Exploitdb Exploits

4,759 exploits tracked across all sources.

Sort: Activity Stars
CVE-2008-0734 EXPLOITDB python VERIFIED
Limbo Cms < 1.0.4.2 - SQL Injection
SQL injection vulnerability in class_auth.php in Limbo CMS 1.0.4.2, and possibly earlier versions, allows remote attackers to execute arbitrary SQL commands via the cuid cookie parameter to admin.php.
by The:Paradox
CVE-2008-5281 EXPLOITDB python VERIFIED
Titan FTP Server 6.05 - Buffer Overflow
Heap-based buffer overflow in Titan FTP Server 6.05 build 550 allows remote attackers to execute arbitrary code via a long DELE command.
by j0rgan
CVE-2008-0485 EXPLOITDB python VERIFIED
Mplayer < 1.02rc2 - Numeric Error
Array index error in libmpdemux/demux_mov.c in MPlayer 1.0 rc2 and earlier might allow remote attackers to execute arbitrary code via a QuickTime MOV file with a crafted stsc atom tag.
by Felipe Manzano
CVE-2008-0678 EXPLOITDB python VERIFIED
Blogphp - SQL Injection
SQL injection vulnerability in index.php in BlogPHP 2.0 allows remote attackers to execute arbitrary SQL commands via the id parameter in a page action.
by Khashayar Fereidani
CVE-2008-0679 EXPLOITDB python VERIFIED
Blogphp - XSS
Cross-site scripting (XSS) vulnerability in index.php in BlogPHP 2.0 allows remote attackers to inject arbitrary web script or HTML via the search parameter.
by Khashayar Fereidani
CVE-2008-0406 EXPLOITDB python VERIFIED
HFS HTTP File Server < 2.2b - Improper Input Validation
HTTP File Server (HFS) before 2.2c, when account names are used as log filenames, allows remote attackers to cause a denial of service (daemon crash) via a long account name.
by Felipe M. Aragon
CVE-2008-0782 EXPLOITDB python VERIFIED
Moinmoin - Path Traversal
Directory traversal vulnerability in MoinMoin 1.5.8 and earlier allows remote attackers to overwrite arbitrary files via a .. (dot dot) in the MOIN_ID user ID in a cookie for a userform action. NOTE: this issue can be leveraged for PHP code execution via the quicklinks parameter.
by nonroot
CVE-2008-0392 EXPLOITDB python VERIFIED
Microsoft Visual Basic - Memory Corruption
Multiple buffer overflows in Microsoft Visual Basic Enterprise Edition 6.0 SP6 allow user-assisted remote attackers to execute arbitrary code via a .dsr file with a long (1) ConnectionName or (2) CommandName line.
by shinnai
CVE-2008-0278 EXPLOITDB python VERIFIED
X7 Group X7 Chat < 2.0.5 - SQL Injection
SQL injection vulnerability in index.php in X7 Chat 2.0.5 and possibly earlier allows remote attackers to execute arbitrary SQL commands via the day parameter in a sm_window action.
by nonroot
CVE-2008-0250 EXPLOITDB python VERIFIED
Microsoft Visual Interdev - Memory Corruption
Buffer overflow in Microsoft Visual InterDev 6.0 (SP6) allows user-assisted attackers to execute arbitrary code via a Studio Solution (.SLN) file with a long Project line.
by shinnai
CVE-2008-1709 EXPLOITDB python VERIFIED
Microsoft Visual InterDev 6.0 (SP6) - Buffer Overflow
Buffer overflow in Microsoft Visual InterDev 6.0 (SP6) allows user-assisted attackers to execute arbitrary code via a Studio Solution (.SLN) file with a long malformed Project line beginning with a 'Project("{}") =' sequence, probably a different vector than CVE-2008-0250.
by shinnai
CVE-2007-3901 EXPLOITDB python VERIFIED
Microsoft Directx - Memory Corruption
Stack-based buffer overflow in the DirectShow Synchronized Accessible Media Interchange (SAMI) parser in quartz.dll for Microsoft DirectX 7.0 through 10.0 allows remote attackers to execute arbitrary code via a crafted SAMI file.
by ryujin
CVE-2008-1136 EXPLOITDB python VERIFIED
vdccm <0.10.0 - Command Injection
The Utils::runScripts function in src/utils.cpp in vdccm 0.92 through 0.10.0 in SynCE (SynCE-dccm) allows remote attackers to execute arbitrary commands via shell metacharacters in a certain string to TCP port 5679.
by Alfredo Ortega
CVE-2007-6335 EXPLOITDB python VERIFIED
ClamAV <0.92 - RCE
Integer overflow in libclamav in ClamAV before 0.92 allows remote attackers to execute arbitrary code via a crafted MEW packed PE file, which triggers a heap-based buffer overflow.
