Exploitdb Exploits
4,759 exploits tracked across all sources.
com_bookflip 2.1 - SQL Injection via book_id Parameter
SQL injection vulnerability in the BookFlip (com_bookflip) component 2.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the book_id parameter to index.php.
by boom3rang
com_pinboard - SQL Injection via Task Parameter
SQL injection vulnerability in the com_pinboard component for Joomla! allows remote attackers to execute arbitrary SQL commands via the task parameter in a showpic action to index.php.
by Stack
AlumniServer 1.0.1 - 'resetpwemail' Blind SQL Injection
by YEnH4ckEr
HP Data Protector Express <4.6.5-3.4.7 - DoS
Unspecified vulnerability in the dpwinsup module (dpwinsup.dll) for dpwingad (dpwingad.exe) in HP Data Protector Express and Express SSE 3.x before build 47065, and Express and Express SSE 4.x before build 46537, allows remote attackers to cause a denial of service (application crash) or read portions of memory via one or more crafted packets.
by Nibin
Zen Cart <1.3.8a-1.3.8 - SQL Injection
Zen Cart 1.3.8a, 1.3.8, and earlier does not require administrative authentication for admin/sqlpatch.php, which allows remote attackers to execute arbitrary SQL commands via the query_string parameter in an execute action, in conjunction with a PATH_INFO of password_forgotten.php, related to a "SQL Execution" issue.
by BlackH
FretsWeb 1.2 - SQL Injection via Name or Hash Parameter
Multiple SQL injection vulnerabilities in FretsWeb 1.2 allow remote attackers to execute arbitrary SQL commands via the (1) name parameter to player.php and the (2) hash parameter to song.php.
by YEnH4ckEr
compface < 1.5.2 - Buffer Overflow via Long Declaration in .xbm File
Buffer overflow in compface 1.5.2 and earlier allows user-assisted attackers to cause a denial of service (crash) via a long declaration in a .xbm file. NOTE: this issue only affects compface on distributions that used a certain patch.
by metalhoney
Apple iTunes < 8.2 - Remote Code Execution via Long itms: URL Component
Stack-based buffer overflow in Apple iTunes before 8.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an itms: URL with a long URL component after a colon.
by ryujin
LightNEasy sql/no-db 2.2.x - System Configuration Disclosure
by StAkeR
Free Download Manager 2.5/3.0 - Control Server Remote Buffer Overflow
by His0k4
CUPS < 1.3.10 - Denial of Service via IPP Request with Consecutive UNSUPPORTED Tags
The ippReadIO function in cups/ipp.c in cupsd in CUPS before 1.3.10 does not properly initialize memory for IPP request packets, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a scheduler request with two consecutive IPP_TAG_UNSUPPORTED tags.
by Anibal Sacco
CVSS 7.5
ASP Football Pool 2.3 - Info Disclosure
ASP Football Pool 2.3 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file via a direct request for NFL.mdb.
by ByALBAYX
Soulseek 156 and 157 NS - Stack-Based Buffer Overflow via Long Search Query
Stack-based buffer overflow in Soulseek 156 and 157 NS allows remote attackers to execute arbitrary code via a long search query.
by His0k4
Slayer 2.4 - 'skin' Universal Buffer Overflow (SEH)
by SuNHouSe2
Nullsoft Winamp < 5.552 - Remote Code Execution via Crafted MAKI File
The Nullsoft Modern Skins Support module (gen_ff.dll) in Nullsoft Winamp before 5.552 allows remote attackers to execute arbitrary code via a crafted MAKI file, which triggers an incorrect sign extension, an integer overflow, and a stack-based buffer overflow.
by His0k4
Joomla com_casinobase, com_casino_blackjack, com_casino_videopoker 0.3.1 - SQL Injection via Itemid Parameter
SQL injection vulnerability in the (1) casinobase (com_casinobase), (2) casino_blackjack (com_casino_blackjack), and (3) casino_videopoker (com_casino_videopoker) components 0.3.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter to index.php.
by ByALBAYX
httpdx 0.5b - FTP Server (CWD) Remote Buffer Overflow (SEH)
by His0k4
httpdx 0.5b - FTP Server (USER) Remote Buffer Overflow (SEH)
by His0k4
Sonic Spot Audioactive Player 1.93b - Stack-based Buffer Overflow via Playlist File
Stack-based buffer overflow in Sonic Spot Audioactive Player 1.93b allows remote attackers to execute arbitrary code via a long string in a playlist file, as demonstrated by a long .mp3 URL in a .m3u file.
by His0k4
Mini-stream CastRipper 2.50.70 - Stack-based Buffer Overflow via Long Entry in .m3u File
Stack-based buffer overflow in Mini-stream CastRipper 2.50.70 allows remote attackers to execute arbitrary code via a long entry in a .m3u file, a different vector than CVE-2009-5137.
by Super Cristal
Microchip MPLAB IDE 8.30 - Stack-Based Buffer Overflow via Long .cof Pathname in .mcp File
Stack-based buffer overflow in Microchip MPLAB IDE 8.30 allows user-assisted remote attackers to execute arbitrary code via a long .cof pathname in a [TOOL_SETTINGS] section in a .mcp file, possibly a related issue to CVE-2009-1608.
by His0k4
ElectraSoft 32bit FTP 09.04.24 - Remote Code Execution via Long CWD Reply
Stack-based buffer overflow in ElectraSoft 32bit FTP 09.04.24 allows remote FTP servers to execute arbitrary code via a long 257 reply to a CWD command.
by His0k4
By Source