlight value so that special characters are inserted into the result, which is then processed by PHP exec, as exploited by the Santy.A worm.
by Michael Brooks
Beyond Compare 3.0.13 b9599 - '.zip' Local Stack Buffer Overflow
by mr_me
Knowledgeroot (fckeditor) - Arbitrary File Upload
by eidelweiss
Php < 5.3.2 - Integer Overflow
The dechunk filter in PHP 5.3 through 5.3.2, when decoding an HTTP chunked encoding stream, allows context-dependent attackers to cause a denial of service (crash) and possibly trigger memory corruption via a negative chunk size, which bypasses a signed comparison, related to an integer overflow in the chunk size decoder.
by Stefan Esser
CVSS 9.8
Easyzip 2000 3.5 - '.zip' Local Stack Buffer Overflow
by mr_me
phpegasus 0.1.2 - 'FCKeditor' Arbitrary File Upload
by eidelweiss
SmodCMS 4.07 (fckeditor) - Arbitrary File Upload
by eidelweiss
Camiro-CMS_beta-0.1 - 'FCKeditor' Arbitrary File Upload
by eidelweiss
PHP 6.0 Dev - 'str_transliterate()' Local Buffer Overflow (NX + ASLR Bypass)
by ryujin
Jzip <2.0.0.132900 - Buffer Overflow
Stack-based buffer overflow in Jzip 1.3 through 2.0.0.132900 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long file name in a zip archive.
by mr_me
PHP 6.0 Dev - 'str_transliterate()' Local Buffer Overflow
by Yakir Wizman
Cleanersoft Free Mp3 CD Ripper < 2.6 - Memory Corruption
Stack-based buffer overflow in Free MP3 CD Ripper 1.1, 2.6 and earlier, when converting a file, allows user-assisted remote attackers to execute arbitrary code via a crafted .wav file.
by mr_me
SiteX 0.7.4 beta - SQL Injection
SQL injection vulnerability in photo.php in SiteX 0.7.4 beta allows remote attackers to execute arbitrary SQL commands via the albumid parameter.
by Sc0rpi0n
JavaScriptCore.dll - DoS
JavaScriptCore.dll, as used in Apple Safari 4.0.5 on Windows XP SP3, allows remote attackers to cause a denial of service (application crash) via an HTML document composed of many successive occurrences of the <object> substring.
by 3lkt3F0k4
deV!L`z Clanportal 1.5.2 - Code Injection
PHP remote file inclusion vulnerability in inc/config.php in deV!L`z Clanportal (DZCP) 1.5.2, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the basePath parameter.
by cr4wl3r
By Source