Exploitdb Exploits

50,076 exploits tracked across all sources.

Sort: Activity Stars
CVE-2014-3444 EXPLOITDB python VERIFIED
RealNetworks RealPlayer <= 16.0.3.51 - Remote Code Execution via Malformed .3gp File
The GetGUID function in codecs/dmp4.dll in RealNetworks RealPlayer 16.0.3.51 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (write access violation and application crash) via a malformed .3gp file.
by Aryan Bayaninejad
EIP-2026-103569 EXPLOITDB html VERIFIED
Mozilla Firefox 29.0 - Null Pointer Dereference
by Mr.XHat
CVE-2014-3749 EXPLOITDB text VERIFIED
Construtiva CIS Manager - SQL Injection via Email Parameter
SQL injection vulnerability in Construtiva CIS Manager allows remote attackers to execute arbitrary SQL commands via the email parameter to autenticar/lembrarlogin.asp.
by Edge
EIP-2026-111987 EXPLOITDB text VERIFIED
Seo Panel - 'file' Directory Traversal
by Eric Sesterhenn
CVE-2014-3120 EXPLOITDB HIGH html VERIFIED
Elasticsearch < 1.2 - Remote Code Execution via Dynamic Scripting
The default configuration in Elasticsearch before 1.2 enables dynamic scripting, which allows remote attackers to execute arbitrary MVEL expressions and Java code via the source parameter to _search. NOTE: this only violates the vendor's intended security policy if the user does not run Elasticsearch in its own independent virtual machine.
by Jeff Geiger
CVSS 8.1
EIP-2026-104113 EXPLOITDB perl VERIFIED
UPS Web/SNMP-Manager CS121 - Authentication Bypass
by jkmac
CVE-2014-3791 EXPLOITDB python VERIFIED
Easy File Sharing Web Server 6.8 - Remote Code Execution via UserID Cookie Buffer Overflow
Stack-based buffer overflow in Easy File Sharing (EFS) Web Server 6.8 allows remote attackers to execute arbitrary code via a long string in a cookie UserID parameter to vfolder.ghp.
by superkojiman
EIP-2026-116403 EXPLOITDB perl VERIFIED
TFTPD32 4.5 / TFTPD64 4.5 - Denial of Service (PoC)
by Martinez FrostCard
EIP-2026-116402 EXPLOITDB perl VERIFIED
TFTPD32 / Tftpd64 - Denial of Service
by j0s3h4x0r
CVE-2014-2046 EXPLOITDB text VERIFIED
Broadcom Ltd PIPA C211 rev2 - Info Disclosure
cgi-bin/rpcBridge in the web interface 1.1 on Broadcom Ltd PIPA C211 rev2 does not properly restrict access, which allows remote attackers to (1) obtain credentials and other sensitive information via a certain request to the config.getValuesHashExcludePaths method or (2) modify the firmware via unspecified vectors.
by Portcullis
CVE-2014-2084 EXPLOITDB text
Skybox View Appliances - Info Disclosure
Skybox View Appliances with ISO 6.3.33-2.14, 6.3.31-2.14, 6.4.42-2.54, 6.4.45-2.56, and 6.4.46-2.57 does not properly restrict access to the Admin interface, which allows remote attackers to obtain sensitive information via a request to (1) scripts/commands/getSystemInformation or (2) scripts/commands/getNetworkConfigurationInfo, cause a denial of service (reboot) via a request to scripts/commands/reboot, or cause a denial of service (shutdown) via a request to scripts/commands/shutdown.
by Luigi Vezzoso
CVE-2014-3740 EXPLOITDB text VERIFIED
Spiceworks < 7.2.00190 - Authenticated Cross-Site Scripting via Ticket Summary Field
Cross-site scripting (XSS) vulnerability in SpiceWorks before 7.2.00195 allows remote authenticated users to inject arbitrary web script or HTML via the Summary field in a ticket request to the portal page.
by Dolev Farhi
CVE-2014-0782 EXPLOITDB ruby VERIFIED
Yokogawa CENTUM CS 1000/3000, VP, Exaopc, B/M9000CS/VP - Remote Code Execution
Stack-based buffer overflow in BKESimmgr.exe in the Expanded Test Functions package in Yokogawa CENTUM CS 1000, CENTUM CS 3000 Entry Class R3.09.50 and earlier, CENTUM VP R5.03.00 and earlier, CENTUM VP Entry Class R5.03.00 and earlier, Exaopc R3.71.02 and earlier, B/M9000CS R5.05.01 and earlier, and B/M9000 VP R7.03.01 and earlier allows remote attackers to execute arbitrary code via a crafted packet.
