Exploitdb Exploits

4,733 exploits tracked across all sources.

Sort: Activity Stars
CVE-2010-4876 EXPLOITDB python VERIFIED
mBlogger 1.0.04 - SQL Injection
SQL injection vulnerability in viewpost.php in mBlogger 1.0.04 allows remote attackers to execute arbitrary SQL commands via the postID parameter.
by Ptrace Security
EIP-2026-115621 EXPLOITDB python VERIFIED
Mereo 1.9.2 - Remote HTTP Server Denial of Service
by CwG GeNiuS
CVE-2009-2629 EXPLOITDB python VERIFIED
nginx <0.5.37, <0.6.39, <0.7.62, <0.8.15 - RCE
Buffer underflow in src/http/ngx_http_parse.c in nginx 0.1.0 through 0.5.37, 0.6.x before 0.6.39, 0.7.x before 0.7.62, and 0.8.x before 0.8.15 allows remote attackers to execute arbitrary code via crafted HTTP requests.
by Aaron Conole
EIP-2026-105530 EXPLOITDB python VERIFIED
Blogman 0.7.1 - 'profile.php' SQL Injection
by Ptrace Security
EIP-2026-103388 EXPLOITDB python VERIFIED
Adobe Acrobat and Reader 9.3.4 - 'AcroForm.api' Memory Corruption
by ITSecTeam
CVE-2010-1797 EXPLOITDB python
Apple Iphone OS - Memory Corruption
Multiple stack-based buffer overflows in the cff_decoder_parse_charstrings function in the CFF Type2 CharStrings interpreter in cff/cffgload.c in FreeType before 2.4.2, as used in Apple iOS before 4.0.2 on the iPhone and iPod touch and before 3.2.2 on the iPad, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted CFF opcodes in embedded fonts in a PDF document, as demonstrated by JailbreakMe. NOTE: some of these details are obtained from third party information.
by Jose Miguel Esparza
EIP-2026-116427 EXPLOITDB python VERIFIED
Tplayer V1R10 - Denial of Service
by 41.w4r10r
EIP-2026-114838 EXPLOITDB python VERIFIED
Abyssal Metal Player 2.0.9 - Denial of Service
by 41.w4r10r
CVE-2009-3129 EXPLOITDB HIGH python
Microsoft Excel - Out-of-Bounds Write
Microsoft Office Excel 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer 2003 SP3; Office Excel Viewer SP1 and SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2 allows remote attackers to execute arbitrary code via a spreadsheet with a FEATHEADER record containing an invalid cbHdrData size element that affects a pointer offset, aka "Excel Featheader Record Memory Corruption Vulnerability."
by anonymous
CVSS 7.8
CVE-2009-0565 EXPLOITDB python
Microsoft Office - Buffer Overflow
Buffer overflow in Microsoft Office Word 2000 SP3, 2002 SP3, and 2007 SP1 and SP2; Microsoft Office for Mac 2004 and 2008; Open XML File Format Converter for Mac; and Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP1 and SP2 allows remote attackers to execute arbitrary code via a Word document with a malformed record that triggers memory corruption, aka "Word Buffer Overflow Vulnerability."
by anonymous
EIP-2026-116075 EXPLOITDB python VERIFIED
PlayPad Music Player 1.12 - '.mp3' Denial of Service
by Praveen Darshanam
EIP-2026-115109 EXPLOITDB python VERIFIED
Crystal Player 1.98 - '.mls' Buffer Overflow
by Praveen Darshanam
EIP-2026-114954 EXPLOITDB python VERIFIED
AV Music Morpher Gold 5.0.38 - '.m3u' Denial of Service
by b0telh0
EIP-2026-116697 EXPLOITDB python VERIFIED
A-PDF WAV to MP3 1.0.0 - Universal Local (SEH)
by Dr_IDE
EIP-2026-115406 EXPLOITDB python VERIFIED
httpdx 1.5.4 - Multiple Denial of Service Vulnerabilities (http-ftp) (PoC)
by Dr_IDE
EIP-2026-118033 EXPLOITDB python VERIFIED
Triologic Media Player 8 - '.m3u' Universal Unicode Local Buffer Overflow (SEH)
by Glafkos Charalambous
EIP-2026-115008 EXPLOITDB python
Brazip 9.0 - '.zip' Buffer Overflow (SEH)
by ITSecTeam
EIP-2026-117655 EXPLOITDB python VERIFIED
MUSE 4.9.0.006 - '.pls' Universal Local Buffer Overflow (SEH)
by Glafkos Charalambous
EIP-2026-117654 EXPLOITDB python VERIFIED
MUSE 4.9.0.006 - '.m3u' Local Buffer Overflow
by Glafkos Charalambous
EIP-2026-116591 EXPLOITDB python VERIFIED
Xilisoft Video Converter 3.1.8.0720b - '.ogg' Buffer Overflow
by Praveen Darshanam
EIP-2026-117879 EXPLOITDB python VERIFIED
Rosoft Media Player 4.4.4 - Local Buffer Overflow (SEH) (2)
by dijital1
CVE-2007-3336 EXPLOITDB python VERIFIED
Ingres database server <9.0.4 - RCE
Multiple "pointer overwrite" vulnerabilities in Ingres database server 2006 9.0.4, r3, 2.6, and 2.5, as used in multiple CA (formerly Computer Associates) products, allow remote attackers to execute arbitrary code by sending certain TCP data at different times to the Ingres Communications Server Process (iigcc), which calls the (1) QUinsert or (2) QUremove functions with attacker-controlled input.
by fdiskyou
CVE-2010-2861 EXPLOITDB CRITICAL python VERIFIED
Adobe ColdFusion <9.0.1 - Path Traversal
Multiple directory traversal vulnerabilities in the administrator console in Adobe ColdFusion 9.0.1 and earlier allow remote attackers to read arbitrary files via the locale parameter to (1) CFIDE/administrator/settings/mappings.cfm, (2) logging/settings.cfm, (3) datasources/index.cfm, (4) j2eepackaging/editarchive.cfm, and (5) enter.cfm in CFIDE/administrator/.
by anonymous
CVSS 9.8
CVE-2010-20042 EXPLOITDB HIGH python VERIFIED
Xion Audio Player <1.0.126 - Buffer Overflow
Xion Audio Player versions prior to 1.0.126 are vulnerable to a Unicode-based stack buffer overflow triggered by opening a specially crafted .m3u playlist file. The file contains an overly long string that overwrites the Structured Exception Handler (SEH) chain, allowing an attacker to hijack execution flow and run arbitrary code.
by corelanc0d3r
EIP-2026-117462 EXPLOITDB python VERIFIED
Mediacoder 0.7.5.4710 - 'Universal' Local Buffer Overflow (SEH)
by Dr_IDE
By Source
All 4,733 Writeup 52,991 Exploitdb 50,135 Nomisec 21,420 Metasploit 3,228 Github 2,580 Vulncheck_xdb 903 Inthewild 518 Gitlab 441 Gitee 415 Patchapalooza 312
By Language
text 31,346 ruby 5,959 python 5,917 c 3,577 perl 2,854 html 2,056 php 1,334 bash 459 java 362 javascript 260 c++ 250 shell 95 go 52 postscript 25 xml 24