Exploitdb Exploits

4,759 exploits tracked across all sources.

Sort: Activity Stars
CVE-2008-7005 EXPLOITDB python VERIFIED
Minb IS Not A Blog - Code Injection
include/modules/top/1-random_quote.php in Minb Is Not a Blog (minb) 0.1.0 allows remote attackers to execute arbitrary PHP code via the quotes_to_edit parameter. NOTE: this issue has been reported as an unrestricted file upload by some sources, but that is a potential consequence of code execution.
by Khashayar Fereidani
CVE-2008-4700 EXPLOITDB python VERIFIED
Liberiacms Liberia Cms < 1.12 - SQL Injection
SQL injection vulnerability in admin.php in Libera CMS 1.12 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the libera_staff_pass cookie parameter.
by StAkeR
EIP-2026-114571 EXPLOITDB python VERIFIED
Zanfi CMS lite 2.1 / Jaw Portal free - 'FCKeditor' Arbitrary File Upload
by reptil
CVE-2008-4701 EXPLOITDB python VERIFIED
Liberiacms Liberia Cms < 1.12 - SQL Injection
SQL injection vulnerability in admin.php in Libera CMS 1.12, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the libera_staff_user cookie parameter, a different vector than CVE-2008-4700. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by StAkeR
CVE-2008-6982 EXPLOITDB python VERIFIED
Devalcms - XSS
Cross-site scripting (XSS) vulnerability in index.php in devalcms 1.4a allows remote attackers to inject arbitrary web script or HTML via the currentpath parameter.
by Khashayar Fereidani
CVE-2008-6983 EXPLOITDB python VERIFIED
Devalcms - Code Injection
modules/tool/hitcounter.php in devalcms 1.4a allows remote attackers to execute arbitrary PHP code via the HTTP Referer header with a target file specified in the gv_folder_data parameter, as demonstrated by modifying modules/tool/url2header.php.
by Khashayar Fereidani
CVE-2008-7110 EXPLOITDB python VERIFIED
Kyoceramita Scanner File Utility - Path Traversal
Directory traversal vulnerability in the Scanner File Utility (aka listener) in Kyocera Mita (KM) 3.3.0.1 allows remote attackers to upload files to arbitrary locations via a .. (dot dot) in a request.
by Seth Fogie
EIP-2026-115457 EXPLOITDB python VERIFIED
Ipswitch WS_FTP Home/Professional 8.0 - WS_FTP Client Format String
by securfrog
CVE-2008-3733 EXPLOITDB python VERIFIED
EO Video <1.36 - Buffer Overflow
Stack-based buffer overflow in EO Video (eo-video) 1.36 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a .eop (aka playlist) file with a ProjectElement element that contains a long Name element.
by j0rgan
EIP-2026-109646 EXPLOITDB python VERIFIED
mUnky 0.01 - 'index.php' Remote Code Execution
by Khashayar Fereidani
CVE-2008-4321 EXPLOITDB python VERIFIED
Flashget FTP - Memory Corruption
Buffer overflow in FlashGet (formerly JetCar) FTP 1.9 allows remote FTP servers to execute arbitrary code via a long response to the PWD command.
by h07
EIP-2026-103891 EXPLOITDB python VERIFIED
DD-WRT - Site Survey SSID Script Injection
by Rafael Dominguez Vega
CVE-2008-1447 EXPLOITDB MEDIUM python VERIFIED
BIND 8-9 <9.5.0-P1 - RCE
The DNS protocol, as implemented in (1) BIND 8 and 9 before 9.5.0-P1, 9.4.2-P1, and 9.3.5-P1; (2) Microsoft DNS in Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and SP2; and other implementations allow remote attackers to spoof DNS traffic via a birthday attack that uses in-bailiwick referrals to conduct cache poisoning against recursive resolvers, related to insufficient randomness of DNS transaction IDs and source ports, aka "DNS Insufficient Socket Entropy Vulnerability" or "the Kaminsky bug."
by Julien Desfossez
CVSS 6.8
CVE-2008-4194 EXPLOITDB python VERIFIED
Pdnsd < 1.2.6-par - Resource Management Error
The p_exec_query function in src/dns_query.c in pdnsd before 1.2.7-par allows remote attackers to cause a denial of service (daemon crash) via a long DNS reply with many entries in the answer section, related to a "dangling pointer bug."
