Exploitdb Exploits

CVE-2011-1984 EXPLOITDB text VERIFIED

Microsoft WINS - Privilege Escalation

WINS in Microsoft Windows Server 2003 SP2 and Server 2008 SP2, R2, and R2 SP1 allows local users to gain privileges by sending crafted packets over the loopback interface, aka "WINS Local Elevation of Privilege Vulnerability."

by Core Security

View

CVE-2012-6625 EXPLOITDB text VERIFIED

Vasthtml Forumpress < 1.7.4 - SQL Injection

SQL injection vulnerability in fs-admin/fs-admin.php in the ForumPress WP Forum Server plugin before 1.7.4 for WordPress allows remote attackers to execute arbitrary SQL commands via the groupid parameter in an editgroup action.

by Miroslav Stampar

View

EIP-2026-106557 EXPLOITDB text

dotProject 2.1.5 - SQL Injection

by sherl0ck_

View

EIP-2026-112742 EXPLOITDB text

TomatoCart 1.1 - (Authenticated) Local File Inclusion

by brain[pillow]

View

EIP-2026-112207 EXPLOITDB text

Slaed CMS - Code Execution

by brain[pillow]

View

EIP-2026-110767 EXPLOITDB text

PHP Support Tickets 2.2 - Code Execution

by brain[pillow]

View

EIP-2026-110473 EXPLOITDB text VERIFIED

Papoo CMS Light 4.0 - Multiple Cross-Site Scripting Vulnerabilities

by Stefan Schurtz

View

EIP-2026-109880 EXPLOITDB text

NetCat CMS - Multiple Vulnerabilities

by brain[pillow]

View

EIP-2026-105276 EXPLOITDB text

AstroCMS - Multiple Vulnerabilities

by brain[pillow]

View

EIP-2026-100470 EXPLOITDB text VERIFIED

Orion Network Performance Monitor 10.1.3 - 'CustomChart.aspx' Cross-Site Scripting

by Gustavo Roberto

View

EIP-2026-114126 EXPLOITDB text VERIFIED

WordPress Plugin Tune Library 2.17 - SQL Injection

by Miroslav Stampar

View

EIP-2026-114410 EXPLOITDB text

Xataface WebAuction and Xataface Librarian DB - Multiple Vulnerabilities

by SecPod Research

View

EIP-2026-114251 EXPLOITDB text VERIFIED

WordPress Plugin WP-Filebase Download Manager 0.2.9 - SQL Injection

by Miroslav Stampar

View

CVE-2010-4839 EXPLOITDB text

WordPress Event Registration <5.32 - SQL Injection

SQL injection vulnerability in the Event Registration plugin 5.32 and earlier for WordPress allows remote attackers to execute arbitrary SQL commands via the event_id parameter in a register action.

by serk

View

EIP-2026-113519 EXPLOITDB text VERIFIED

WordPress Plugin A to Z Category Listing 1.3 - SQL Injection

by Miroslav Stampar

View

CVE-2011-3394 EXPLOITDB text VERIFIED

MYRE Real Estate Software - SQL Injection

SQL injection vulnerability in findagent.php in MYRE Real Estate Software allows remote attackers to execute arbitrary SQL commands via the page parameter.

by SecPod Research

View

CVE-2011-2732 EXPLOITDB text VERIFIED

Vmware Springsource Spring Security < 2.0.6 - Code Injection

CRLF injection vulnerability in the logout functionality in VMware SpringSource Spring Security before 2.0.7 and 3.0.x before 3.0.6 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the spring-security-redirect parameter.

by David Mas

View

CVE-2011-3483 EXPLOITDB text VERIFIED

Wireshark <1.6.2 - DoS

Wireshark 1.6.x before 1.6.2 allows remote attackers to cause a denial of service (application crash) via a malformed capture file that leads to an invalid root tvbuff, related to a "buffer exception handling vulnerability."

by Wireshark

View

EIP-2026-113947 EXPLOITDB text VERIFIED

WordPress Plugin Paid Downloads 2.01 - SQL Injection

by Miroslav Stampar

View

EIP-2026-113640 EXPLOITDB text VERIFIED

WordPress Plugin Community Events 1.2.1 - SQL Injection

by Miroslav Stampar

View

EIP-2026-112200 EXPLOITDB text VERIFIED

SkaDate - 'blogs.php' Cross-Site Scripting

by sonyy

View

EIP-2026-111356 EXPLOITDB text VERIFIED

Pluck CMS 4.7 - Multiple Local File Inclusion / File Disclosure Vulnerabilities

by Bl4k3

View

EIP-2026-110265 EXPLOITDB text

OpenCart 1.5.1.2 - Blind SQL Injection

by RiRes Walid

View

EIP-2026-107818 EXPLOITDB text VERIFIED

In-link 2.3.4/5.1.3 RC1 - 'cat' SQL Injection

by SubhashDasyam

View

EIP-2026-105149 EXPLOITDB text

AM4SS 1.2 - Cross-Site Request Forgery (Add Admin)

by red virus

View