Exploitdb Exploits

31,394 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-107250 EXPLOITDB text VERIFIED
Friends in War Make or Break 1.3 - Authentication Bypass
by d3b4g
CVE-2012-5700 EXPLOITDB text VERIFIED
Baby Gekko < 1.2.2 - Cross-Site Scripting via Admin ID or Login Credentials
Multiple cross-site scripting (XSS) vulnerabilities in Baby Gekko before 1.2.2f allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter to admin/index.php or the (2) username or (3) password parameter in blocks/loginbox/loginbox.template.php to index.php. NOTE: some of these details are obtained from third party information.
by High-Tech Bridge SA
CVE-2012-6588 EXPLOITDB text VERIFIED
myre_business_directory - SQL Injection via links.php cat Parameter
SQL injection vulnerability in links.php in MYRE Business Directory allows remote attackers to execute arbitrary SQL commands via the cat parameter.
by d3b4g
CVE-2012-6586 EXPLOITDB text VERIFIED
MYRE Vacation Rental Software - SQL Injection via Garage or Bathrooms Parameter
Multiple SQL injection vulnerabilities in MYRE Vacation Rental Software allow remote attackers to execute arbitrary SQL commands via the (1) garage1 or (2) bathrooms1 parameter to vacation/1_mobile/search.php, or (3) unspecified input to vacation/widgate/request_more_information.php.
by d3b4g
CVE-2012-6584 EXPLOITDB text VERIFIED
MYRE Realty Manager - SQL Injection via bathrooms1 Parameter
Multiple SQL injection vulnerabilities in MYRE Realty Manager allow remote attackers to execute arbitrary SQL commands via the bathrooms1 parameter to (1) demo2/search.php or (2) search.php.
by d3b4g
CVE-2012-10033 EXPLOITDB CRITICAL text VERIFIED
Narcissus backend.php - release Parameter Command Injection
Narcissus is vulnerable to remote code execution via improper input handling in its image configuration workflow. Specifically, the backend.php script fails to sanitize the release parameter before passing it to the configure_image() function. This function invokes PHP’s passthru() with the unsanitized input, allowing attackers to inject arbitrary system commands. Exploitation occurs via a crafted POST request, resulting in command execution under the web server’s context.
by dun
EIP-2026-115963 EXPLOITDB text VERIFIED
Novell Groupwise Internet Agent - LDAP BIND Request Overflow
by Francis Provencher
CVE-2012-6587 EXPLOITDB text VERIFIED
MYRE Vacation Rental Software - Cross-Site Scripting via link_idd Parameter
Cross-site scripting (XSS) vulnerability in vacation/1_mobile/alert_members.php in MYRE Vacation Rental Software allows remote attackers to inject arbitrary web script or HTML via the link_idd parameter in a login action.
by d3b4g
CVE-2012-6589 EXPLOITDB text VERIFIED
MYRE Business Directory - Cross-Site Scripting via Search Look Parameter
Cross-site scripting (XSS) vulnerability in search.php in MYRE Business Directory allows remote attackers to inject arbitrary web script or HTML via the look parameter.
by d3b4g
CVE-2012-6585 EXPLOITDB text VERIFIED
myre_realty_manager - Cross-Site Scripting via search.php cat_id1 Parameter
Cross-site scripting (XSS) vulnerability in search.php in MYRE Realty Manager allows remote attackers to inject arbitrary web script or HTML via the cat_id1 parameter.
by d3b4g
EIP-2026-107257 EXPLOITDB text VERIFIED
friendsinwar FAQ Manager - SQL Injection / Authentication Bypass
by d3b4g
CVE-2006-0755 EXPLOITDB MEDIUM text VERIFIED
dotProject <= 2.0.1 - Remote File Inclusion via baseDir and dPconfig Parameters
Multiple PHP remote file include vulnerabilities in dotProject 2.0.1 and earlier, when register_globals is enabled, allow remote attackers to execute arbitrary commands via the baseDir parameter in (1) db_adodb.php, (2) db_connect.php, (3) session.php, (4) vw_usr_roles.php, (5) calendar.php, (6) date_format.php, and (7) tasks/gantt.php; and the dPconfig[root_dir] parameter in (8) projects/gantt.php, (9) gantt2.php, and (10) vw_files.php. NOTE: the vendor disputes this issue, stating that the product documentation clearly recommends that the system administrator disable register_globals, and that the check.php script warns against this setting. Also, the vendor says that the protection.php/siteurl vector is incorrect because protection.php does not exist in the product
by dun
CVSS 5.6
EIP-2026-116664 EXPLOITDB text VERIFIED
Zoner Photo Studio 15 b3 - Buffer Overflow (PoC)
by Vulnerability-Lab
EIP-2026-115772 EXPLOITDB text VERIFIED
Microsoft Visio 2010 - Crash (PoC)
by coolkaveh
CVE-2009-5022 EXPLOITDB text VERIFIED
libtiff < 3.9.5 - Heap-based Buffer Overflow in OJPEG Decoder
Heap-based buffer overflow in tif_ojpeg.c in the OJPEG decoder in LibTIFF before 3.9.5 allows remote attackers to execute arbitrary code via a crafted TIFF file.
by Francis Provencher
EIP-2026-115461 EXPLOITDB text VERIFIED
IrfanView - '.RLE' Image Decompression Buffer Overflow
by Francis Provencher
EIP-2026-106939 EXPLOITDB text VERIFIED
Eventy CMS 1.8 Plus - Multiple Vulnerabilities
by Vulnerability-Lab
EIP-2026-115762 EXPLOITDB text VERIFIED
Microsoft Publisher 2013 - Crash (PoC)
by coolkaveh
EIP-2026-105385 EXPLOITDB text
Bananadance Wiki b2.2 - Multiple Vulnerabilities
by Vulnerability-Lab
EIP-2026-115654 EXPLOITDB text VERIFIED
Microsoft Excel 2007 - WriteAV Crash (PoC)
by coolkaveh
EIP-2026-114334 EXPLOITDB text VERIFIED
WordPress Theme Kakao - 'ID' SQL Injection
by sil3nt
EIP-2026-113957 EXPLOITDB text VERIFIED
WordPress Plugin PHP Event Calendar - 'cid' SQL Injection
by Ashiyane Digital Security Team
EIP-2026-113714 EXPLOITDB text VERIFIED
WordPress Plugin Eco-annu - 'eid' SQL Injection
by Ashiyane Digital Security Team
EIP-2026-109884 EXPLOITDB text VERIFIED
NetOffice Dwins 1.4p3 - SQL Injection
by dun
CVE-2012-4949 EXPLOITDB text VERIFIED
ESRI ArcGIS Server 10.1 - Authenticated SQL Injection via REST Service Query Where Parameter
SQL injection vulnerability in ESRI ArcGIS 10.1 allows remote authenticated users to execute arbitrary SQL commands via the where parameter to a query URI for a REST service.
by anonymous