Exploitdb Exploits

50,076 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-115783 EXPLOITDB c VERIFIED
Microsoft Windows - Touch Injection API Local Denial of Service
by Tavis Ormandy
EIP-2026-118457 EXPLOITDB python VERIFIED
Easy File Management Web Server 5.3 - Remote Stack Buffer Overflow
by superkojiman
EIP-2026-118453 EXPLOITDB python VERIFIED
Easy Address Book Web Server 1.6 - Remote Stack Buffer Overflow
by superkojiman
CVE-2014-3210 EXPLOITDB text VERIFIED
Booking System < 1.3 - Authenticated SQL Injection via booking_form_id Parameter
SQL injection vulnerability in dopbs-backend-forms.php in the Booking System (Booking Calendar) plugin before 1.3 for WordPress allows remote authenticated users to execute arbitrary SQL commands via the booking_form_id parameter to wp-admin/admin-ajax.php.
by maodun
CVE-2014-0242 EXPLOITDB HIGH python VERIFIED
mod_wsgi < 3.4 - Exposure of Sensitive Information via Content-Type Header
mod_wsgi module before 3.4 for Apache, when used in embedded mode, might allow remote attackers to obtain sensitive information via the Content-Type header which is generated from memory that may have been freed and then overwritten by a separate thread.
by Buck Golemon
CVSS 7.5
EIP-2026-101567 EXPLOITDB text
Binatone DT 850W Wireless Router - Multiple Cross-Site Request Forgery Vulnerabilities
by Samandeep Singh
EIP-2026-105942 EXPLOITDB text VERIFIED
Clipperz Password Manager - '/backend/PHP/src/setup/rpc.php' Remote Code Execution
by Manish Tanwar
CVE-2007-6483 EXPLOITDB python VERIFIED
SafeNet Sentinel Protection Server <7.4.0 - Path Traversal
Directory traversal vulnerability in SafeNet Sentinel Protection Server 7.0.0 through 7.4.0 and possibly earlier versions, and Sentinel Keys Server 1.0.3 and possibly earlier versions, allows remote attackers to read arbitrary files via a .. (dot dot) in the query string.
by Matt Schmidt
CVE-2014-2612 EXPLOITDB ruby
HP Release Control <9.13-9.21 - Info Disclosure
Unspecified vulnerability in HP Release Control 9.x before 9.13 p3 and 9.2x before RC 9.21.0003 p1 on Windows and 9.2x before RC 9.21.0002 p1 on Linux allows remote authenticated users to obtain sensitive information via unknown vectors.
by Brandon Perry
EIP-2026-118266 EXPLOITDB html VERIFIED
AoA MP4 Converter 4.1.2 - ActiveX
by metacom
EIP-2026-118265 EXPLOITDB html
AoA DVD Creator 2.6.2 - ActiveX
by metacom
EIP-2026-118264 EXPLOITDB html
AoA Audio Extractor Basic 2.3.7 - ActiveX
by metacom
EIP-2026-117012 EXPLOITDB perl
CyberLink Power2Go Essential 9.0.1002.0 - Registry Buffer Overflow (SEH Unicode)
by Mike Czumak
CVE-2014-3935 EXPLOITDB text VERIFIED
XOOPS 1.0 - Glossaire module - SQL Injection
SQL injection vulnerability in glossaire-aff.php in the Glossaire module 1.0 for XOOPS allows remote attackers to execute arbitrary SQL commands via the lettre parameter.
by AtT4CKxT3rR0r1ST
EIP-2026-113927 EXPLOITDB text VERIFIED
WordPress Plugin NextGEN Gallery 1.9.1 - 'photocrati_ajax' Arbitrary File Upload
by SANTHO
EIP-2026-113447 EXPLOITDB text VERIFIED
Wiser Backup - Information Disclosure
by AtT4CKxT3rR0r1ST
CVE-2013-2118 EXPLOITDB python
SPIP <3.0.9, <2.1.22, <2.0.23 - Privilege Escalation
SPIP 3.0.x before 3.0.9, 2.1.x before 2.1.22, and 2.0.x before 2.0.23 allows remote attackers to gain privileges and "take editorial control" via vectors related to ecrire/inc/filtres.php.
by Gregory Draperi
EIP-2026-112331 EXPLOITDB text VERIFIED
Softmatica SMART iPBX - Multiple SQL Injections
by AtT4CKxT3rR0r1ST
EIP-2026-113633 EXPLOITDB php VERIFIED
WordPress Plugin cnhk-Slideshow - Arbitrary File Upload
by Ashiyane Digital Security Team
CVE-2014-4701 EXPLOITDB text VERIFIED
Nagios Plugins <2.0.2 - Info Disclosure
The check_dhcp plugin in Nagios Plugins before 2.0.2 allows local users to obtain sensitive information from INI configuration files via the extra-opts flag, a different vulnerability than CVE-2014-4702.
by Dawid Golunski
CVE-2014-5116 EXPLOITDB python VERIFIED
cairo 1.10.2 - Denial of Service via Large String in cairo_image_surface_get_data
The cairo_image_surface_get_data function in Cairo 1.10.2, as used in GTK+ and Wireshark, allows context-dependent attackers to cause a denial of service (NULL pointer dereference) via a large string.
by Osanda Malith Jayathissa
CVE-2014-3442 EXPLOITDB perl VERIFIED
Winamp < 5.666 - Denial of Service via Malformed FLV File
Winamp 5.666 and earlier allows remote attackers to cause a denial of service (memory corruption and crash) via a malformed .FLV file, related to f263.w5s.
by Aryan Bayaninejad
CVE-2014-3212 EXPLOITDB python VERIFIED
Intel Indeo - Video Memory Corruption
by Aryan Bayaninejad
CVE-2014-3736 EXPLOITDB python VERIFIED
ALLPlayer - '.wav' File Processing Memory Corruption
by Aryan Bayaninejad
CVE-2014-2987 EXPLOITDB text
EGroupware < 1.6.001 and < 1.8006 - Cross-Site Request Forgery via Admin User Creation or Settings Modification
Multiple cross-site request forgery (CSRF) vulnerabilities in EGroupware Enterprise Line (EPL) before 1.1.20140505, EGroupware Community Edition before 1.8.007.20140506, and EGroupware before 14.1 beta allow remote attackers to hijack the authentication of administrators for requests that (1) create an administrator user via an admin.uiaccounts.add_user action to index.php or (2) modify settings via the newsettings parameter in an admin.uiconfig.index action to index.php. NOTE: vector 2 can be used to execute arbitrary PHP code by leveraging CVE-2014-2988.
by High-Tech Bridge SA