Exploitdb Exploits
4,759 exploits tracked across all sources.
EvoLogical EvoCam 3.6.6-3.6.7 - Remote Code Execution via Long GET Request
Buffer overflow in the web server for EvoLogical EvoCam 3.6.6 and 3.6.7 allows remote attackers to execute arbitrary code via a long GET request.
by d1dn0t
Quick 'n Easy FTP Server Lite 3.1 - Denial of Service
by b0nd
TCExam 10.1.006-10.1.007 - Unauthenticated Arbitrary File Upload and Remote Code Execution
Unrestricted file upload vulnerability in admin/code/tce_functions_tcecode_editor.php in TCExam 10.1.006 and 10.1.007 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in cache/.
by John Leitch
XFTP 3.0 Build 0239 - 'Filename' Remote Buffer Overflow
by sinn3r
Joomla! com_bfquiztrial <1.3.1 - SQL Injection
SQL injection vulnerability in the BF Quiz (com_bfquiztrial) component before 1.3.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the catid parameter in a bfquiztrial action to index.php.
by Valentin Hoebel
Home FTP Server 1.10.3 (build 144) - Denial of Service
by Dr_IDE
Core FTP Server 1.0.343 - Directory Traversal
by John Leitch
osCommerce Visitor Web Stats AddOn - 'Accept-Language' Header SQL Injection
by Christopher Schramm
VideoLAN VLC Media Player 1.0.6 - '.avi' Media File Crash (PoC)
by Dr_IDE
Home FTP Server 1.10.2.143 - Directory Traversal
by John Leitch
Webby Webserver 1.01 - Remote Code Execution via Long HTTP GET Request
Buffer overflow in Webby Webserver 1.01 allows remote attackers to execute arbitrary code via a long HTTP GET request.
by m-1-k-3
(Gabriel's FTP Server) Open & Compact FTP Server 1.2 - Universal Denial of Service
by Dr_IDE
com_qpersonel < 1.0.2 - SQL Injection via katid Parameter
SQL injection vulnerability in the Q-Personel (com_qpersonel) component 1.0.2 and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the katid parameter in a qpListele action to index.php.
by Valentin Hoebel
(Gabriel's FTP Server) Open & Compact FTP Server 1.2 - 'PORT' Remote Denial of Service
by Ma3sTr0-Dz
Entry Level Content Management System (EL CMS) - SQL Injection
by vir0e5
Typsoft FTP Server < 1.11 - Denial of Service via Multiple RETR Commands
Typsoft FTP Server 1.11, with "Sub Directory Include" enabled, allows remote attackers to cause a denial of service (crash) by sending multiple RETR commands. NOTE: it was later reported that 1.10 is also affected.
by Jeremiah Talamantes
SmallFTPd 1.0.3 - 'DELE' Denial of Service
by Jeremiah Talamantes
Windows Vista and Server 2008 - Remote Code Execution via SMBv2 Negotiate Protocol Request
Array index error in the SMBv2 protocol implementation in srv2.sys in Microsoft Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold and SP2, and Windows 7 RC allows remote attackers to execute arbitrary code or cause a denial of service (system crash) via an & (ampersand) character in a Process ID High header field in a NEGOTIATE PROTOCOL REQUEST packet, which triggers an attempted dereference of an out-of-bounds memory location, aka "SMBv2 Negotiation Vulnerability." NOTE: some of these details are obtained from third party information.
by Jelmer de Hen
ESET Smart Security 4.2 and NOD32 AntiVirus 4.2 (x86/x64) - LZH archive parsing (PoC)
by Oleksiuk Dmitry_ eSage Lab
BaoFeng Storm - '.m3u' File Processing Buffer Overflow
by Lufeng Li & Qingshan Li
TFTPUtil GUI 1.4.5 - Buffer Overflow via Long Transport Mode
Buffer overflow in k23productions TFTPUtil GUI (aka TFTPGUI) 1.4.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long transport mode.
by Jeremiah Talamantes
By Source