Exploitdb Exploits

50,076 exploits tracked across all sources.

Sort: Activity Stars
CVE-2014-8948 EXPLOITDB text
iMember360 3.8.012-3.9.001 - Cross-Site Request Forgery via i4w_trace Parameter
Cross-site request forgery (CSRF) vulnerability in the iMember360 plugin 3.8.012 through 3.9.001 for WordPress allows remote attackers to hijack the authentication of administrators for requests that with an unspecified impact via the i4w_trace parameter. NOTE: this can be leveraged with CVE-2014-8948 to execute arbitrary commands.
by Everett Griffiths
CVE-2014-3849 EXPLOITDB text
iMember360 3.8.012-3.9.001 - Unauthenticated Arbitrary User Deletion via Email Parameter
The iMember360 plugin 3.8.012 through 3.9.001 for WordPress does not properly restrict access, which allows remote attackers to delete arbitrary users via a request containing a user name in the Email parameter and the API key in the i4w_clearuser parameter.
by Everett Griffiths
CVE-2014-3848 EXPLOITDB text
iMember360 < 3.9.000 - Unauthenticated Database Credential Exposure via i4w_dbinfo Parameter
The iMember360 plugin before 3.9.001 for WordPress does not properly restrict access, which allows remote attackers to obtain database credentials via the i4w_dbinfo parameter.
by Everett Griffiths
CVE-2014-3842 EXPLOITDB text
iMember360 3.8.012-3.9.001 - Cross-Site Scripting via Decrypt or Encrypt Parameter
Multiple cross-site scripting (XSS) vulnerabilities in the iMember360 plugin 3.8.012 through 3.9.001 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) decrypt or (2) encrypt parameter.
by Everett Griffiths
CVE-2006-3823 EXPLOITDB text
GeodesicSolutions GeoAuctions Premier and GeoClassifieds Basic 2.0.3 - SQL Injection via Index.php b Parameter
SQL injection vulnerability in index.php in GeodesicSolutions (1) GeoAuctions Premier 2.0.3 and (2) GeoClassifieds Basic 2.0.3 allows remote attackers to execute arbitrary SQL commands via the b parameter.
by Esac
CVE-2013-0140 EXPLOITDB text
McAfee ePolicy Orchestrator < 4.5.7 and 4.6.x < 4.6.6 - SQL Injection via Agent-Handler Component
SQL injection vulnerability in the Agent-Handler component in McAfee ePolicy Orchestrator (ePO) before 4.5.7 and 4.6.x before 4.6.6 allows remote attackers to execute arbitrary SQL commands via a crafted request over the Agent-Server communication channel.
by st3n
CVE-2014-2299 EXPLOITDB ruby VERIFIED
Wireshark <1.8.13, <1.10.6 - Buffer Overflow
Buffer overflow in the mpeg_read function in wiretap/mpeg.c in the MPEG parser in Wireshark 1.8.x before 1.8.13 and 1.10.x before 1.10.6 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a large record in MPEG data.
by Metasploit
CVE-2014-8949 EXPLOITDB text
iMember360 plugin <3.9.001 - Command Injection
The iMember360 plugin 3.8.012 through 3.9.001 for WordPress allows remote authenticated administrators to execute arbitrary commands via shell metacharacters in the i4w_trace parameter. NOTE: this can be leveraged with CVE-2014-8948 to allow remote attackers to execute code. NOTE: it is not clear whether this issue itself crosses privileges.
by Everett Griffiths
CVE-2014-3871 EXPLOITDB text
Geodesic Solutions GeoCore MAX 7.3.3 - SQL Injection via Register.php Parameters
Multiple SQL injection vulnerabilities in register.php in Geodesic Solutions GeoCore MAX 7.3.3 (formerly GeoClassifieds and GeoAuctions) allow remote attackers to execute arbitrary SQL commands via the (1) c[password] or (2) c[username] parameter. NOTE: the b parameter to index.php vector is already covered by CVE-2006-3823.
