Exploitdb Exploits

50,076 exploits tracked across all sources.

Sort: Activity Stars
CVE-2014-2239 EXPLOITDB text
Lazarus Guestbook 1.22 - Multiple Vulnerabilities
by TaurusOmar
CVE-2014-9436 EXPLOITDB text
SysAid On-Premise <14.4.2 - Path Traversal
Absolute path traversal vulnerability in SysAid On-Premise before 14.4.2 allows remote attackers to read arbitrary files via a \\\\ (four backslashes) in the fileName parameter to getRdsLogFile.
by Bernhard Mueller
EIP-2026-116891 EXPLOITDB text
BitRaider Streaming Client 1.3.3.4098 - Local Privilege Escalation
by LiquidWorm
EIP-2026-115485 EXPLOITDB python VERIFIED
jetAudio 8.1.3 Basic (mp3) - Crash (PoC)
by Drozdova Liudmila
CVE-2014-9440 EXPLOITDB text
phpMyRecipes 1.2.2 - SQL Injection via Category Parameter
SQL injection vulnerability in browse.php in phpMyRecipes 1.2.2 allows remote attackers to execute arbitrary SQL commands via the category parameter.
by Manish Tanwar
EIP-2026-103309 EXPLOITDB python
Phase Botnet - Blind SQL Injection
by MalwareTech
CVE-2014-7208 EXPLOITDB text
GParted <0.15.0 - Command Injection
GParted before 0.15.0 allows local users to execute arbitrary commands with root privileges via shell metacharacters in a crafted filesystem label.
by SEC Consult
CVE-2014-9412 EXPLOITDB text
NetIQ Access Manager 4.x < 4.1 - Cross-Site Scripting via Debug Parameters
Multiple cross-site scripting (XSS) vulnerabilities in NetIQ Access Manager (NAM) 4.x before 4.1 allow remote attackers to inject arbitrary web script or HTML via (1) an arbitrary parameter to roma/jsp/debug/debug.jsp or (2) an arbitrary parameter in a debug.DumpAll action to nps/servlet/webacc, a different issue than CVE-2014-5216.
by SEC Consult
CVE-2004-1417 EXPLOITDB text
Psychostats < 2.2.4 - Cross-Site Scripting via Login Parameter
Cross-site scripting (XSS) vulnerability in login.php in PsychoStats 2.2.4 Beta and earlier allows remote attackers to inject arbitrary web script or HTML via the login parameter.
by GulfTech Security
CVE-2014-9456 EXPLOITDB python VERIFIED
Notepad++ 6.6.9 - Buffer Overflow via Long Time Attribute in XML Event Element
Buffer overflow in NotePad++ 6.6.9 allows remote attackers to have unspecified impact via a long Time attribute in an Event element in an XML file. NOTE: this issue was originally incorrectly mapped to CVE-2014-1004; see CVE-2014-1004 for more information.
by TaurusOmar
EIP-2026-109217 EXPLOITDB ruby
Lotus Mail Encryption Server 2.1.0.1 (Protector for Mail) - Local File Inclusion / Remote Code Execution (Metasploit)
by Patrick Webster
CVE-2014-9581 EXPLOITDB text
Codiad 2.4.3 - Path Traversal via File Manager Download Path Parameter
Directory traversal vulnerability in components/filemanager/download.php in Codiad 2.4.3 allows remote attackers to read arbitrary files via a .. (dot dot) in the path parameter. NOTE: this issue was originally incorrectly mapped to CVE-2014-1137; see CVE-2014-1137 for more information.
by TaurusOmar
CVE-2014-9580 EXPLOITDB text
ProjectSend r561 - Stored Cross-Site Scripting via File Upload Description Field
Cross-site scripting (XSS) vulnerability in ProjectSend (formerly cFTP) r561 allows remote attackers to inject arbitrary web script or HTML via the Description field in a file upload. NOTE: this issue was originally incorrectly mapped to CVE-2014-1155; see CVE-2014-1155 for more information.
by TaurusOmar
CVE-2011-3713 EXPLOITDB text
cFTP r80 - Exposure of Sensitive Information via Direct PHP File Request
cFTP r80 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by templates/session_check.php and certain other files.
by TaurusOmar
CVE-2014-9254 EXPLOITDB text
MiniBB < 3.1 - SQL Injection via Unsubscribe Code Parameter
bb_func_unsub.php in MiniBB 3.1 before 20141127 uses an incorrect regular expression, which allows remote attackers to conduct SQl injection attacks via the code parameter in an unsubscribe action to index.php.