by Julien Desfossez
CVE-2008-2595 EXPLOITDB python VERIFIED
Oracle Database 10g - Denial of Service
Unspecified vulnerability in the Oracle Internet Directory component in Oracle Application Server 9.0.4.3, 10.1.2.3, and 10.1.4.2 has unknown impact and remote attack vectors. NOTE: the previous information was obtained from the Oracle July 2008 CPU. Oracle has not commented on reliable researcher claims that this issue is a denial of service (crash) via a malformed LDAP request that triggers a NULL pointer dereference.
by Joxean Koret
EIP-2026-119566 EXPLOITDB python VERIFIED
Apache mod_jk 1.2.19 (Windows x86) - Remote Buffer Overflow
by Unohope
EIP-2026-115607 EXPLOITDB python VERIFIED
MediaMonkey 3.0.3 - URI Handling Multiple Denial of Service Vulnerabilities
by Shinnok
EIP-2026-114988 EXPLOITDB python VERIFIED
BitComet 1.02 - URI Handling Remote Denial of Service
by Shinnok
CVE-2008-6825 EXPLOITDB python VERIFIED
Trixbox < 2.6.1 - Path Traversal
Directory traversal vulnerability in user/index.php in Fonality trixbox CE 2.6.1 and earlier allows remote attackers to include and execute arbitrary files via a .. (dot dot) in the langChoice parameter.
by muts
CVE-2008-3182 EXPLOITDB python VERIFIED
Download Accelerator Plus <8.6.6.3 - Buffer Overflow
Stack-based buffer overflow in DAP.exe in Download Accelerator Plus (DAP) 7.0.1.3, 8.6.6.3, and other 8.x versions allows user-assisted remote attackers to execute arbitrary code via an M3U (.m3u) file containing a long MP3 URL.
by h07
CVE-2008-2950 EXPLOITDB python VERIFIED
Poppler < 0.8.4 - Code Injection
The Page destructor in Page.cc in libpoppler in Poppler 0.8.4 and earlier deletes a pageWidgets object even if it is not initialized by a Page constructor, which allows remote attackers to execute arbitrary code via a crafted PDF document.
by Felipe Andres Manzano
CVE-2008-3022 EXPLOITDB python VERIFIED
Phpbbportal Phportal - Code Injection
Multiple PHP remote file inclusion vulnerabilities in sablonlar/gunaysoft/gunaysoft.php in PHPortal 1.2 Beta allow remote attackers to execute arbitrary PHP code via a URL in (1) icerikyolu, (2) sayfaid, and (3) uzanti parameters.
by Ciph3r
CVE-2008-7182 EXPLOITDB python VERIFIED
NetWin Surgemail <3.9g2 - Buffer Overflow
Buffer overflow in the IMAP service in NetWin Surgemail 3.9e, and possibly other versions before 3.9g2, allows remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via a long first argument to the APPEND command, a different vector than CVE-2008-1497 and CVE-2008-1498. NOTE: due to lack of details, it is not certain whether this is the same issue as CVE-2008-2859.
by Travis Warren
CVE-2008-2866 EXPLOITDB python VERIFIED
Caupo.net Cauposhop Classic - SQL Injection
SQL injection vulnerability in csc_article_details.php in Caupo.net CaupoShop Classic 1.3 allows remote attackers to execute arbitrary SQL commands via the saArticle[ID] parameter.
by anonymous
CVE-2008-6741 EXPLOITDB python VERIFIED
Simple Machines Forum < 1.1.4 - SQL Injection
SQL injection vulnerability in Load.php in Simple Machines Forum (SMF) 1.1.4 and earlier allows remote attackers to execute arbitrary SQL commands by setting the db_character_set parameter to a multibyte character set such as big5, which causes the addslashes PHP function to produce a "\" (backslash) sequence that does not quote the "'" (single quote) character, as demonstrated via a manlabels action to index.php.
by The:Paradox
By Source
All 4,759 Writeup 54,687 Exploitdb 50,186 Nomisec 21,443 Metasploit 3,228 Github 2,587 Vulncheck_xdb 904 Inthewild 518 Gitlab 441 Gitee 415 Patchapalooza 312
By Language
text 31,364 ruby 5,960 python 5,949 c 3,580 perl 2,854 html 2,056 php 1,334 bash 459 java 362 javascript 260 c++ 250 shell 95 go 55 postscript 25 xml 24