Exploitdb Exploits
4,759 exploits tracked across all sources.
Joomla! Component com_xcloner-backupandrestore - Remote Command Execution
by mr_me
Victory FTP Server 5.0 - Denial of Service
by C4SS!0 G0M3S
Elecard MPEG Player 5.7 - Local Buffer Overflow (PoC) (SEH)
by badc0re
WinMerge 2.12.4 - Project File Handling Stack Overflow
by LiquidWorm
ActFax Server FTP 4.25 Build 0221 (2010-02-11) - (Authenticated) Remote Buffer Overflow
by chap0
Oracle 10/11g - 'exp.exe?file' Local Buffer Overflow
by mr_me
AutoPlay 1.33 (autoplay.ini) - Local Buffer Overflow (SEH)
by badc0re
lingxia_i.c.e_cms 1.0 - SQL Injection via session.user_id Parameter
SQL injection vulnerability in api/ice_media.cfc in Lingxia I.C.E CMS 1.0 allows remote attackers to execute arbitrary SQL commands via the session.user_id parameter to media.cfm.
by mr_me
Windows Server 2003 - Remote Code Execution via Malformed BROWSER ELECTION Message
Integer underflow in the BowserWriteErrorLogEntry function in the Common Internet File System (CIFS) browser service in Mrxsmb.sys or bowser.sys in Active Directory in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote attackers to execute arbitrary code or cause a denial of service (system crash) via a malformed BROWSER ELECTION message, leading to a heap-based buffer overflow, aka "Browser Pool Corruption Vulnerability." NOTE: some of these details are obtained from third party information.
by Cupidon-3005
XM Easy Personal FTP Server 5.8.0 - 'TYPE' Denial of Service
by Houssam Sahli
webERP 4.0.1 - 'InputSerialItemsFile.php' Arbitrary File Upload
by AutoSec Tools
LocatePC 1.05 (Ligatt Version + Others) - SQL Injection
by anonymous
xRadio 0.95b - '.xrl' Local Buffer Overflow (SEH)
by b0telh0
Hanso Player 1.4.0.0 - 'Skinfile' Buffer Overflow (Denial of Service)
by badc0re
Hanso Converter 1.1.0 - BufferOverflow Denial of Service
by badc0re
AOL Desktop < 9.6 - Stack-based Buffer Overflow via RTX Hyperlink Tag
AOL Desktop 9.6 contains a buffer overflow vulnerability in its Tool\rich.rct component when parsing .rtx files. By embedding an overly long string in a hyperlink tag, an attacker can trigger a stack-based buffer overflow due to the use of unsafe strcpy operations. This allows remote attackers to execute arbitrary code when a victim opens a malicious .rtx file. AOL Desktop is end-of-life and no longer supported. Users are encouraged to migrate to AOL Desktop Gold or alternative platforms.
by sickness
By Source