Exploitdb Exploits

50,076 exploits tracked across all sources.

Sort: Activity Stars
CVE-2015-6512 EXPLOITDB php
FreiChat 9.6 - SQL Injection via Time Parameter
SQL injection vulnerability in the get_messages function in server/plugins/chatroom/chatroom.php in FreiChat 9.6 allows remote attackers to execute arbitrary SQL commands via the time parameter to server/freichat.php.
by Kacper Szurek
CVE-2015-5530 EXPLOITDB text
Free Reprintables ArticleFR 3.0.6 - CSRF
Multiple cross-site request forgery (CSRF) vulnerabilities in Free Reprintables ArticleFR 3.0.6 allow remote attackers to hijack the authentication of administrators for requests that add an administrator account via a request to dashboard/users/create/.
by LiquidWorm
CVE-2015-6519 EXPLOITDB text
Arab Portal 3 - SQL Injection via showemail Parameter
SQL injection vulnerability in Arab Portal 3 allows remote attackers to execute arbitrary SQL commands via the showemail parameter in a signup action to members.php.
by ali ahmady
CVE-2015-7709 EXPLOITDB ruby VERIFIED
Western Digital Arkeia <11.0.12 - Command Injection
The arkeiad daemon in the Arkeia Backup Agent in Western Digital Arkeia 11.0.12 and earlier allows remote attackers to bypass authentication and execute arbitrary commands via a series of crafted requests involving the ARKFS_EXEC_CMD operation.
by Metasploit
EIP-2026-104121 EXPLOITDB ruby VERIFIED
VNC Keyboard - Remote Code Execution (Metasploit)
by Metasploit
CVE-2015-2857 EXPLOITDB CRITICAL ruby VERIFIED
Accellion File Transfer Appliance < 9_11_200 - Remote Code Execution via oauth_token Parameter
Accellion File Transfer Appliance before FTA_9_11_210 allows remote attackers to execute arbitrary code via shell metacharacters in the oauth_token parameter.
by Metasploit
CVSS 9.8
EIP-2026-115952 EXPLOITDB text VERIFIED
Notepad++ 6.7.3 - Crash (PoC)
by Rahul Pratap Singh
EIP-2026-113667 EXPLOITDB text VERIFIED
WordPress Plugin CP Multi View Event Calendar 1.1.7 - SQL Injection
by i0akiN SEC-LABORATORY
EIP-2026-113666 EXPLOITDB text VERIFIED
WordPress Plugin CP Image Store with Slideshow 1.0.5 - Arbitrary File Download
by i0akiN SEC-LABORATORY
EIP-2026-103690 EXPLOITDB perl
UPNPD M-SEARCH - ssdp:discover Reflection Denial of Service
by Todor Donev
EIP-2026-103599 EXPLOITDB perl
NTPD - MON_GETLIST Query Amplification Denial of Service
by Todor Donev
EIP-2026-102582 EXPLOITDB perl VERIFIED
File Roller v3.4.1 - Denial of Service (PoC)
by Arsyntex
CVE-2015-4614 EXPLOITDB text
easy2map < 1.2.4 - SQL Injection via mapName Parameter
Multiple SQL injection vulnerabilities in includes/Function.php in the Easy2Map plugin before 1.2.5 for WordPress allow remote attackers to execute arbitrary SQL commands via the mapName parameter in an e2m_img_save_map_name action to wp-admin/admin-ajax.php and other unspecified vectors.
by Larry W. Cashdollar
CVE-2015-3043 EXPLOITDB CRITICAL ruby VERIFIED
Adobe Flash Player <14.x - Memory Corruption
Adobe Flash Player before 13.0.0.281 and 14.x through 17.x before 17.0.0.169 on Windows and OS X and before 11.2.202.457 on Linux allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, as exploited in the wild in April 2015, a different vulnerability than CVE-2015-0347, CVE-2015-0350, CVE-2015-0352, CVE-2015-0353, CVE-2015-0354, CVE-2015-0355, CVE-2015-0360, CVE-2015-3038, CVE-2015-3041, and CVE-2015-3042.
by Metasploit
CVSS 9.8
EIP-2026-116910 EXPLOITDB text
Blueberry Express 5.9.0.3678 - Local Buffer Overflow (SEH)
by Vulnerability-Lab
EIP-2026-116362 EXPLOITDB text
Symantec Endpoint Protection 12.1.4013 - Service Disabling
by hyp3rlinx
EIP-2026-115430 EXPLOITDB text VERIFIED
Immunity Debugger 1.85 - Crash (PoC)
by Arsyntex
CVE-2015-5468 EXPLOITDB HIGH text VERIFIED
WP e-Commerce Shop Styling <2.6 - Path Traversal
Directory traversal vulnerability in the WP e-Commerce Shop Styling plugin before 2.6 for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter to includes/download.php.
by Larry W. Cashdollar
CVSS 7.5
CVE-2015-4616 EXPLOITDB text
easy2map < 1.2.4 - Unauthenticated Path Traversal and Arbitrary File Write via MapPinImageSave.php map_id Parameter
Directory traversal vulnerability in includes/MapPinImageSave.php in the Easy2Map plugin before 1.2.5 for WordPress allows remote attackers to create arbitrary files via a .. (dot dot) in the map_id parameter.
by Larry W. Cashdollar
CVE-2015-1561 EXPLOITDB text
Centreon <2.5.4 - Command Injection
The escape_command function in include/Administration/corePerformance/getStats.php in Centreon (formerly Merethis Centreon) 2.5.4 and earlier (fixed in Centreon 19.10.0) uses an incorrect regular expression, which allows remote authenticated users to execute arbitrary commands via shell metacharacters in the ns_id parameter.
by Huy-Ngoc DAU
CVE-2015-3113 EXPLOITDB CRITICAL ruby VERIFIED
Adobe Flash Player Nellymoser Audio Decoding Buffer Overflow
Heap-based buffer overflow in Adobe Flash Player before 13.0.0.296 and 14.x through 18.x before 18.0.0.194 on Windows and OS X and before 11.2.202.468 on Linux allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in June 2015.
by Metasploit
CVSS 9.8
CVE-2015-5119 EXPLOITDB CRITICAL ruby VERIFIED
Adobe Flash Player ByteArray Use After Free
Use-after-free vulnerability in the ByteArray class in the ActionScript 3 (AS3) implementation in Adobe Flash Player 13.x through 13.0.0.296 and 14.x through 18.0.0.194 on Windows and OS X and 11.x through 11.2.202.468 on Linux allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted Flash content that overrides a valueOf function, as exploited in the wild in July 2015.
by Metasploit
CVSS 9.8
EIP-2026-101762 EXPLOITDB text
Grandstream GXV3275 < 1.0.3.30 - Multiple Vulnerabilities
by David Jorm
EIP-2026-101611 EXPLOITDB text
Cradlepoint MBR1400 and MBR1200 - Local File Inclusion
by Doc_Hak
CVE-2015-2279 EXPLOITDB CRITICAL text VERIFIED
AirLive BU-2015, BU-3026, and MD-3025 - OS Command Injection via cgi_test.cgi Parameters
cgi_test.cgi in AirLive BU-2015 with firmware 1.03.18, BU-3026 with firmware 1.43, and MD-3025 with firmware 1.81 allows remote attackers to execute arbitrary OS commands via shell metacharacters after an "&" (ampersand) in the write_mac write_pid, write_msn, write_tan, or write_hdv parameter.
by Core Security
CVSS 9.8