Python Exploits
5,949 exploits tracked across all sources.
Freefloat FTP Server - 'ALLO' Remote Buffer Overflow
by Black.Spook
Xlight FTP Server 3.7 - Remote Buffer Overflow
by KedAns-Dz
Sagem Router Fast 3304/3464/3504 - Telnet Authentication Bypass
by Elouafiq Ali
Shttpd - Memory Corruption
Stack-based buffer overflow in the (1) put_dir function in mongoose.c in Mongoose 3.0, (2) put_dir function in yasslEWS.c in yaSSL Embedded Web Server (yasslEWS) 0.2, and (3) _shttpd_put_dir function in io_dir.c in Simple HTTPD (shttpd) 1.42 allows remote attackers to execute arbitrary code via an HTTP PUT request, as exploited in the wild in 2011.
by nion
Shttpd - Memory Corruption
Stack-based buffer overflow in the (1) put_dir function in mongoose.c in Mongoose 3.0, (2) put_dir function in yasslEWS.c in yaSSL Embedded Web Server (yasslEWS) 0.2, and (3) _shttpd_put_dir function in io_dir.c in Simple HTTPD (shttpd) 1.42 allows remote attackers to execute arbitrary code via an HTTP PUT request, as exploited in the wild in 2011.
by G13
MP3 CD Converter Professional 5.3.0 - Universal DEP Bypass
by C4SS!0 G0M3S
Bisonware FTP Server < 4.1 - Buffer Overflow
Buffer overflows in Bisonware FTP server prior to 4.1 allow remote attackers to cause a denial of service, and possibly execute arbitrary commands, via long (1) USER, (2) LIST, or (3) CWD commands.
by localh0t
iphone/ipad phone drive 1.1.1 - Directory Traversal
by Khashayar Fereidani
CiscoKits 1.0 - TFTP Server Directory Traversal
by SecPod Research
CiscoKits 1.0 - TFTP Server 'Write Command' Denial of Service
by SecPod Research
Openslp - Denial of Service
The extension parser in slp_v2message.c in OpenSLP 1.2.1, and other versions before SVN revision 1647, as used in Service Location Protocol daemon (SLPD) in VMware ESX 4.0 and 4.1 and ESXi 4.0 and 4.1, allows remote attackers to cause a denial of service (infinite loop) via a packet with a "next extension offset" that references this extension or a previous extension. NOTE: some of these details are obtained from third party information.
by Nicolas Gregoire
Omnicom Alpha 4.0e LPD Server - Denial of Service
by Craig Freyman
Ciscokits 1.0 - TFTP Server File Name Denial of Service
by Craig Freyman
Download Accelerator Plus (DAP) 9.7 - '.M3U' File Buffer Overflow (SEH Unicode)
by C4SS!0 G0M3S
Joomla! Component JE Story Submit - Local File Inclusion
by v3n0m
Freefloat FTP Server 1.0 - 'ACCL' Remote Buffer Overflow
by mortis
Freefloat FTP Server 1.0 - 'REST' / 'PASV' Remote Buffer Overflow
by C4SS!0 G0M3S
Solar FTP Server 2.1.1 - PASV Buffer Overflow
by Craig Freyman
Freefloat FTP Server - 'LIST' Remote Buffer Overflow
by Zer0 Thunder
Phpmyadmin < 3.3.10.2 - Code Injection
setup/lib/ConfigGenerator.class.php in phpMyAdmin 3.x before 3.3.10.2 and 3.4.x before 3.4.3.1 does not properly restrict the presence of comment closing delimiters, which allows remote attackers to conduct static code injection attacks by leveraging the ability to modify the SESSION superglobal array.
by wofeiwo
By Source