Python Exploits
6,694 exploits tracked across all sources.
ABBS Audio Media Player - '.m3u' / '.LST' Local Buffer Overflow
by Rh0
vtiger CRM 5.0.4 - Path Traversal and Arbitrary File Execution via Module Parameter
Multiple directory traversal vulnerabilities in vtiger CRM 5.0.4 allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in (1) the module parameter to graph.php; or the (2) module or (3) file parameter to include/Ajax/CommonAjax.php, reachable through modules/Campaigns/CampaignsAjax.php, modules/SalesOrder/SalesOrderAjax.php, modules/System/SystemAjax.php, modules/Products/ProductsAjax.php, modules/uploads/uploadsAjax.php, modules/Dashboard/DashboardAjax.php, modules/Potentials/PotentialsAjax.php, modules/Notes/NotesAjax.php, modules/Faq/FaqAjax.php, modules/Quotes/QuotesAjax.php, modules/Utilities/UtilitiesAjax.php, modules/Calendar/ActivityAjax.php, modules/Calendar/CalendarAjax.php, modules/PurchaseOrder/PurchaseOrderAjax.php, modules/HelpDesk/HelpDeskAjax.php, modules/Invoice/InvoiceAjax.php, modules/Accounts/AccountsAjax.php, modules/Reports/ReportsAjax.php, modules/Contacts/ContactsAjax.php, and modules/Portal/PortalAjax.php; and allow remote authenticated users to include and execute arbitrary local files via a .. (dot dot) in the step parameter in an Import action to the (4) Accounts, (5) Contacts, (6) HelpDesk, (7) Leads, (8) Potentials, (9) Products, or (10) Vendors module, reachable through index.php and related to modules/Import/index.php and multiple Import.php files.
by TecR0c
InterPhoto Image Gallery 2.4.2 - 'IPLANG' Local File Inclusion
by AutoSec Tools
iOS iFileExplorer Free - Directory Traversal
by theSmallNothin
Quick 'n Easy FTP Server 3.2 - Denial of Service
by clshack
Elecard AVC_HD/MPEG Player 5.7 - Local Buffer Overflow
by sickness
Joomla! Component com_xcloner-backupandrestore - Remote Command Execution
by mr_me
Victory FTP Server 5.0 - Denial of Service
by C4SS!0 G0M3S
Elecard MPEG Player 5.7 - Local Buffer Overflow (PoC) (SEH)
by badc0re
WinMerge 2.12.4 - Project File Handling Stack Overflow
by LiquidWorm
ActFax Server FTP 4.25 Build 0221 (2010-02-11) - (Authenticated) Remote Buffer Overflow
by chap0
Oracle 10/11g - 'exp.exe?file' Local Buffer Overflow
by mr_me
AutoPlay 1.33 (autoplay.ini) - Local Buffer Overflow (SEH)
by badc0re
lingxia_i.c.e_cms 1.0 - SQL Injection via session.user_id Parameter
SQL injection vulnerability in api/ice_media.cfc in Lingxia I.C.E CMS 1.0 allows remote attackers to execute arbitrary SQL commands via the session.user_id parameter to media.cfm.
by mr_me
By Source