Exploitdb Exploits

50,076 exploits tracked across all sources.

Sort: Activity Stars
CVE-2014-9917 EXPLOITDB MEDIUM text VERIFIED
Bilboplanet 2.0 - Stored Cross-Site Scripting via Tags Parameter
An issue was discovered in Bilboplanet 2.0. There is a stored XSS vulnerability when adding a tag via the user/?page=tribes tags parameter.
by Vivek N
CVSS 6.1
CVE-2014-9916 EXPLOITDB MEDIUM text VERIFIED
Bilboplanet 2.0 - Cross-Site Scripting via Tribe Name or Tags Parameter
Multiple cross-site scripting (XSS) vulnerabilities in Bilboplanet 2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) tribe_name or (2) tags parameter in a tribes page request to user/ or the (3) user_id or (4) fullname parameter to signup.php.
by Vivek N
CVSS 6.1
CVE-2014-4960 EXPLOITDB text VERIFIED
Joomla! com_youtubegallery <4.1.7 - SQL Injection
Multiple SQL injection vulnerabilities in models\gallery.php in Youtube Gallery (com_youtubegallery) component 4.x through 4.1.7, and possibly 3.x, for Joomla! allow remote attackers to execute arbitrary SQL commands via the (1) listid or (2) themeid parameter to index.php.
by Pham Van Khanh
CVE-2014-9301 EXPLOITDB text VERIFIED
Alfresco Community Edition <5.0.a - SSRF
Server-side request forgery (SSRF) vulnerability in the proxy servlet in Alfresco Community Edition before 5.0.a allows remote attackers to trigger outbound requests to intranet servers, conduct port scans, and read arbitrary files via a crafted URI in the endpoint parameter.
by V. Paulikas
CVE-2014-9302 EXPLOITDB text VERIFIED
Alfresco Community Edition < 5.0.a - Server-Side Request Forgery via CMIS Browser Servlet URL Parameter
Server-side request forgery (SSRF) vulnerability in the cmisbrowser servlet in Content Management Interoperability Service (CMIS) in Alfresco Community Edition 5.0.a and earlier allows remote attackers to trigger outbound requests via a crafted URI in the url parameter.
by V. Paulikas
CVE-2014-7192 EXPLOITDB python
syntax-error <1.1.1 - Code Injection
Eval injection vulnerability in index.js in the syntax-error package before 1.1.1 for Node.js 0.10.x, as used in IBM Rational Application Developer and other products, allows remote attackers to execute arbitrary code via a crafted file.
by Cal Leeming
CVE-2014-5350 EXPLOITDB text
Bitdefender GravityZone < 5.1.5.386 - Path Traversal via Web Console or Update Server
Multiple directory traversal vulnerabilities in Bitdefender GravityZone before 5.1.11.432 allow remote attackers to read arbitrary files via a (1) .. (dot dot) in the id parameter to webservice/CORE/downloadFullKitEpc/a/1 in the Web Console or (2) %2E%2E (encoded dot dot) in the default URI to port 7074 on the Update Server.
by SEC Consult
CVE-2014-4968 EXPLOITDB HIGH html
Boat Browser 8.0 and 8.0.1 - Remote Code Execution via WebView.addJavascriptInterface
The WebView class and use of the WebView.addJavascriptInterface method in the Boat Browser application 8.0 and 8.0.1 for Android allow remote attackers to execute arbitrary code via a crafted web site, a related issue to CVE-2012-6636.
by c0otlass
CVSS 8.8
CVE-2014-125117 EXPLOITDB CRITICAL ruby VERIFIED
D-Link DSP-W215 1.02 - Unauthenticated Stack-based Buffer Overflow via /common/info.cgi HTTP POST Request
A stack-based buffer overflow vulnerability in the my_cgi.cgi component of certain D-Link devices, including the DSP-W215 version 1.02, can be exploited via a specially crafted HTTP POST request to the /common/info.cgi endpoint. This flaw enables an unauthenticated attacker to achieve remote code execution with system-level privileges.
by Metasploit
CVSS 9.8
CVE-2014-4158 EXPLOITDB python VERIFIED
Kolibri 2.0 - Remote Code Execution via Long URI in GET Request
Stack-based buffer overflow in Kolibri 2.0 allows remote attackers to execute arbitrary code via a long URI in a GET request.
by Revin Hadi Saputra
CVE-2014-2623 EXPLOITDB python VERIFIED
HP Storage Data Protector 8.x - Remote Code Execution
Unspecified vulnerability in HP Storage Data Protector 8.x allows remote attackers to execute arbitrary code via unknown vectors.
