Exploitdb Exploits

31,394 exploits tracked across all sources.

Sort: Activity Stars
CVE-2012-6313 EXPLOITDB text VERIFIED
Simple Gmail Login < 1.1.4 - Unauthenticated Sensitive Information Exposure via Missing Timezone Parameter
simple-gmail-login.php in the Simple Gmail Login plugin before 1.1.4 for WordPress allows remote attackers to obtain sensitive information via a request that lacks a timezone, leading to disclosure of the installation path in a stack trace.
by Aditya Balapure
EIP-2026-107182 EXPLOITDB text VERIFIED
FOOT Gestion - 'id' SQL Injection
by Emmanuel Farcy
EIP-2026-100969 EXPLOITDB text VERIFIED
m0n0wall 1.33 - Multiple Cross-Site Request Forgery Vulnerabilities
by Yann CAM
EIP-2026-115982 EXPLOITDB text
Nvidia Install Application 2.1002.85.551 - 'NVI2.dll' Unicode Buffer Overflow (PoC)
by LiquidWorm
EIP-2026-109042 EXPLOITDB text VERIFIED
Kordil EDms 2.2.60rc3 - SQL Injection
by Woody Hughes
EIP-2026-114342 EXPLOITDB text VERIFIED
WordPress Theme Nest - 'codigo' SQL Injection
by Ashiyane Digital Security Team
EIP-2026-112358 EXPLOITDB text VERIFIED
Sourcefabric Newscoop - 'f_email' SQL Injection
by AkaStep
CVE-2012-6470 EXPLOITDB text VERIFIED
Opera < 12.12 - Remote Code Execution via Malformed GIF Image
Opera before 12.12 does not properly allocate memory for GIF images, which allows remote attackers to execute arbitrary code or cause a denial of service (memory overwrite) via a malformed image.
by coolkaveh
EIP-2026-111935 EXPLOITDB text VERIFIED
SchoolCMS - Persistent Cross-Site Scripting
by VipVince
EIP-2026-109720 EXPLOITDB text VERIFIED
MyBB KingChat Plugin - SQL Injection
by Red_Hat
CVE-2012-0308 EXPLOITDB text
Symantec Messaging Gateway <10.0 - CSRF
Cross-site request forgery (CSRF) vulnerability in Symantec Messaging Gateway (SMG) before 10.0 allows remote attackers to hijack the authentication of administrators.
by Ben Williams
EIP-2026-104250 EXPLOITDB text
FirePass SSL VPN - Local File Inclusion
by SEC Consult
CVE-2012-4347 EXPLOITDB text
Symantec Messaging Gateway 9.5.x - Authenticated Path Traversal via Log Export or Backup Restore
Multiple directory traversal vulnerabilities in the management console in Symantec Messaging Gateway (SMG) 9.5.x allow remote authenticated users to read arbitrary files via a .. (dot dot) in the (1) logFile parameter in a logs action to brightmail/export or (2) localBackupFileSelection parameter in an APPLIANCE restoreSource action to brightmail/admin/restore/download.do.
by Ben Williams
CVE-2012-5615 EXPLOITDB text VERIFIED
Oracle MySQL <5.5.38 & MariaDB <5.5.28a - Info Disclosure
Oracle MySQL 5.5.38 and earlier, 5.6.19 and earlier, and MariaDB 5.5.28a, 5.3.11, 5.2.13, 5.1.66, and possibly other versions, generates different error messages with different time delays depending on whether a user name exists, which allows remote attackers to enumerate valid usernames.
by kingcope
EIP-2026-118938 EXPLOITDB text VERIFIED
MySQL - 'Stuxnet Technique' Windows Remote System
by kingcope
CVE-2009-0880 EXPLOITDB text
IBM Director < 5.20.3 - Remote Code Execution via CIM Server Path Traversal
Directory traversal vulnerability in the CIM server in IBM Director before 5.20.3 Service Update 2 on Windows allows remote attackers to load and execute arbitrary local DLL code via a .. (dot dot) in a /CIMListener/ URI in an M-POST request.
by kingcope
CVE-2012-6066 EXPLOITDB text VERIFIED
freeSSHd < 1.2.6 - Unauthenticated Authentication Bypass via Crafted Session
freeSSHd.exe in freeSSHd through 1.2.6 allows remote attackers to bypass authentication via a crafted session, as demonstrated by an OpenSSH client with modified versions of ssh.c and sshconnect2.c.
by kingcope
CVE-2012-6066 EXPLOITDB text VERIFIED
freeSSHd < 1.2.6 - Unauthenticated Authentication Bypass via Crafted Session
freeSSHd.exe in freeSSHd through 1.2.6 allows remote attackers to bypass authentication via a crafted session, as demonstrated by an OpenSSH client with modified versions of ssh.c and sshconnect2.c.
by kingcope
CVE-2012-5975 EXPLOITDB text VERIFIED
SSH Tectia Server 6.0.4-6.3.2 - Authentication Bypass via Blank Password
The SSH USERAUTH CHANGE REQUEST feature in SSH Tectia Server 6.0.4 through 6.0.20, 6.1.0 through 6.1.12, 6.2.0 through 6.2.5, and 6.3.0 through 6.3.2 on UNIX and Linux, when old-style password authentication is enabled, allows remote attackers to bypass authentication via a crafted session involving entry of blank passwords, as demonstrated by a root login session from a modified OpenSSH client with an added input_userauth_passwd_changereq call in sshconnect2.c.
by kingcope
CVE-2012-5614 EXPLOITDB text
Oracle MySQL <5.1.67 & <5.5.29 - DoS
Oracle MySQL 5.1.67 and earlier and 5.5.29 and earlier, and MariaDB 5.5.28a and possibly other versions, allows remote authenticated users to cause a denial of service (mysqld crash) via a SELECT command with an UpdateXML command containing XML with a large number of unique, nested elements.
by kingcope
EIP-2026-112711 EXPLOITDB text VERIFIED
TinyMCPUK - 'test' Cross-Site Scripting
by eidelweiss
EIP-2026-101282 EXPLOITDB text VERIFIED
Fortinet FortiWeb (Multiple Appliances) - Multiple Cross-Site Scripting Vulnerabilities
by Benjamin Kunz Mejri
EIP-2026-112242 EXPLOITDB text
SmartCMS - '/index.php?menuitem' SQL Injection / Cross-Site Scripting
by Yakir Wizman
EIP-2026-112052 EXPLOITDB text VERIFIED
SilverStripe CMS 3.0.2 - (Multiple Vulnerabilities) Cross-Site Scripting / Cross-Site Request Forgery
by Sense of Security
EIP-2026-107211 EXPLOITDB text VERIFIED
Free Hosting Manager 2.0 - 'id' SQL Injection
by Yakir Wizman