Exploitdb Exploits

31,394 exploits tracked across all sources.

Sort: Activity Stars
CVE-2012-5897 EXPLOITDB text VERIFIED
Quest InTrust < 10.4.0.853 - Arbitrary File Write via ARDoc ActiveX SaveToFile Method
The (1) SimpleTree and (2) ReportTree classes in the ARDoc ActiveX control (ARDoc.dll) in Quest InTrust 10.4.0.853 and earlier do not properly implement the SaveToFile method, which allows remote attackers to write or overwrite arbitrary files via the bstrFileName argument.
by rgod
CVE-2012-5896 EXPLOITDB text VERIFIED
Quest InTrust < 10.4.0.853 - Remote Code Execution via Annotation Objects ActiveX Control
The Annotation Objects Extension ActiveX control in AnnotateX.dll in Quest InTrust 10.4.0.853 and earlier does not properly implement the Add method, which allows remote attackers to execute arbitrary code via a memory address in the first argument, related to an "uninitialized pointer."
by rgod
CVE-2012-5913 EXPLOITDB text VERIFIED
WordPress Integrator 1.32 - Cross-Site Scripting via redirect_to Parameter
Cross-site scripting (XSS) vulnerability in wp-integrator.php in the WordPress Integrator module 1.32 for WordPress allows remote attackers to inject arbitrary web script or HTML via the redirect_to parameter to wp-login.php.
by Stefan Schurtz
CVE-2012-5907 EXPLOITDB text VERIFIED
TomatoCart 1.2.0 Alpha 2 - Path Traversal via json.php Module Parameter
Directory traversal vulnerability in json.php in TomatoCart 1.2.0 Alpha 2 and possibly earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the module parameter in a "3" action.
by Canberk BOLAT
CVE-2012-5912 EXPLOITDB text VERIFIED
PicoPublisher 2.0 - SQL Injection via id Parameter
Multiple SQL injection vulnerabilities in PicoPublisher 2.0 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) page.php or (2) single.php.
by ZeTH
CVE-2012-1470 EXPLOITDB text VERIFIED
ocPortal < 7.1.6 - Cross-Site Scripting via Code Editor Path or Line Parameters
Multiple cross-site scripting (XSS) vulnerabilities in code_editor.php in ocPortal before 7.1.6 allow remote attackers to inject arbitrary web script or HTML via the (1) path or (2) line parameters.
by High-Tech Bridge
EIP-2026-107920 EXPLOITDB text VERIFIED
Invision Power Board (IP.Board) 4.2.1 - 'searchText' Cross-Site Scripting
by sonyy
EIP-2026-105575 EXPLOITDB text VERIFIED
BoastMachine 3.1 - Cross-Site Request Forgery (Add Admin)
by Dr.NaNo
CVE-2012-4876 EXPLOITDB text VERIFIED
TRENDnet SecurView TV-IP121WN - Buffer Overflow
Stack-based buffer overflow in the UltraMJCam ActiveX Control in TRENDnet SecurView TV-IP121WN Wireless Internet Camera allows remote attackers to execute arbitrary code via a long string to the OpenFileDlg method.
by rgod
CVE-2012-5306 EXPLOITDB text VERIFIED
Camera Stream Client < - Buffer Overflow
Stack-based buffer overflow in the SelectDirectory method in DcsCliCtrl.dll in Camera Stream Client ActiveX Control, as used in D-Link DCS-5605 PTZ IP Network Camera, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string argument.
by rgod
CVE-2012-1604 EXPLOITDB text VERIFIED
NextBBS 0.6 - Cross-Site Scripting via Do Parameter
Cross-site scripting (XSS) vulnerability in NextBBS 0.6 allows remote attackers to inject arbitrary web script or HTML via the do parameter to index.php.
by waraxe
CVE-2012-1603 EXPLOITDB text VERIFIED
NextBBS 0.6 - SQL Injection via curstr id or username Parameter
Multiple SQL injection vulnerabilities in ajaxserver.php in NextBBS 0.6 allow remote attackers to execute arbitrary SQL commands via the (1) curstr parameter in the findUsers function, (2) id parameter in the isIdAvailable function, or (3) username parameter in the getGreetings function.