by Polunchis
EIP-2026-113656 EXPLOITDB html VERIFIED
WordPress Plugin CopySafe PDF Protection - Arbitrary File Upload
by Jagriti Sahu
EIP-2026-113331 EXPLOITDB html VERIFIED
WEBMIS CMS - Arbitrary File Upload
by Jagriti Sahu
CVE-2014-4965 EXPLOITDB text
Shopizer < 1.1.5 - Cross-Site Scripting via Multiple Parameters
Multiple cross-site scripting (XSS) vulnerabilities in Shopizer 1.1.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) customername parameter to central/orders/searchcriteria.action; (2) productname, (3) availability, or (4) status parameter to central/catalog/productlist.action; or unspecified vectors in (5) WebContent/orders/orderlist.jsp.
by SEC Consult
CVE-2014-3936 EXPLOITDB ruby VERIFIED
D-Link DSP-W215 <1.01b06 - Buffer Overflow
Stack-based buffer overflow in the do_hnap function in www/my_cgi.cgi in D-Link DSP-W215 (Rev. A1) with firmware 1.01b06 and earlier, DIR-505 with firmware before 1.08b10, and DIR-505L with firmware 1.01 and earlier allows remote attackers to execute arbitrary code via a long Content-Length header in a GetDeviceSettings action in an HNAP request.
by Metasploit
EIP-2026-101221 EXPLOITDB ruby VERIFIED
D-Link Devices - UPnP M-SEARCH Multicast Command Injection (Metasploit)
by Metasploit
CVE-2014-9094 EXPLOITDB text VERIFIED
Digital Zoom Studio Video Gallery - Cross-Site Scripting via swfloc or designrand Parameter
Multiple cross-site scripting (XSS) vulnerabilities in deploy/designer/preview.php in the Digital Zoom Studio (DZS) Video Gallery plugin for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) swfloc or (2) designrand parameter.
by MustLive
CVE-2014-5455 EXPLOITDB MEDIUM text
ptservice <3.0 - Privilege Escalation
Unquoted Windows search path vulnerability in the ptservice service prior to PrivateTunnel version 3.0 (Windows) and OpenVPN Connect version 3.1 (Windows) allows local users to gain privileges via a crafted program.exe file in the %SYSTEMDRIVE% folder.
by LiquidWorm
CVSS 5.3
EIP-2026-105006 EXPLOITDB text
Aerohive HiveOS 5.1r5 < 6.1r5 - Multiple Vulnerabilities
by DearBytes
CVE-2014-5101 EXPLOITDB text VERIFIED
WeBid 1.1.1 - Cross-Site Scripting via Multiple User Input Parameters
Multiple cross-site scripting (XSS) vulnerabilities in WeBid 1.1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) TPL_name, (2) TPL_nick, (3) TPL_email, (4) TPL_year, (5) TPL_address, (6) TPL_city, (7) TPL_prov, (8) TPL_zip, (9) TPL_phone, (10) TPL_pp_email, (11) TPL_authnet_id, (12) TPL_authnet_pass, (13) TPL_worldpay_id, (14) TPL_toocheckout_id, or (15) TPL_moneybookers_email in a first action to register.php or the (16) username parameter in a login action to user_login.php.
by Govind Singh
EIP-2026-105671 EXPLOITDB text
C99Shell (Web Shell) - 'c99.php' Authentication Bypass
by Mandat0ry
CVE-2014-3418 EXPLOITDB text
Infoblox NetMRI < 6.8.5 - OS Command Injection via skipjackUsername Parameter
config/userAdmin/login.tdf in Infoblox NetMRI before 6.8.5 allows remote attackers to execute arbitrary commands via shell metacharacters in the skipjackUsername parameter.
by Nate Kettlewell
CVE-2013-6765 EXPLOITDB python
OpenVAS Manager 3.0-3.0.6 and 4.0-4.0.3 - Unauthenticated OMP Command Execution via Version Request
OpenVAS Manager 3.0 before 3.0.7 and 4.0 before 4.0.4 allows remote attackers to bypass the OMP authentication restrictions and execute OMP commands via a crafted OMP request for version information, which causes the state to be set to CLIENT_AUTHENTIC, as demonstrated by the omp_xml_handle_end_element function in omp.c.
by EccE
CVE-2014-4944 EXPLOITDB text VERIFIED
BSK PDF Manager 1.3.2 - SQL Injection
Multiple SQL injection vulnerabilities in inc/bsk-pdf-dashboard.php in the BSK PDF Manager plugin 1.3.2 for WordPress allow remote authenticated users to execute arbitrary SQL commands via the (1) categoryid or (2) pdfid parameter to wp-admin/admin.php.
by Claudio Viviani
CVE-2014-2782 EXPLOITDB html
Microsoft Internet Explorer 9-11 - Remote Code Execution via Memory Corruption
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2014-1773, CVE-2014-1783, CVE-2014-1784, CVE-2014-1786, CVE-2014-1795, CVE-2014-1805, CVE-2014-2758, CVE-2014-2759, CVE-2014-2765, CVE-2014-2766, and CVE-2014-2775.
by Drozdova Liudmila