Exploitdb Exploits
31,351 exploits tracked across all sources.
VeryDOC PDF Viewer OCX Control <2.0.0.1 - Buffer Overflow
Heap-based buffer overflow in the PDFVIEW.PdfviewCtrl.1 ActiveX control in pdfview.ocx 2.0.0.1 in VeryDOC PDF Viewer OCX Control allows remote attackers to execute arbitrary code via a long first argument to the OpenPDF method. NOTE: some of these details are obtained from third party information.
by r0ut3r
ClipShare Pro <2008 - SQL Injection
SQL injection vulnerability in channel_detail.php in ClipShare Pro 4, and 2006 through 2007, allows remote attackers to execute arbitrary SQL commands via the chid parameter.
by snakespc
TurnkeyForms Text Link Sales - SQL Injection
SQL injection vulnerability in admin.php in TurnkeyForms Text Link Sales allows remote attackers to execute arbitrary SQL commands via the id parameter.
by ZoRLu
Microsoft Windows - Remote Code Execution via SMB Credential Reflection
Microsoft Windows 2000 Gold through SP4, XP Gold through SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote SMB servers to execute arbitrary code on a client machine by replaying the NTLM credentials of a client user, as demonstrated by backrush, aka "SMB Credential Reflection Vulnerability." NOTE: some reliable sources report that this vulnerability exists because of an insufficient fix for CVE-2000-0834.
by Andres Tarasco
X7 Chat 2.0.5 - SQL Injection via Login Password Field
SQL injection vulnerability in the login page in X7 Chat 2.0.5 allows remote attackers to execute arbitrary SQL commands via the password field.
by ZoRLu
TurnkeyForms Text Link Sales - Cross-Site Scripting via admin.php id Parameter
Cross-site scripting (XSS) vulnerability in admin.php in TurnkeyForms Text Link Sales allows remote attackers to inject arbitrary web script or HTML via the id parameter.
by ZoRLu
TurnkeyForms Text Link Sales - Unauthenticated Authentication Bypass via Direct admin.php Request
admin.php in TurnkeyForms Text Link Sales allows remote attackers to bypass authentication and gain administrative privileges via a direct request.
by G4N0K
GS Real Estate Portal US/International Module - Multiple Vulnerabilities
by ZoRLu
GS Real Estate Portal - Multiple SQL Injections
by InjEctOr5
AlstraSoft Web Host Directory - SQL Injection
SQL injection vulnerability in the login directory in AlstraSoft Web Host Directory allows remote attackers to execute arbitrary SQL commands via the pwd parameter.
by G4N0K
Bankoi WebHosting Control Panel 1.20 - SQL Injection via Login Username or Password Field
Multiple SQL injection vulnerabilities in login.asp in Bankoi WebHosting Control Panel 1.20 allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password field.
by R3d-D3V!L
ScriptsFeed Recipes Listing Portal - Authenticated Remote Code Execution via Recipe Photo Upload
Unrestricted file upload vulnerability in ScriptsFeed Recipes Listing Portal allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a recipe photo, then accessing it via a direct request to the file in pictures/.
by ZoRLu
ScriptsFeed Realtor Classifieds System - Authenticated Remote Code Execution via Profile Logo Upload
Unrestricted file upload vulnerability in ScriptsFeed Realtor Classifieds System (aka Real Estate Classifieds) allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a profile logo, then accessing it via a direct request to the file in re_images/.
by ZoRLu
Pi3Web < 2.0.3_pl1 - Denial of Service via ISAPI Directory File Request
Pi3Web 2.0.3 before PL2, when installed on Windows as a desktop application and without using the Pi3Web/Conf/Intenet.pi3, allows remote attackers to cause a denial of service (crash or hang) and obtain the full pathname of the server via a request to a file in the ISAPI directory that is not an executable DLL, which triggers the crash when the DLL load fails, as demonstrated using Isapi\users.txt.
by Hamid Ebadi
ScriptsFeed Auto Classifieds - Authenticated Arbitrary File Upload via Profile Logo
Unrestricted file upload vulnerability in ScriptsFeed Auto Classifieds allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a profile logo, then accessing it via a direct request to the file in cars_images/.
by ZoRLu
ScriptsFeed Auto Classifieds - Authenticated Arbitrary File Upload via Profile Logo
Unrestricted file upload vulnerability in ScriptsFeed Auto Classifieds allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a profile logo, then accessing it via a direct request to the file in cars_images/.
by ZoRLu
ScriptsFeed Auto Classifieds - Authenticated Arbitrary File Upload via Profile Logo
Unrestricted file upload vulnerability in ScriptsFeed Auto Classifieds allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a profile logo, then accessing it via a direct request to the file in cars_images/.
by ZoRLu
BandSite CMS 1.1.4 - Unauthenticated Authentication Bypass via login_auth Cookie
BandSite CMS 1.1.4 allows remote attackers to bypass authentication and gain administrative access by setting the login_auth cookie to true.
by Stack
Netgear WGR614v9 - Denial of Service via Question Mark in Request
The web management interface in Netgear WGR614v9 allows remote attackers to cause a denial of service (crash) via a request that contains a question mark ("?").
by sr.
TurnkeyForms Web Hosting Directory - Unauthenticated Sensitive Information Exposure via Direct Database Backup Request
TurnkeyForms Web Hosting Directory stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain a database backup via a direct request to admin/backup/db.
by G4N0K
TurnkeyForms Web Hosting Directory - Unauthenticated Authentication Bypass via Cookie Manipulation
TurnkeyForms Web Hosting Directory allows remote attackers to bypass authentication and (1) gain administrative privileges by setting the adm cookie to 1 or (2) gain privileges as another user by setting the logged cookie to the target username.
by G4N0K
TurnkeyForms Web Hosting Directory - SQL Injection via Login Password Field
SQL injection vulnerability in the login functionality in TurnkeyForms Web Hosting Directory allows remote attackers to execute arbitrary SQL commands via the password field.
by G4N0K
TurnkeyForms Local Classifieds - Unauthenticated Authentication Bypass via Direct Admin Page Access
TurnkeyForms Local Classifieds allows remote attackers to bypass authentication and gain administrative access via a direct request to Site_Admin/admin.php.
by G4N0K
Quick Poll Script - SQL Injection via id Parameter
SQL injection vulnerability in code.php in Quick Poll Script allows remote attackers to execute arbitrary SQL commands via the id parameter.
by Hussin X
AlstraSoft Web Host Directory - SQL Injection
SQL injection vulnerability in the login directory in AlstraSoft Web Host Directory allows remote attackers to execute arbitrary SQL commands via the pwd parameter.
by ZoRLu
By Source