Python Exploits

6,700 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-110387 EXPLOITDB python VERIFIED
osCommerce Visitor Web Stats AddOn - 'Accept-Language' Header SQL Injection
by Christopher Schramm
EIP-2026-103695 EXPLOITDB python VERIFIED
VideoLAN VLC Media Player 1.0.6 - '.avi' Media File Crash (PoC)
by Dr_IDE
EIP-2026-118636 EXPLOITDB python VERIFIED
Home FTP Server 1.10.2.143 - Directory Traversal
by John Leitch
CVE-2010-2102 EXPLOITDB python VERIFIED
Webby Webserver 1.01 - Remote Code Execution via Long HTTP GET Request
Buffer overflow in Webby Webserver 1.01 allows remote attackers to execute arbitrary code via a long HTTP GET request.
by m-1-k-3
EIP-2026-114817 EXPLOITDB python VERIFIED
(Gabriel's FTP Server) Open & Compact FTP Server 1.2 - Universal Denial of Service
by Dr_IDE
CVE-2010-1720 EXPLOITDB python VERIFIED
com_qpersonel < 1.0.2 - SQL Injection via katid Parameter
SQL injection vulnerability in the Q-Personel (com_qpersonel) component 1.0.2 and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the katid parameter in a qpListele action to index.php.
by Valentin Hoebel
EIP-2026-114816 EXPLOITDB python VERIFIED
(Gabriel's FTP Server) Open & Compact FTP Server 1.2 - 'PORT' Remote Denial of Service
by Ma3sTr0-Dz
EIP-2026-106893 EXPLOITDB python VERIFIED
Entry Level Content Management System (EL CMS) - SQL Injection
by vir0e5
CVE-2005-3294 EXPLOITDB python VERIFIED
Typsoft FTP Server < 1.11 - Denial of Service via Multiple RETR Commands
Typsoft FTP Server 1.11, with "Sub Directory Include" enabled, allows remote attackers to cause a denial of service (crash) by sending multiple RETR commands. NOTE: it was later reported that 1.10 is also affected.
by Jeremiah Talamantes
EIP-2026-116247 EXPLOITDB python VERIFIED
SmallFTPd 1.0.3 - 'DELE' Denial of Service
by Jeremiah Talamantes
CVE-2009-3103 EXPLOITDB python VERIFIED
Windows Vista and Server 2008 - Remote Code Execution via SMBv2 Negotiate Protocol Request
Array index error in the SMBv2 protocol implementation in srv2.sys in Microsoft Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold and SP2, and Windows 7 RC allows remote attackers to execute arbitrary code or cause a denial of service (system crash) via an & (ampersand) character in a Process ID High header field in a NEGOTIATE PROTOCOL REQUEST packet, which triggers an attempted dereference of an out-of-bounds memory location, aka "SMBv2 Negotiation Vulnerability." NOTE: some of these details are obtained from third party information.
by Jelmer de Hen
EIP-2026-115222 EXPLOITDB python VERIFIED
ESET Smart Security 4.2 and NOD32 AntiVirus 4.2 (x86/x64) - LZH archive parsing (PoC)
by Oleksiuk Dmitry_ eSage Lab
EIP-2026-116875 EXPLOITDB python VERIFIED
BaoFeng Storm - '.m3u' File Processing Buffer Overflow
by Lufeng Li & Qingshan Li
EIP-2026-111768 EXPLOITDB python
REZERVI 3.0.2 - Remote Command Execution
by JosS & eidelweiss
EIP-2026-119337 EXPLOITDB python VERIFIED
Ziepod+ 1.0 - CrossApplication Scripting
by sinn3r
CVE-2010-2028 EXPLOITDB python VERIFIED
TFTPUtil GUI 1.4.5 - Buffer Overflow via Long Transport Mode
Buffer overflow in k23productions TFTPUtil GUI (aka TFTPGUI) 1.4.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long transport mode.
by Jeremiah Talamantes
EIP-2026-116173 EXPLOITDB python VERIFIED
RealVNC 4.1.3 - 'ClientCutText' Message Remote Denial of Service
by John Leitch
EIP-2026-115131 EXPLOITDB python VERIFIED
ddrLPD 1.0 - Remote Denial of Service
by Bisphemol A
EIP-2026-100867 EXPLOITDB python
NIBE heat pump - Remote Code Execution
by Jelmer de Hen
EIP-2026-100866 EXPLOITDB python
NIBE heat pump - Local File Inclusion
by Jelmer de Hen
EIP-2026-118315 EXPLOITDB python VERIFIED
Bigant Messenger 2.52 - 'AntCore.dll RegisterCom()' Remote Heap Overflow
by mr_me
CVE-2010-0705 EXPLOITDB python VERIFIED
avast! 4.8-5.0.418.0 - Local Privilege Escalation
Aavmker4.sys in avast! 4.8 through 4.8.1368.0 and 5.0 before 5.0.418.0 running on Windows 2000 and XP does not properly validate input to IOCTL 0xb2d60030, which allows local users to cause a denial of service (system crash) or execute arbitrary code to gain privileges via IOCTL requests using crafted kernel addresses that trigger memory corruption.
by ryujin
EIP-2026-117308 EXPLOITDB python VERIFIED
IDEAL Migration 2009 4.5.1 - Local Buffer Overflow
by Dr_IDE
EIP-2026-117306 EXPLOITDB python VERIFIED
IDEAL Administration 2010 10.2 - Local Buffer Overflow
by Dr_IDE
CVE-2010-1597 EXPLOITDB python VERIFIED
ZipGenius 6.3.1.2552 - Stack-Based Buffer Overflow via Long Filename in ZIP Entry
Stack-based buffer overflow in zgtips.dll in ZipGenius 6.3.1.2552 allows user-assisted remote attackers to execute arbitrary code via a ZIP file containing an entry with a long filename.
by corelanc0d3r