Exploitdb Exploits

2,689 exploits tracked across all sources.

Sort: Activity Stars
CVE-2011-0065 EXPLOITDB ruby VERIFIED
Mozilla Firefox <3.5.19 & SeaMonkey <2.0.14 - Use After Free
Use-after-free vulnerability in Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey before 2.0.14, allows remote attackers to execute arbitrary code via vectors related to OBJECT's mChannel.
by Rh0
CVE-2011-0807 EXPLOITDB ruby VERIFIED
Oracle Sun GlassFish Enterprise Server <3.0.1 - Info Disclosure
Unspecified vulnerability in Oracle Sun GlassFish Enterprise Server 2.1, 2.1.1, and 3.0.1, and Sun Java System Application Server 9.1, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Administration.
by Metasploit
EIP-2026-117198 EXPLOITDB ruby VERIFIED
FreeAmp 2.0.7 - '.fat' Local Buffer Overflow (Metasploit)
by James Fitts
EIP-2026-116706 EXPLOITDB ruby VERIFIED
ABBS Electronic Flashcards 2.1 - Local Buffer Overflow (Metasploit)
by James Fitts
EIP-2026-116703 EXPLOITDB ruby VERIFIED
ABBS Audio Media Player 3.0 - Local Buffer Overflow (Metasploit)
by James Fitts
CVE-2002-2268 EXPLOITDB ruby VERIFIED
Webster HTTP Server - Remote Code Execution via Long URL
Buffer overflow in Webster HTTP Server allows remote attackers to execute arbitrary code via a long URL.
by Metasploit
CVE-2004-0964 EXPLOITDB ruby VERIFIED
Zinf <2.2.1 - Remote Code Execution
Buffer overflow in Zinf 2.2.1 on Windows, and other older versions for Linux, allows remote attackers or local users to execute arbitrary code via certain values in a .pls file.
by C4SS!0 & h1ch4m
EIP-2026-102466 EXPLOITDB ruby VERIFIED
CA Arcserve D2D GWT RPC - Credential Information Disclosure (Metasploit)
by Metasploit
EIP-2026-118230 EXPLOITDB ruby VERIFIED
Actfax FTP Server 4.27 - 'USER' Stack Buffer Overflow (Metasploit)
by mr_me
EIP-2026-108585 EXPLOITDB ruby VERIFIED
Joomla! Component com_virtuemart 1.1.7/1.5 - Blind SQL Injection (Metasploit)
by TecR0c
CVE-2011-3011 EXPLOITDB ruby VERIFIED
CA ARCserve D2D r15 - Exposure of Sensitive Information via Session Handling
BaseServiceImpl.class in CA ARCserve D2D r15 does not properly handle sessions, which allows remote attackers to obtain credentials, and consequently execute arbitrary commands, via unspecified vectors.
by Metasploit
EIP-2026-118561 EXPLOITDB ruby VERIFIED
Freefloat FTP Server - 'REST' Remote Buffer Overflow (Metasploit)
by KaHPeSeSe
EIP-2026-118560 EXPLOITDB ruby VERIFIED
Freefloat FTP Server - 'MKD' Remote Buffer Overflow (Metasploit)
by James Fitts
EIP-2026-118672 EXPLOITDB ruby VERIFIED
Iconics GENESIS32 9.21.201.01 - Integer Overflow (Metasploit)
by Metasploit
EIP-2026-118572 EXPLOITDB ruby VERIFIED
Freefloat FTP Server 1.0 - 'MKD' Remote Buffer Overflow
by C4SS!0 G0M3S
CVE-2009-0920 EXPLOITDB ruby VERIFIED
HP Network Node Manager 7.01, 7.51, 7.53 - Stack-Based Buffer Overflow via OvOSLocale Cookie
Stack-based buffer overflow in OvCgi/Toolbar.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a long OvOSLocale cookie, a variant of CVE-2008-0067.
by Metasploit
CVE-2011-3556 EXPLOITDB ruby VERIFIED
Oracle Java SE JDK/JRE 7/6u27/5.0u31/1.4.2_33 & JRockit R28.1.4 - RCE via RMI
Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, 1.4.2_33 and earlier, and JRockit R28.1.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to RMI, a different vulnerability than CVE-2011-3557.
by Metasploit
CVE-2011-0073 EXPLOITDB ruby VERIFIED
Mozilla Firefox <3.5.19 & <3.6.17, SeaMonkey <2.0.14 - RCE
Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey before 2.0.14, does not properly use nsTreeRange data structures, which allows remote attackers to execute arbitrary code via unspecified vectors that lead to a "dangling pointer."
by Metasploit
CVE-2011-5124 EXPLOITDB ruby VERIFIED
Blue Coat ProxyOne and ProxySG - Stack-Based Buffer Overflow via Large Packet to Synchronization Port
Stack-based buffer overflow in the BCAAA component before build 60258, as used by Blue Coat ProxySG 4.2.3 through 6.1 and ProxyOne, allows remote attackers to execute arbitrary code via a large packet to the synchronization port (16102/tcp).
by Metasploit
EIP-2026-118567 EXPLOITDB ruby VERIFIED
Freefloat FTP Server - Remote Buffer Overflow (Metasploit)
by James Fitts
CVE-2010-5299 EXPLOITDB ruby VERIFIED
MicroP 0.1.1.1600 - Buffer Overflow
Stack-based buffer overflow in MicroP 0.1.1.1600 allows remote attackers to execute arbitrary code via a crafted .mppl file. NOTE: it has been reported that the overflow is in the lpFileName parameter of the CreateFileA function, but the overflow is probably caused by a separate, unnamed function.
by Metasploit
EIP-2026-116997 EXPLOITDB ruby
CoolPlayer Portable 2.19.2 - Local Buffer Overflow (Metasploit)
by James Fitts
EIP-2026-118165 EXPLOITDB ruby
Wordtrainer 3.0 - '.ord' Local Buffer Overflow (Metasploit)
by James Fitts
CVE-2011-2523 EXPLOITDB CRITICAL ruby VERIFIED
vsftpd 2.3.4 - Backdoor Command Execution
vsftpd 2.3.4 downloaded between 20110630 and 20110703 contains a backdoor which opens a shell on port 6200/tcp.
by Metasploit
CVSS 9.8
CVE-2011-1865 EXPLOITDB ruby VERIFIED
HP OpenView Storage Data Protector <6.20 - Buffer Overflow
Multiple stack-based buffer overflows in the inet service in HP OpenView Storage Data Protector 6.00 through 6.20 allow remote attackers to execute arbitrary code via a request containing crafted parameters.
by Metasploit
By Source
All 2,689 Writeup 62,282 Exploitdb 50,076 Nomisec 22,409 Github 3,626 Metasploit 3,312 Vulncheck_xdb 927 Inthewild 514 Gitlab 479 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,570 ruby 6,003 c 3,626 perl 2,849 html 2,075 php 1,333 bash 462 java 371 c++ 261 javascript 229 shell 131 go 73 postscript 25 typescript 25