by Esac
EIP-2026-105201 EXPLOITDB python VERIFIED
ApPHP MicroBlog 1.0.1 - Remote Command Execution
by LOTFREE
EIP-2026-104949 EXPLOITDB text
Adem 0.5.1 - Local File Inclusion
by JIKO
CVE-2013-5211 EXPLOITDB c
NTP Monitor List Scanner
The monlist feature in ntp_request.c in ntpd in NTP before 4.2.7p26 allows remote attackers to cause a denial of service (traffic amplification) via forged (1) REQ_MON_GETLIST or (2) REQ_MON_GETLIST_1 requests, as exploited in the wild in December 2013.
by Danilo PC
CVE-2013-1612 EXPLOITDB perl
Symantec Endpoint Protection Manager - Memory Corruption
Buffer overflow in secars.dll in the management console in Symantec Endpoint Protection Manager (SEPM) 12.1.x before 12.1.3, and Symantec Endpoint Protection Center (SPC) Small Business Edition 12.0.x, allows remote attackers to execute arbitrary code via unspecified vectors.
by st3n
EIP-2026-105200 EXPLOITDB text VERIFIED
ApPHP MicroBlog 1.0.1 - Multiple Vulnerabilities
by JIKO
CVE-2014-4158 EXPLOITDB python VERIFIED
Kolibri 2.0 - Remote Code Execution via Long URI in GET Request
Stack-based buffer overflow in Kolibri 2.0 allows remote attackers to execute arbitrary code via a long URI in a GET request.
by Polunchis
EIP-2026-115039 EXPLOITDB text
cFos Personal Net 3.09 - Remote Heap Memory Corruption (Denial of Service)
by LiquidWorm
CVE-2014-2347 EXPLOITDB text
Amtelco miSecureMessages <6.2 - Info Disclosure
Amtelco miSecureMessages (aka MSM) 6.2 does not properly manage sessions, which allows remote authenticated users to obtain sensitive information via a modified message request.
by Jared Bird
EIP-2026-102885 EXPLOITDB text
JRuby Sandbox 0.2.2 - Sandbox Escape
by joernchen
EIP-2026-102223 EXPLOITDB text
Depot WiFi 1.0.0 iOS - Multiple Vulnerabilities
by Vulnerability-Lab
CVE-2014-2994 EXPLOITDB python
Acunetix Web Vulnerability Scanner 8 build 20120704 - Stack-Based Buffer Overflow via IMG Element URL
Stack-based buffer overflow in Acunetix Web Vulnerability Scanner (WVS) 8 build 20120704 allows remote attackers to execute arbitrary code via an HTML file containing an IMG element with a long URL (src attribute).
by An7i
EIP-2026-114201 EXPLOITDB text VERIFIED
WordPress Plugin Work-The-Flow 1.2.1 - Arbitrary File Upload
by nopesled
CVE-2014-2846 EXPLOITDB text
WD Arkeia Virtual Appliance Firmware < 10.2.7 - Path Traversal and Remote Code Execution via Lang Cookie Parameter
Directory traversal vulnerability in opt/arkeia/wui/htdocs/index.php in the WD Arkeia virtual appliance (AVA) with firmware before 10.2.9 allows remote attackers to read arbitrary files and execute arbitrary PHP code via a ..././ (dot dot dot slash dot slash) in the lang Cookie parameter, as demonstrated by a request to login/doLogin.
by SEC Consult
CVE-2014-2383 EXPLOITDB text VERIFIED
dompdf < 0.6.1 - Arbitrary File Read via PHP Wrapper in input_file Parameter
dompdf.php in dompdf before 0.6.1, when DOMPDF_ENABLE_PHP is enabled, allows context-dependent attackers to bypass chroot protections and read arbitrary files via a PHP protocol and wrappers in the input_file parameter, as demonstrated by a php://filter/read=convert.base64-encode/resource in the input_file parameter.
by Portcullis
EIP-2026-105582 EXPLOITDB python
Bonefire 0.7.1 - Reinstall Admin Account
by Mehmet Ince
EIP-2026-105089 EXPLOITDB text
Alienvault 4.3.1 - SQL Injection / Cross-Site Scripting
by Sasha Zivojinovic