Exploitdb Exploits
50,076 exploits tracked across all sources.
iMember360 3.8.012-3.9.001 - Cross-Site Request Forgery via i4w_trace Parameter
Cross-site request forgery (CSRF) vulnerability in the iMember360 plugin 3.8.012 through 3.9.001 for WordPress allows remote attackers to hijack the authentication of administrators for requests that with an unspecified impact via the i4w_trace parameter. NOTE: this can be leveraged with CVE-2014-8948 to execute arbitrary commands.
by Everett Griffiths
iMember360 3.8.012-3.9.001 - Unauthenticated Arbitrary User Deletion via Email Parameter
The iMember360 plugin 3.8.012 through 3.9.001 for WordPress does not properly restrict access, which allows remote attackers to delete arbitrary users via a request containing a user name in the Email parameter and the API key in the i4w_clearuser parameter.
by Everett Griffiths
iMember360 < 3.9.000 - Unauthenticated Database Credential Exposure via i4w_dbinfo Parameter
The iMember360 plugin before 3.9.001 for WordPress does not properly restrict access, which allows remote attackers to obtain database credentials via the i4w_dbinfo parameter.
by Everett Griffiths
iMember360 3.8.012-3.9.001 - Cross-Site Scripting via Decrypt or Encrypt Parameter
Multiple cross-site scripting (XSS) vulnerabilities in the iMember360 plugin 3.8.012 through 3.9.001 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) decrypt or (2) encrypt parameter.
by Everett Griffiths
GeodesicSolutions GeoAuctions Premier and GeoClassifieds Basic 2.0.3 - SQL Injection via Index.php b Parameter
SQL injection vulnerability in index.php in GeodesicSolutions (1) GeoAuctions Premier 2.0.3 and (2) GeoClassifieds Basic 2.0.3 allows remote attackers to execute arbitrary SQL commands via the b parameter.
by Esac
McAfee ePolicy Orchestrator < 4.5.7 and 4.6.x < 4.6.6 - SQL Injection via Agent-Handler Component
SQL injection vulnerability in the Agent-Handler component in McAfee ePolicy Orchestrator (ePO) before 4.5.7 and 4.6.x before 4.6.6 allows remote attackers to execute arbitrary SQL commands via a crafted request over the Agent-Server communication channel.
by st3n
Wireshark <1.8.13, <1.10.6 - Buffer Overflow
Buffer overflow in the mpeg_read function in wiretap/mpeg.c in the MPEG parser in Wireshark 1.8.x before 1.8.13 and 1.10.x before 1.10.6 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a large record in MPEG data.
by Metasploit
iMember360 plugin <3.9.001 - Command Injection
The iMember360 plugin 3.8.012 through 3.9.001 for WordPress allows remote authenticated administrators to execute arbitrary commands via shell metacharacters in the i4w_trace parameter. NOTE: this can be leveraged with CVE-2014-8948 to allow remote attackers to execute code. NOTE: it is not clear whether this issue itself crosses privileges.
by Everett Griffiths
Geodesic Solutions GeoCore MAX 7.3.3 - SQL Injection via Register.php Parameters
Multiple SQL injection vulnerabilities in register.php in Geodesic Solutions GeoCore MAX 7.3.3 (formerly GeoClassifieds and GeoAuctions) allow remote attackers to execute arbitrary SQL commands via the (1) c[password] or (2) c[username] parameter. NOTE: the b parameter to index.php vector is already covered by CVE-2006-3823.
by Esac
ApPHP MicroBlog 1.0.1 - Remote Command Execution
by LOTFREE
NTP Monitor List Scanner
The monlist feature in ntp_request.c in ntpd in NTP before 4.2.7p26 allows remote attackers to cause a denial of service (traffic amplification) via forged (1) REQ_MON_GETLIST or (2) REQ_MON_GETLIST_1 requests, as exploited in the wild in December 2013.
by Danilo PC
Symantec Endpoint Protection Manager - Memory Corruption
Buffer overflow in secars.dll in the management console in Symantec Endpoint Protection Manager (SEPM) 12.1.x before 12.1.3, and Symantec Endpoint Protection Center (SPC) Small Business Edition 12.0.x, allows remote attackers to execute arbitrary code via unspecified vectors.
by st3n
Kolibri 2.0 - Remote Code Execution via Long URI in GET Request
Stack-based buffer overflow in Kolibri 2.0 allows remote attackers to execute arbitrary code via a long URI in a GET request.
by Polunchis
cFos Personal Net 3.09 - Remote Heap Memory Corruption (Denial of Service)
by LiquidWorm
Amtelco miSecureMessages <6.2 - Info Disclosure
Amtelco miSecureMessages (aka MSM) 6.2 does not properly manage sessions, which allows remote authenticated users to obtain sensitive information via a modified message request.
by Jared Bird
Acunetix Web Vulnerability Scanner 8 build 20120704 - Stack-Based Buffer Overflow via IMG Element URL
Stack-based buffer overflow in Acunetix Web Vulnerability Scanner (WVS) 8 build 20120704 allows remote attackers to execute arbitrary code via an HTML file containing an IMG element with a long URL (src attribute).
by An7i
WordPress Plugin Work-The-Flow 1.2.1 - Arbitrary File Upload
by nopesled
WD Arkeia Virtual Appliance Firmware < 10.2.7 - Path Traversal and Remote Code Execution via Lang Cookie Parameter
Directory traversal vulnerability in opt/arkeia/wui/htdocs/index.php in the WD Arkeia virtual appliance (AVA) with firmware before 10.2.9 allows remote attackers to read arbitrary files and execute arbitrary PHP code via a ..././ (dot dot dot slash dot slash) in the lang Cookie parameter, as demonstrated by a request to login/doLogin.
by SEC Consult
dompdf < 0.6.1 - Arbitrary File Read via PHP Wrapper in input_file Parameter
dompdf.php in dompdf before 0.6.1, when DOMPDF_ENABLE_PHP is enabled, allows context-dependent attackers to bypass chroot protections and read arbitrary files via a PHP protocol and wrappers in the input_file parameter, as demonstrated by a php://filter/read=convert.base64-encode/resource in the input_file parameter.
by Portcullis
Alienvault 4.3.1 - SQL Injection / Cross-Site Scripting
by Sasha Zivojinovic
By Source