Exploitdb Exploits
31,344 exploits tracked across all sources.
Micro CMS 1.0 - 'name' HTML Injection (2)
by SecPod Research
Sawmill Enterprise < 8.1.7.3 - Multiple Vulnerabilities
by SEC Consult
Oracle Java SE/Jav for Bus <6-5 - Info Disclosure
Unspecified vulnerability in the Networking component in Oracle Java SE and Java for Business 6 Update 21 and 5.0 Update 25 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the October 2010 CPU. Oracle has not commented on claims from a reliable downstream vendor that this is related to missing validation of request headers in the HttpURLConnection class when they are set by applets, which allows remote attackers to bypass the intended security policy.
by Roberto Suggi Liverani
libsmi 0.4.8 - Buffer Overflow
Buffer overflow in the smiGetNode function in lib/smi.c in libsmi 0.4.8 allows context-dependent attackers to execute arbitrary code via an Object Identifier (aka OID) represented as a numerical string containing many components separated by . (dot) characters.
by Core Security
Oracle iPlanet Web Server <7.0 - Info Disclosure
Unspecified vulnerability in the Oracle iPlanet Web Server (Sun Java System Web Server) component in Oracle Sun Products Suite 6.1 and 7.0 allows remote attackers to affect integrity via unknown vectors related to Web Container.
by Roberto Suggi Liverani
Hanso Converter 1.4.0 - '.ogg' Denial of Service
by anT!-Tr0J4n
Phpcheckz - SQL Injection
SQL injection vulnerability in chart.php in phpCheckZ 1.1.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the id parameter.
by Salvatore Fresta
4site Cms < 2.6 - SQL Injection
SQL injection vulnerability in catalog/index.shtml in 4site CMS 2.6, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the cat parameter. NOTE: the i and th vectors are already covered by CVE-2009-0646.
by High-Tech Bridge SA
GeekLog 1.7.0 - 'FCKeditor' Arbitrary File Upload
by Kubanezi AHG
Devellion Cubecart - SQL Injection
SQL injection vulnerability in index.php in CubeCart 2.0.1 allows remote attackers to execute arbitrary SQL commands via the cat_id parameter.
by X_AviaTique_X
GNU C Library <2.12-1.7.el6_0.3 - Privilege Escalation
Multiple untrusted search path vulnerabilities in elf/dl-object.c in certain modified versions of the GNU C Library (aka glibc or libc6), including glibc-2.5-49.el5_5.6 and glibc-2.12-1.7.el6_0.3 in Red Hat Enterprise Linux, allow local users to gain privileges via a crafted dynamic shared object (DSO) in a subdirectory of the current working directory during execution of a (1) setuid or (2) setgid program that has $ORIGIN in (a) RPATH or (b) RUNPATH within the program itself or a referenced library. NOTE: this issue exists because of an incorrect fix for CVE-2010-3847.
by Tavis Ormandy
Aspindir Kisisel Radyo Script - SQL Injection
SQL injection vulnerability in radyo.asp in Kisisel Radyo Script allows remote attackers to execute arbitrary SQL commands via the Id parameter.
by FuRty
Microsoft Windows 2000 - Access Control
The SMB implementation in the Server service in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not use a sufficient source of entropy, which allows remote attackers to obtain access to files and other SMB resources via a large number of authentication requests, related to server-generated challenges, certain "duplicate values," and spoofing of an authentication token, aka "SMB NTLM Authentication Lack of Entropy Vulnerability."
by Hernan Ochoa
Opera 10.63 - SVG Animation Element Denial of Service
by fla
Aspindir Kisisel Radyo Script - Access Control
Kisisel Radyo Script stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for sevvo/eco23.mdb.
by FuRty
Microsoft Internet Explorer <8 - RCE
mshtmled.dll in Microsoft Internet Explorer 7 and 8 allows remote attackers to execute arbitrary code via a crafted Microsoft Office document that causes the HtmlDlgHelper class destructor to access uninitialized memory, aka "Uninitialized Memory Corruption Vulnerability."
by Core Security
IBM Soliddb < 6.5.0.3 - Denial of Service
solid.exe in IBM solidDB 6.5.0.3 and earlier does not properly perform a recursive call to a certain function upon receiving packet data containing a single integer field, which allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a TCP session on port 1315.
by Luigi Auriemma
IBM Soliddb < 6.5.0.3 - Resource Management Error
Stack consumption vulnerability in solid.exe in IBM solidDB 6.5.0.3 and earlier allows remote attackers to cause a denial of service (memory consumption and daemon crash) by connecting to TCP port 1315 and sending a packet with many integer fields, which trigger many recursive calls of a certain function.
by Luigi Auriemma
Rocket Software UniData 7.2.7.3806 - Denial of Service
by Luigi Auriemma
Realflex Realwin - Memory Corruption
Multiple stack-based buffer overflows in DATAC RealWin 2.0 Build 6.1.8.10 and earlier allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long (1) SCPC_INITIALIZE, (2) SCPC_INITIALIZE_RF, or (3) SCPC_TXTEVENT packet. NOTE: it was later reported that 1.06 is also affected by one of these requests.
by Luigi Auriemma
eXV2 CMS - Multiple Cross-Site Scripting Vulnerabilities
by LiquidWorm
By Source