by Thomas Pollet
CVE-2008-0141 EXPLOITDB HIGH python VERIFIED
WebPortal CMS 0.6-beta - Info Disclosure
actions.php in WebPortal CMS 0.6-beta generates predictable passwords containing only the time of day, which makes it easier for remote attackers to obtain access to any account via a lostpass action.
by The:Paradox
CVSS 7.5
CVE-2008-0142 EXPLOITDB python VERIFIED
Webportal Cms - SQL Injection
Multiple SQL injection vulnerabilities in WebPortal CMS 0.6-beta allow remote attackers to execute arbitrary SQL commands via the user_name parameter to actions.php, and unspecified other vectors.
by The:Paradox
CVE-2007-6665 EXPLOITDB python VERIFIED
Netchemia oneSCHOOL - SQL Injection
SQL injection vulnerability in admin/login.asp in Netchemia oneSCHOOL allows remote attackers to execute arbitrary SQL commands via the txtLoginID parameter.
by Guga360
CVE-2007-6658 EXPLOITDB python VERIFIED
CustomCMS CCMS 3.1 Demo - SQL Injection
SQL injection vulnerability in admin.php/vars.php in CustomCMS (CCMS) 3.1 Demo allows remote attackers to execute arbitrary SQL commands via the p parameter in the Console page.
by Pr0metheuS
EIP-2026-112013 EXPLOITDB python VERIFIED
Shadowed Portal 5.7d3 - Remote Command Execution
by The:Paradox
CVE-2007-6473 EXPLOITDB python VERIFIED
Texas Imperial Software WFTPD Pro Explorer 1.0 - Buffer Overflow
Heap-based buffer overflow in Texas Imperial Software WFTPD Pro Explorer 1.0 allows remote FTP servers to execute arbitrary code via a long reply to a LIST command.
by r4x
CVE-2007-6204 EXPLOITDB python VERIFIED
HP OpenView Network Node Manager <7.51 - RCE
Multiple stack-based buffer overflows in HP OpenView Network Node Manager (OV NNM) 6.41, 7.01, and 7.51 allow remote attackers to execute arbitrary code via unspecified long arguments to (1) ovlogin.exe, (2) OpenView5.exe, (3) snmpviewer.exe, and (4) webappmon.exe, as demonstrated via a long Action parameter to OpenView5.exe.
by muts
CVE-2007-6326 EXPLOITDB python VERIFIED
Sergey Lyubka Simple HTTPD 1.3 - DoS
Sergey Lyubka Simple HTTPD (shttpd) 1.3 on Windows allows remote attackers to cause a denial of service via a request that includes an MS-DOS device name, as demonstrated by the /aux URI.
by shinnai
CVE-2007-6235 EXPLOITDB python VERIFIED
RealNetworks RealPlayer 11 - DoS
A certain ActiveX control in RealNetworks RealPlayer 11 allows remote attackers to cause a denial of service (application crash) via a malformed .au file that triggers a divide-by-zero error. NOTE: this might be related to CVE-2007-4904.
by NtWaK0
CVE-2007-6593 EXPLOITDB python VERIFIED
Autonomy KeyView SDK - Buffer Overflow
Multiple stack-based buffer overflows in l123sr.dll in Autonomy (formerly Verity) KeyView SDK, as used by IBM Lotus Notes 5.x through 8.x, allow user-assisted remote attackers to execute arbitrary code via the (1) Length and (2) Value fields for certain Types in a Lotus 1-2-3 (.123) file in the Worksheet File (WKS) format, as demonstrated by a file with a crafted SRANGE record, a different vulnerability than CVE-2007-5909.
by Sebastian
CVE-2007-6166 EXPLOITDB python VERIFIED
Apple QuickTime <7.3.1 - Buffer Overflow
Stack-based buffer overflow in Apple QuickTime before 7.3.1, as used in QuickTime Player on Windows XP and Safari on Mac OS X, allows remote Real Time Streaming Protocol (RTSP) servers to execute arbitrary code via an RTSP response with a long Content-Type header.
by muts
By Source
All 4,759 Writeup 54,687 Exploitdb 50,186 Nomisec 21,443 Metasploit 3,228 Github 2,587 Vulncheck_xdb 904 Inthewild 518 Gitlab 441 Gitee 415 Patchapalooza 312
By Language
text 31,364 ruby 5,960 python 5,949 c 3,580 perl 2,854 html 2,056 php 1,334 bash 459 java 362 javascript 260 c++ 250 shell 95 go 55 postscript 25 xml 24