Exploitdb Exploits

50,076 exploits tracked across all sources.

Sort: Activity Stars
CVE-2014-1635 EXPLOITDB python VERIFIED
Belkin N750 Router <F9K1103_WW_1.10.17m - Buffer Overflow
Buffer overflow in login.cgi in MiniHttpd in Belkin N750 Router with firmware before F9K1103_WW_1.10.17m allows remote attackers to execute arbitrary code via a long string in the jump parameter.
by Marco Vaz
CVE-2014-7140 EXPLOITDB ruby VERIFIED
Citrix NetScaler <10.1-129.11, <10.5-50.10 - RCE
Unspecified vulnerability in the management interface in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway 10.x before 10.1-129.11 and 10.5 before 10.5-50.10 allows remote attackers to execute arbitrary code via unknown vectors.
by Metasploit
EIP-2026-109593 EXPLOITDB text VERIFIED
Mouse Media Script 1.6 - Persistent Cross-Site Scripting
by Halil Dalabasmaz
CVE-2014-8775 EXPLOITDB text
MODX Revolution <2.2.15 - Info Disclosure
MODX Revolution 2.x before 2.2.15 does not include the HTTPOnly flag in a Set-Cookie header for the session cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie.
by Narendra Bhati
CVE-2014-6039 EXPLOITDB HIGH text
ManageEngine EventLog Analyzer 7-9.9 - Credentials Disclosure
ManageEngine EventLog Analyzer version 7 through 9.9 build 9002 has a Credentials Disclosure Vulnerability. Fixed version 10 Build 10000.
by Pedro Ribeiro
CVSS 7.5
CVE-2014-7910 EXPLOITDB text
Google Chrome < 39.0.2171.65 - Denial of Service or Other Impact
Multiple unspecified vulnerabilities in Google Chrome before 39.0.2171.65 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
by Ryan King (Starfall)
CVE-2014-3704 EXPLOITDB php VERIFIED
Drupal 7.0-7.31 - SQL Injection via Array Key in Database API
The expandArguments function in the database abstraction API in Drupal core 7.x before 7.32 does not properly construct prepared statements, which allows remote attackers to conduct SQL injection attacks via an array containing crafted keys.
by Stefan Horst
CVE-2014-3704 EXPLOITDB php
Drupal 7.0-7.31 - SQL Injection via Array Key in Database API
The expandArguments function in the database abstraction API in Drupal core 7.x before 7.32 does not properly construct prepared statements, which allows remote attackers to conduct SQL injection attacks via an array containing crafted keys.
by Stefan Horst
EIP-2026-104549 EXPLOITDB c
Apple Mac OSX (Mavericks) - 'IOBluetoothHCIUserClient' Privilege Escalation
by rpaleari & joystick
EIP-2026-101497 EXPLOITDB ruby VERIFIED
Xerox Multifunction Printers (MFP) - 'Patch' DLM (Metasploit)
by Metasploit
EIP-2026-106912 EXPLOITDB text VERIFIED
Esotalk CMS 1.0.0g4 - Cross-Site Scripting
by evi1m0
CVE-2014-8953 EXPLOITDB text
Php Scriptlerim Who's Who - Cross-Site Request Forgery via Admin Endpoints
Multiple cross-site request forgery (CSRF) vulnerabilities in Php Scriptlerim Who's Who script allow remote attackers to hijack the authentication of administrators or requests that (1) add an admin account via a request to filepath/yonetim/plugin/adminsave.php or have unspecified impact via a request to (2) ayarsave.php, (3) uyesave.php, (4) slaytadd.php, or (5) slaytsave.php.
by ZoRLu Bugrahan
CVE-2014-8555 EXPLOITDB text
Progress OpenEdge 11.2 - Path Traversal via reportViewAction.jsp Selection Parameter
Directory traversal vulnerability in report/reportViewAction.jsp in Progress Software OpenEdge 11.2 allows remote attackers to read arbitrary files via a .. (dot dot) in the selection parameter.