by Kacper Szurek
CVE-2014-9445 EXPLOITDB text
Installatron GQ File Manager 0.2.5 - SQL Injection
SQL injection vulnerability in incl/create.inc.php in Installatron GQ File Manager 0.2.5 allows remote attackers to execute arbitrary SQL commands via the create parameter to index.php. NOTE: this can be leveraged for cross-site scripting (XSS) attacks by creating a file that generates an error. NOTE: this issue was originally incorrectly mapped to CVE-2014-1137; see CVE-2014-1137 for more information.
by TaurusOmar
CVE-2014-9582 EXPLOITDB text
Codiad 2.4.3 - Cross-Site Scripting via Filemanager Rename Short Name Parameter
Cross-site scripting (XSS) vulnerability in components/filemanager/dialog.php in Codiad 2.4.3 allows remote attackers to inject arbitrary web script or HTML via the short_name parameter in a rename action. NOTE: this issue was originally incorrectly mapped to CVE-2014-1137; see CVE-2014-1137 for more information.
by TaurusOmar
CVE-2014-4644 EXPLOITDB bash
Cacti superlinks plugin 1.4-2 - SQL Injection via id Parameter
SQL injection vulnerability in superlinks.php in the superlinks plugin 1.4-2 for Cacti allows remote attackers to execute arbitrary SQL commands via the id parameter.
by Wireghoul
CVE-2009-2936 EXPLOITDB ruby
Varnish < 2.1.0 - Unauthenticated Remote Code Execution via CLI vcl.inline Directive
The Command Line Interface (aka Server CLI or administration interface) in the master process in the reverse proxy server in Varnish before 2.1.0 does not require authentication for commands received through a TCP port, which allows remote attackers to (1) execute arbitrary code via a vcl.inline directive that provides a VCL configuration file containing inline C code; (2) change the ownership of the master process via param.set, stop, and start directives; (3) read the initial line of an arbitrary file via a vcl.load directive; or (4) conduct cross-site request forgery (CSRF) attacks that leverage a victim's location on a trusted network and improper input validation of directives. NOTE: the vendor disputes this report, saying that it is "fundamentally misguided and pointless.
by Patrick Webster
CVE-2014-6395 EXPLOITDB ruby
Ettercap < 0.8.0 - Heap-Based Buffer Overflow via PostgreSQL Password Length
Heap-based buffer overflow in the dissector_postgresql function in dissectors/ec_postgresql.c in Ettercap before 0.8.1 allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted password length value that is inconsistent with the actual length of the password.
by Nick Sampanis
CVE-2013-0758 EXPLOITDB ruby VERIFIED
Mozilla Firefox < 18.0 - Remote Code Execution via SVG and Plugin Interaction
Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x before 17.0.2, Thunderbird before 17.0.2, Thunderbird ESR 10.x before 10.0.12 and 17.x before 17.0.2, and SeaMonkey before 2.15 allow remote attackers to execute arbitrary JavaScript code with chrome privileges by leveraging improper interaction between plugin objects and SVG elements.
by Metasploit
EIP-2026-101585 EXPLOITDB text
CIK Telecom VoIP Router SVG6000RW - Privilege Escalation / Command Execution
by Chako
CVE-2014-4936 EXPLOITDB ruby VERIFIED
Malwarebytes Anti-Malware <2.0.3 & MBAE <1.04.1.1012 - RCE
The upgrade functionality in Malwarebytes Anti-Malware (MBAM) consumer before 2.0.3 and Malwarebytes Anti-Exploit (MBAE) consumer 1.04.1.1012 and earlier allow man-in-the-middle attackers to execute arbitrary code by spoofing the update server and uploading an executable.
by Metasploit
CVE-2014-5470 EXPLOITDB CRITICAL ruby VERIFIED
Actual Analyzer <2014-08-29 - Code Injection
Actual Analyzer through 2014-08-29 allows code execution via shell metacharacters because untrusted input is used for part of the input data passed to an eval operation.
by Metasploit
CVSS 9.8
CVE-2014-9522 EXPLOITDB text
CMS Papoo Light 6.0.0 Rev 4701 - Cross-Site Scripting via Guestbook Author or Account Username
Multiple cross-site scripting (XSS) vulnerabilities in CMS Papoo Light 6.0.0 (Rev 4701) allow remote attackers to inject arbitrary web script or HTML via the (1) author field to guestbook.php or (2) username field to account.php.
by Steffen Rösemann