Exploitdb Exploits
31,344 exploits tracked across all sources.
DiamondList 0.1.6 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in DiamondList 0.1.6, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) category[description] parameter to user/main/update_category, which is not properly handled by _app/views/categories/index.html.erb; and the (2) setting[site_title] parameter to user/main/update_settings, which is not properly handled by _app/views/settings/_list_settings.rhtml.
by High-Tech Bridge SA
DiamondList 0.1.6 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in DiamondList 0.1.6, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) category[description] parameter to user/main/update_category, which is not properly handled by _app/views/categories/index.html.erb; and the (2) setting[site_title] parameter to user/main/update_settings, which is not properly handled by _app/views/settings/_list_settings.rhtml.
by High-Tech Bridge SA
cCTiddly 1.7.4-1.7.6 - RCE
Multiple PHP remote file inclusion vulnerabilities in ccTiddly 1.7.4 and 1.7.6 allow remote attackers to execute arbitrary PHP code via a URL in the cct_base parameter to (1) index.php; (2) handle/proxy.php; (3) header.php, (4) include.php, and (5) workspace.php in includes/; and (6) plugins/RSS/files/rss.php.
by eidelweiss
APBoard <2.1.0 - SQL Injection
SQL injection vulnerability in board/board.php in APBoard Developers APBoard 2.1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2006-3078.
by secret
Uzbl <2010.08.05 - Command Injection
The default configuration of the <Button2> binding in Uzbl before 2010.08.05 does not properly use the @SELECTED_URI feature, which allows user-assisted remote attackers to execute arbitrary commands via a crafted HREF attribute of an A element in an HTML document.
by Chuzz
DT Centrepiece 4.5 - Cross-Site Scripting / Security Bypass
by High-Tech Bridge SA
Apple Iphone OS - Memory Corruption
Multiple stack-based buffer overflows in the cff_decoder_parse_charstrings function in the CFF Type2 CharStrings interpreter in cff/cffgload.c in FreeType before 2.4.2, as used in Apple iOS before 4.0.2 on the iPhone and iPod touch and before 3.2.2 on the iPad, allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted CFF opcodes in embedded fonts in a PDF document, as demonstrated by JailbreakMe. NOTE: some of these details are obtained from third party information.
by jailbreakme
HP OpenView Network Node Manager <7.53 - Buffer Overflow
Stack-based buffer overflow in webappmon.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long OvJavaLocale value in a cookie.
by Nahuel Riva
Progitek Visionner Photos 2.0 - File Format Denial of Service
by antrhacks
Avast! Internet Security <5.0 - DoS
Integer overflow in aswFW.sys 5.0.594.0 in Avast! Internet Security 5.0 Korean Trial allows local users to cause a denial of service (memory corruption and panic) via a crafted IOCTL_ASWFW_COMM_PIDINFO_RESULTS DeviceIoControl request to \\.\aswFW.
by x90c
WordPress Plugin NextGEN Smooth Gallery 0.12 - Blind SQL Injection
by kaMtiEz
Joomla! Component com_jigsaw - 'Controller' Directory Traversal
by FL0RiX
Mysql - SQL Injection
The executable comment feature in MySQL 5.0.x before 5.0.93 and 5.1.x before 5.1.50, when running in certain slave configurations in which the slave is running a newer version than the master, allows remote attackers to execute arbitrary SQL commands via custom comments.
by Libing Song
Oracle Mysql < 5.1.48 - Command Injection
MySQL before 5.1.48 allows remote authenticated users with alter database privileges to cause a denial of service (server crash and database loss) via an ALTER DATABASE command with a #mysql50# string followed by a . (dot), .. (dot dot), ../ (dot dot slash) or similar sequence, and an UPGRADE DATA DIRECTORY NAME command, which causes MySQL to move certain directories to the server data directory.
by Shane Bester
Apple iOS <4.0.2-3.2.2 - Privilege Escalation
Integer overflow in IOSurface in Apple iOS before 4.0.2 on the iPhone and iPod touch, and before 3.2.2 on the iPad, allows local users to gain privileges via vectors involving IOSurface properties, as demonstrated by JailbreakMe.
by jailbreakme
EMC Celerra Network Attached Storage - Unauthenticated Arbitrary File Access via NFS Requests
The EMC Celerra Network Attached Storage (NAS) appliance accepts external network traffic to IP addresses intended for an intranet network within the appliance, which allows remote attackers to read, create, or modify arbitrary files in the user data directory via NFS requests.
by Trustwave's SpiderLabs
MyIT CRM - Multiple Cross-Site Scripting Vulnerabilities
by Juan Manuel Garcia
MyIT CRM - 'index.php' Multiple Cross-Site Scripting Vulnerabilities
by Juan Manuel Garcia
Joomla! com_camelcitydb2 2.2 - SQL Injection
SQL injection vulnerability in the CamelcityDB (com_camelcitydb2) component 2.2 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter to index.php.
by Amine_92
Intellinet IP Camera MNC-L10 - Authentication Bypass
by Magnefikko
Joomla! Component com_spielothek 1.6.9 - Multiple Blind SQL Injections
by Salvatore Fresta
By Source