Exploitdb Exploits

50,076 exploits tracked across all sources.

Sort: Activity Stars
CVE-2014-2671 EXPLOITDB python VERIFIED
Microsoft Windows Media Player 11.0.5721.5230 - Memory Corruption
Microsoft Windows Media Player (WMP) 11.0.5721.5230 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted WAV file.
by TUNISIAN CYBER
CVE-2014-2671 EXPLOITDB python VERIFIED
Microsoft Windows Media Player 11.0.5721.5230 - Memory Corruption
Microsoft Windows Media Player (WMP) 11.0.5721.5230 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted WAV file.
by TUNISIAN CYBER
CVE-2014-2671 EXPLOITDB python VERIFIED
Microsoft Windows Media Player 11.0.5721.5230 - Memory Corruption
Microsoft Windows Media Player (WMP) 11.0.5721.5230 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted WAV file.
by TUNISIAN CYBER
CVE-2013-7346 EXPLOITDB text VERIFIED
Symphony CMS < 2.3.2 - Cross-Site Request Forgery via SQL Injection in Authors Sort Parameter
Cross-site request forgery (CSRF) vulnerability in Symphony CMS before 2.3.2 allows remote attackers to hijack the authentication of administrators for requests that conduct SQL injection attacks via the sort parameter to system/authors/, related to CVE-2013-2559.
by High-Tech Bridge
CVE-2008-6660 EXPLOITDB text VERIFIED
BigDump 0.29b - Unauthenticated Arbitrary File Upload and Remote Code Execution via Executable Extension Bypass
Unrestricted file upload vulnerability in bigdump.php in Alexey Ozerov BigDump 0.29b allows remote attackers to execute arbitrary code by uploading a file with an executable extension followed by a .sql extension, then accessing this file via a direct request. NOTE: some of these details are obtained from third party information.
by felipe andrian
EIP-2026-114327 EXPLOITDB php VERIFIED
WordPress Theme Felici - 'Uploadify.php' Arbitrary File Upload
by CaFc Versace
CVE-2014-125121 EXPLOITDB CRITICAL ruby VERIFIED
Array Networks vAPV/vxAG <8.3.2.17-9.2.0.34 - Privilege Escalation
Array Networks vAPV (version 8.3.2.17) and vxAG (version 9.2.0.34) appliances are affected by a privilege escalation vulnerability caused by a combination of hardcoded SSH credentials (or SSH private key) and insecure permissions on a startup script. The devices ship with a default SSH login or a hardcoded DSA private key, allowing an attacker to authenticate remotely with limited privileges. Once authenticated, an attacker can overwrite the world-writable /ca/bin/monitor.sh script with arbitrary commands. Since this script is executed with elevated privileges through the backend binary, enabling the debug monitor via backend -c "debug monitor on" triggers execution of the attacker's payload as root. This allows full system compromise.
by Metasploit
CVE-2014-0307 EXPLOITDB ruby VERIFIED
Microsoft Internet Explorer 9 - Use After Free
Use-after-free vulnerability in Microsoft Internet Explorer 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a certain sequence of manipulations of a TextRange element, aka "Internet Explorer Memory Corruption Vulnerability."
by Metasploit
EIP-2026-115431 EXPLOITDB c
Immunity Debugger 1.85 - Stack Overflow (PoC)
by Veysel HATAS
EIP-2026-109125 EXPLOITDB text VERIFIED
LifeSize UVC 1.2.6 - (Authenticated) Remote Code Execution
by Brandon Perry
CVE-2014-1691 EXPLOITDB ruby VERIFIED
Horde Application Framework < 5.1.1 - Remote Code Execution via Serialized Object in _formvars
The framework/Util/lib/Horde/Variables.php script in the Util library in Horde before 5.1.1 allows remote attackers to conduct object injection attacks and execute arbitrary PHP code via a crafted serialized object in the _formvars form.
by Metasploit
EIP-2026-100824 EXPLOITDB text VERIFIED
innoEDIT - 'innoedit.cgi' Remote Command Execution
by Felipe Andrian Peixoto
EIP-2026-115512 EXPLOITDB html VERIFIED
Kaspersky Internet Security - Remote Denial of Service
by CXsecurity
CVE-2014-2017 EXPLOITDB MEDIUM text
OXID eShop <4.7.11-4.8.4, <5.0.11-5.1.4 - CRLF Injection
CRLF injection vulnerability in OXID eShop Professional Edition before 4.7.11 and 4.8.x before 4.8.4, Enterprise Edition before 5.0.11 and 5.1.x before 5.1.4, and Community Edition before 4.7.11 and 4.8.x before 4.8.4 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.
by //sToRm
CVSS 6.1
EIP-2026-102317 EXPLOITDB text
Wireless Drive 1.1.0 iOS - Multiple Web Vulnerabilities
by Vulnerability-Lab
EIP-2026-101624 EXPLOITDB text
D-Link DIR-600L AX 1.00 - Cross-Site Request Forgery
by Dhruv Shah
CVE-2014-2587 EXPLOITDB text
McAfee Asset Manager 6.6 - SQL Injection
SQL injection vulnerability in jsp/reports/ReportsAudit.jsp in McAfee Asset Manager 6.6 allows remote authenticated users to execute arbitrary SQL commands via the username of an audit report (aka user parameter).
by Brandon Perry
CVE-2014-2586 EXPLOITDB text
McAfee Cloud Single Sign On - Stored Cross-Site Scripting via Login Audit Form Password Field
Cross-site scripting (XSS) vulnerability in the login audit form in McAfee Cloud Single Sign On (SSO) allows remote attackers to inject arbitrary web script or HTML via a crafted password.
by Brandon Perry
CVE-2006-2465 EXPLOITDB perl VERIFIED
mp3info 0.8.4 - Buffer Overflow via Long Command Line Argument
Buffer overflow in MP3Info 0.8.4 allows attackers to execute arbitrary code via a long command line argument. NOTE: if mp3info is not installed setuid or setgid in any reasonable context, then this issue might not be a vulnerability.
by Ayman Sagy
EIP-2026-114804 EXPLOITDB ruby VERIFIED
Quantum vmPRO - Backdoor Command (Metasploit)
by Metasploit
EIP-2026-114803 EXPLOITDB text
Quantum DXi V1000 2.2.1 - Static SSH Key
by xistence
EIP-2026-114789 EXPLOITDB text
Loadbalancer.org Enterprise VA 7.5.2 - Static SSH Key
by xistence
CVE-2014-2339 EXPLOITDB text VERIFIED
GNUboard 5.x - Authenticated SQL Injection via Subject or Content Parameter
Multiple SQL injection vulnerabilities in bbs/ajax.autosave.php in GNUboard 5.x and possibly earlier allow remote authenticated users to execute arbitrary SQL commands via the (1) subject or (2) content parameter.
by Claepo Wang
EIP-2026-105465 EXPLOITDB text VERIFIED
BigACE 2.7.5 - 'LANGUAGE' Directory Traversal
by Hossein Hezami
CVE-2008-5191 EXPLOITDB text VERIFIED
SePortal 2.4 - SQL Injection via poll_id or sp_id Parameter
Multiple SQL injection vulnerabilities in SePortal 2.4 allow remote attackers to execute arbitrary SQL commands via the (1) poll_id parameter to poll.php and the (2) sp_id parameter to staticpages.php.
by jsass