Exploitdb Exploits

CVE-2010-1748 EXPLOITDB text VERIFIED

Apple Cups < 1.4.3 - Memory Corruption

The cgi_initialize_string function in cgi-bin/var.c in the web interface in CUPS before 1.4.4, as used on Apple Mac OS X 10.5.8, Mac OS X 10.6 before 10.6.4, and other platforms, does not properly handle parameter values containing a % (percent) character without two subsequent hex characters, which allows context-dependent attackers to obtain sensitive information from cupsd process memory via a crafted request, as demonstrated by the (1) /admin?OP=redirect&URL=% and (2) /admin?URL=/admin/&OP=% URIs.

by Luca Carettoni

View

CVE-2010-5045 EXPLOITDB text VERIFIED

Smart ASP Survey - XSS

Cross-site scripting (XSS) vulnerability in poll/default.asp in Smart ASP Survey allows remote attackers to inject arbitrary web script or HTML via the catid parameter.

by L0rd CrusAd3r

View

EIP-2026-100538 EXPLOITDB text VERIFIED

SAS Hotel Management System - 'notfound' SQL Injection

by L0rd CrusAd3r

View

EIP-2026-100526 EXPLOITDB text VERIFIED

Restaurant Listing with Online Ordering - SQL Injection

by L0rd CrusAd3r

View

EIP-2026-100372 EXPLOITDB text VERIFIED

IISWorks FileMan - fileman.mdb Remote User Database Disclosure

by j0fer

View

EIP-2026-100180 EXPLOITDB text VERIFIED

Business Classified Listing - SQL Injection

by L0rd CrusAd3r

View

EIP-2026-100100 EXPLOITDB text VERIFIED

Acuity CMS 2.7.1 - SQL Injection

by L0rd CrusAd3r

View

CVE-2010-1932 EXPLOITDB text VERIFIED

Xnview - Memory Corruption

Heap-based buffer overflow in XnView 1.97.4 and possibly earlier allows remote attackers to execute arbitrary code via a MultiBitMap (MBM) file with a Paint Data Section that contains a malformed Encoding field.

by Mauro Olea

View

EIP-2026-116343 EXPLOITDB text VERIFIED

SumatraPDF 1.1 - Denial of Service (PoC)

by Matthew Bergin

View

CVE-2010-2089 EXPLOITDB text VERIFIED

Python < 2.5.6 - Out-of-Bounds Write

The audioop module in Python 2.7 and 3.2 does not verify the relationships between size arguments and byte string lengths, which allows context-dependent attackers to cause a denial of service (memory corruption and application crash) via crafted arguments, as demonstrated by a call to audioop.reverse with a one-byte string, a different vulnerability than CVE-2010-1634.

by haypo

View

CVE-2010-4971 EXPLOITDB text VERIFIED

VideoWhisper PHP - XSS

Cross-site scripting (XSS) vulnerability in VideoWhisper PHP 2 Way Video Chat component for Joomla! allows remote attackers to inject arbitrary web script or HTML via the r parameter to index.php.

by Sid3^effects

View

EIP-2026-109543 EXPLOITDB text VERIFIED

MODx 1.0.3 - 'index.php' Multiple SQL Injections

by High-Tech Bridge SA

View

EIP-2026-109404 EXPLOITDB text VERIFIED

Membership Site Script - SQL Injection

by Valentin

View

EIP-2026-109230 EXPLOITDB text VERIFIED

Lyrics Script - SQL Injection / Cross-Site Scripting

by Valentin

View

EIP-2026-108123 EXPLOITDB text VERIFIED

Joke Website Script - SQL Injection / Cross-Site Scripting

by Valentin

View

EIP-2026-106621 EXPLOITDB text VERIFIED

E-Book Store - SQL Injection

by Valentin

View

EIP-2026-106343 EXPLOITDB text VERIFIED

Daily Inspirational Quotes Script - SQL Injection

by Valentin

View

CVE-2010-2631 EXPLOITDB text VERIFIED

LibTIFF 3.9.0 - DoS

LibTIFF 3.9.0 ignores tags in certain situations during the first stage of TIFF file processing and does not properly handle this during the second stage, which allows remote attackers to cause a denial of service (application crash) via a crafted file, a different vulnerability than CVE-2010-2481.

by Tom Lane

View

EIP-2026-101485 EXPLOITDB text VERIFIED

Trend Micro Interscan Web Security Virtual Appliance - Multiple Vulnerabilities

by Ivan Huertas

View

CVE-2010-5007 EXPLOITDB text VERIFIED

UTStats Beta <4 - XSS

Cross-site scripting (XSS) vulnerability in pages/match_report.php in UTStats Beta 4 and earlier allows remote attackers to inject arbitrary web script or HTML via the mid parameter.

by LuM Member

View

CVE-2010-2334 EXPLOITDB text VERIFIED

Yamamah - Path Traversal

Directory traversal vulnerability in themes/default/download.php in Yamamah Photo Gallery 1.00, as distributed before 20100618, allows remote attackers to read arbitrary files via a .. (dot dot) in the download parameter.

by mat

View

CVE-2010-1300 EXPLOITDB text VERIFIED

Yamamah (Dove Photo Album) 1.00 - SQL Injection

SQL injection vulnerability in index.php in Yamamah (aka Dove Photo Album) 1.00 allows remote attackers to execute arbitrary SQL commands via the calbums parameter.

by CoBRa_21

View

CVE-2010-5009 EXPLOITDB text VERIFIED

UTStats Beta <4 - SQL Injection

SQL injection vulnerability in index.php in UTStats Beta 4 and earlier allows remote attackers to execute arbitrary SQL commands via the pid parameter in a matchp action.

by LuM Member

View

EIP-2026-111470 EXPLOITDB text

Pre Classified Listing - SQL Injection

by L0rd CrusAd3r

View

EIP-2026-111184 EXPLOITDB text

PHPplanner PHP Planner 0.4 - Multiple Vulnerabilities

by cp77fk4r

View