by XLabs Security
EIP-2026-102137 EXPLOITDB text
ZTE Modem ZXDSL 531BIIV7.3.0f_D09_IN - Persistent Cross-Site Scripting
by Ravi Rajput
CVE-2014-9448 EXPLOITDB perl
Mini-stream RM-MP3 Converter <3.1.2.1.2010.03.30 - Buffer Overflow
Buffer overflow in Mini-stream RM-MP3 Converter 3.1.2.1.2010.03.30 allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a long string in a WAX file.
by ZoRLu Bugrahan
EIP-2026-109232 EXPLOITDB text VERIFIED
MAARCH 1.4 - SQL Injection
by Adrien Thierry
CVE-2015-1587 EXPLOITDB php VERIFIED
Maarch GEC/GED < 1.4 and LetterBox < 2.8 - Unauthenticated Arbitrary File Upload via file_to_index.php
Unrestricted file upload vulnerability in file_to_index.php in Maarch LetterBox 2.8 and earlier and GEC/GED 1.4 and earlier allows remote attackers to execute arbitrary PHP code by uploading a file with a PHP extension, then accessing it via a request to a predictable filename in tmp/.
by Adrien Thierry
CVE-2014-7910 EXPLOITDB ruby VERIFIED
Google Chrome < 39.0.2171.65 - Denial of Service or Other Impact
Multiple unspecified vulnerabilities in Google Chrome before 39.0.2171.65 allow attackers to cause a denial of service or possibly have other impact via unknown vectors.
by Metasploit
CVE-2013-5467 EXPLOITDB bash
IBM Tivoli Monitoring <6.3.0 - Privilege Escalation
Monitoring Agent for UNIX Logs 6.2.0 through FP03, 6.2.1 through FP04, 6.2.2 through FP09, and 6.2.3 through FP04 and Monitoring Server (ms) and Shared Libraries (ax) 6.2.0 through FP03, 6.2.1 through FP04, 6.2.2 through FP08, 6.2.3 through FP01, and 6.3.0 through FP01 in IBM Tivoli Monitoring (ITM) on UNIX allow local users to gain privileges via unspecified vectors.
by Robert Jaroszuk
CVE-2014-7279 EXPLOITDB CRITICAL text
Konke Smart Plug K - Info Disclosure
The Konke Smart Plug K does not require authentication for TELNET sessions, which allows remote attackers to obtain "equipment management authority" via TCP traffic to port 23.
by gamehacker
CVSS 9.8
CVE-2014-4113 EXPLOITDB HIGH ruby VERIFIED
Microsoft Windows - Privilege Escalation
win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges via a crafted application, as exploited in the wild in October 2014, aka "Win32k.sys Elevation of Privilege Vulnerability."
by Metasploit
CVSS 7.8
CVE-2014-2023 EXPLOITDB CRITICAL python
Tapatalk plugin <4.9.0, 5.x-5.2.1 - SQL Injection
Multiple SQL injection vulnerabilities in the Tapatalk plugin 4.9.0 and earlier and 5.x through 5.2.1 for vBulletin allow remote attackers to execute arbitrary SQL commands via a crafted xmlrpc API request to (1) unsubscribe_forum.php or (2) unsubscribe_topic.php in mobiquo/functions/.
by tintinweb
CVSS 9.8
CVE-2014-7178 EXPLOITDB text VERIFIED
Tuleap < 7.5.99.6 - Remote Code Execution via User-Agent Header
Enalean Tuleap before 7.5.99.6 allows remote attackers to execute arbitrary commands via the User-Agent header, which is provided to the passthru PHP function.
by Portcullis
CVE-2014-7176 EXPLOITDB text VERIFIED
Enalean Tuleap <7.5.99.4 - SQL Injection
SQL injection vulnerability in Enalean Tuleap before 7.5.99.4 allows remote authenticated users to execute arbitrary SQL commands via the lobal_txt parameter to plugins/docman.
by Portcullis
CVE-2014-7177 EXPLOITDB text VERIFIED
Enalean Tuleap <7.2 - Info Disclosure
XML External Entity vulnerability in Enalean Tuleap 7.2 and earlier allows remote authenticated users to read arbitrary files via a crafted xml document in a create action to plugins/tracker/.
by Portcullis