by Metasploit
CVE-2004-2466 EXPLOITDB python VERIFIED
Easy Chat Server 1.2 and 2.2 - Denial of Service via Long Username Parameter
chat.ghp in Easy Chat Server 1.2 allows remote attackers to cause a denial of service (server crash) via a long username parameter, possibly due to a buffer overflow. NOTE: it was later reported that 2.2 is also affected.
by superkojiman
CVE-2014-0515 EXPLOITDB ruby VERIFIED
Adobe Flash Player Shader Buffer Overflow
Buffer overflow in Adobe Flash Player before 11.7.700.279 and 11.8.x through 13.0.x before 13.0.0.206 on Windows and OS X, and before 11.2.202.356 on Linux, allows remote attackers to execute arbitrary code via unspecified vectors, as exploited in the wild in April 2014.
by Metasploit
CVE-2014-3443 EXPLOITDB python VERIFIED
JetAudio < 8.1.1 - Denial of Service via Crafted OGG File
JetMPAd.ax in JetAudio 8.1.1 and earlier allows remote attackers to cause a denial of service (crash) via a crafted .ogg file.
by Aryan Bayaninejad
CVE-2014-3216 EXPLOITDB python VERIFIED
GOM Media Player < 2.2.57.5189 - Denial of Service via Crafted OGG File
GOM Media Player 2.2.57.5189 and earlier allows remote attackers to cause a denial of service (crash) via a crafted .ogg file.
by Aryan Bayaninejad
CVE-2014-5383 EXPLOITDB text
AlienVault OSSIM < 4.7.0 - Authenticated SQL Injection
SQL injection vulnerability in AlienVault OSSIM before 4.7.0 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
by Chris Hebert
CVE-2014-2084 EXPLOITDB text
Skybox View Appliances - Info Disclosure
Skybox View Appliances with ISO 6.3.33-2.14, 6.3.31-2.14, 6.4.42-2.54, 6.4.45-2.56, and 6.4.46-2.57 does not properly restrict access to the Admin interface, which allows remote attackers to obtain sensitive information via a request to (1) scripts/commands/getSystemInformation or (2) scripts/commands/getNetworkConfigurationInfo, cause a denial of service (reboot) via a request to scripts/commands/reboot, or cause a denial of service (shutdown) via a request to scripts/commands/shutdown.
by Luigi Vezzoso
CVE-2014-3806 EXPLOITDB text
VMTurbo Operations Manager < 4.6 - Unauthenticated Directory Traversal via xml_path Parameter
Directory traversal vulnerability in cgi-bin/help/doIt.cgi in VMTurbo Operations Manager before 4.6 allows remote attackers to read arbitrary files via a .. (dot dot) in the xml_path parameter.
by Jamal Pecou
CVE-2014-3441 EXPLOITDB python VERIFIED
VideoLAN VLC Media Player 2.1.3 - Denial of Service via Crafted PNG File
codec\libpng_plugin.dll in VideoLAN VLC Media Player 2.1.3 allows remote attackers to cause a denial of service (crash) via a crafted .png file, as demonstrated by a png in a .wave file.
by Aryan Bayaninejad
CVE-2014-2989 EXPLOITDB html VERIFIED
TAO 2.5.6 - Cross-Site Request Forgery via Users/add Endpoint
Cross-site request forgery (CSRF) vulnerability in Open Assessment Technologies TAO 2.5.6 allows remote attackers to hijack the authentication of administrators for requests that create administrative accounts via a request to Users/add.
by High-Tech Bridge
CVE-2014-3246 EXPLOITDB text VERIFIED
Collabtive 1.2 - Authenticated SQL Injection via Folder Parameter
SQL injection vulnerability in Collabtive 1.2 allows remote authenticated users to execute arbitrary SQL commands via the folder parameter in a fileview_list action to manageajax.php.
by Deepak Rathore
CVE-2014-3247 EXPLOITDB text VERIFIED
Collabtive 1.2 - Authenticated Cross-Site Scripting via Admin Project Description Parameter
Cross-site scripting (XSS) vulnerability in Collabtive 1.2 allows remote authenticated users to inject arbitrary web script or HTML via the desc parameter in an Add project (addpro) action to admin.php.
by Deepak Rathore
CVE-2014-3225 EXPLOITDB text
Cobbler 2.4.x-2.6.x - Authenticated Path Traversal via Kickstart Field
Absolute path traversal vulnerability in the web interface in Cobbler 2.4.x through 2.6.x allows remote authenticated users to read arbitrary files via the Kickstart field in a profile.
by Dolev Farhi