by waraxe
EIP-2026-107373 EXPLOITDB text VERIFIED
Geeklog 1.8.1 - 'index.php' SQL Injection
by HELLBOY
EIP-2026-100412 EXPLOITDB text VERIFIED
Matthew1471 BlogX - Multiple Cross-Site Scripting Vulnerabilities
by demonalex
CVE-2012-6679 EXPLOITDB text
vBshop - Multiple Persistent Cross-Site Scripting Vulnerabilities
by ToiL
EIP-2026-114652 EXPLOITDB text VERIFIED
Zumset.com FbiLike 1.00 - 'id' Cross-Site Scripting
by Crim3R
CVE-2025-34126 EXPLOITDB HIGH text VERIFIED
RIPS Scanner <0.54 - Path Traversal
A path traversal vulnerability exists in RIPS Scanner version 0.54. The vulnerability allows remote attackers to read arbitrary files on the system with the privileges of the web server by sending crafted HTTP GET requests to the 'windows/code.php' script with a manipulated 'file' parameter. This can lead to disclosure of sensitive information.
by localh0t
CVE-2012-1904 EXPLOITDB text
RealPlayer < 15.0.0 - Denial of Service via Crafted MP4 File
mp4fformat.dll in the QuickTime File Format plugin in RealNetworks RealPlayer 15 and earlier, and RealPlayer SP 1.1.4 Build 12.0.0.756 and earlier, allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted MP4 file.
by Senator of Pirates
EIP-2026-106930 EXPLOITDB text VERIFIED
Event Calendar PHP - 'cal_year' Cross-Site Scripting
by 3spi0n
CVE-2012-1898 EXPLOITDB text
Wolf CMS < 0.75 - Cross-Site Scripting via User Add Parameters
Multiple cross-site scripting (XSS) vulnerabilities in wolfcms/admin/user/add in Wolf CMS 0.75 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) user[name], (2) user[email], or (3) user[username] parameters.
by Ivano Binetti
CVE-2012-1922 EXPLOITDB text
Sitecom WLM-2501 - Cross-Site Request Forgery in Multiple Admin Forms
Multiple cross-site request forgery (CSRF) vulnerabilities in Sitecom WLM-2501 allow remote attackers to hijack the authentication of administrators for requests that modify settings for (1) Mac Filtering via admin/formFilter, (2) IP/Port Filtering via formFilter, (3) Port Forwarding via formPortFw, (4) Wireless Access Control via admin/formWlAc, (5) Wi-Fi Protected Setup via formWsc, (6) URL Blocking Filter via formURL, (7) Domain Blocking Filter via formDOMAINBLK, and (8) IP Address ACL Filter via admin/formACL in goform/, different vectors than CVE-2012-1921.
by Ivano Binetti
CVE-2012-1669 EXPLOITDB text VERIFIED
phpmoneybooks < 1.0.2 - Path Traversal via Module Parameter
Directory traversal vulnerability in index.php in phpMoneyBooks before 1.0.3 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the module parameter.
by Mark Stanislav
CVE-2012-4869 EXPLOITDB text VERIFIED
FreePBX < 2.10 - Remote Code Execution via callmenum Parameter
The callme_startcall function in recordings/misc/callme_page.php in FreePBX 2.9, 2.10, and earlier allows remote attackers to execute arbitrary commands via the callmenum parameter in a c action.
by Martin Tschirsich
EIP-2026-118617 EXPLOITDB text VERIFIED
Google Talk - 'gtalk://' Deprecated URI Handler Injection
by rgod
CVE-2012-0284 EXPLOITDB text VERIFIED
Cisco Linksys PlayerPT <1.0.0.15 - Buffer Overflow
Stack-based buffer overflow in the SetSource method in the Cisco Linksys PlayerPT ActiveX control 1.0.0.15 in PlayerPT.ocx on the Cisco WVC200 Wireless-G PTZ Internet video camera allows remote attackers to execute arbitrary code via a long URL in the first argument (aka the sURL argument).
by rgod