Exploitdb Exploits
4,759 exploits tracked across all sources.
DATAC RealWin <= 2.0 Build 6.1.8.10 - Stack-Based Buffer Overflow via Long SCPC Packet
Multiple stack-based buffer overflows in DATAC RealWin 2.0 Build 6.1.8.10 and earlier allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long (1) SCPC_INITIALIZE, (2) SCPC_INITIALIZE_RF, or (3) SCPC_TXTEVENT packet. NOTE: it was later reported that 1.06 is also affected by one of these requests.
by blake
BigACE 2.7.3 - Cross-Site Request Forgery (Change Admin Password)
by Sweet
Winamp < 5.6 - Buffer Overflow in in_mod Plugin via Comment Box
Buffer overflow in the in_mod plugin in Winamp before 5.6 allows remote attackers to have an unspecified impact via vectors related to the comment box.
by Mighty-D & 7eK
HP Data Protector Media Operations 6.11 - HTTP Server Remote Integer Overflow Denial of Service
by d0lc3
Winamp < 5.6 - Buffer Overflow in in_mod Plugin via Comment Box
Buffer overflow in the in_mod plugin in Winamp before 5.6 allows remote attackers to have an unspecified impact via vectors related to the comment box.
by Mighty-D
MASS PLAYER 2.1 - File Processing Remote Denial of Service
by Sweet
Novel eDirectory DHost Console 8.8 SP3 - Local Overwrite (SEH)
by d0lc3
ConvexSoft DJ Audio Mixer - Denial of Service
by MOHAMED ABDI
Notepad++ 5.8.2 - 'libtidy.dll' DLL Loading Arbitrary Code Execution
by anT!-Tr0J4n
e2eSoft VCam - DLL Loading Arbitrary Code Execution
by anT!-Tr0J4n
Disk Pulse Server 2.2.34 - Remote Buffer Overflow
by xsploited security
Sync Breeze Server 2.2.30 - Remote Buffer Overflow
by xsploited security
xWeblog 2.2 - SQL Injection via arsiv.asp tarih Parameter
SQL injection vulnerability in arsiv.asp in xWeblog 2.2 allows remote attackers to execute arbitrary SQL commands via the tarih parameter.
by ZoRLu
HP Data Protector Media Operations - Null Pointer Dereference Remote Denial of Service
by d0lc3
iOS FileApp < 2.0 - FTP Remote Denial of Service
by m0ebiusc0de
Microsoft Windows and Office - Remote Code Execution via Malformed OpenType Font Parsing
The Uniscribe (aka new Unicode Script Processor) implementation in USP10.DLL in Microsoft Windows XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, and Server 2008 Gold and SP2, and Microsoft Office XP SP3, 2003 SP3, and 2007 SP2, does not properly validate tables associated with malformed OpenType fonts, which allows remote attackers to execute arbitrary code via a crafted (1) web site or (2) Office document, aka "Uniscribe Font Parsing Engine Memory Corruption Vulnerability."
by Abysssec
By Source