Exploitdb Exploits

50,076 exploits tracked across all sources.

Sort: Activity Stars
CVE-2014-0114 EXPLOITDB ruby VERIFIED
Apache Commons BeanUtils <1.9.2 - RCE
Apache Commons BeanUtils, as distributed in lib/commons-beanutils-1.8.0.jar in Apache Struts 1.x through 1.3.10 and in other products requiring commons-beanutils through 1.9.2, does not suppress the class property, which allows remote attackers to "manipulate" the ClassLoader and execute arbitrary code via the class parameter, as demonstrated by the passing of this parameter to the getClass method of the ActionForm object in Struts 1.
by Metasploit
CVE-2013-7409 EXPLOITDB ruby VERIFIED
ALLPlayer 5.6.2-5.8.1 - Buffer Overflow via .m3u Playlist File
Buffer overflow in ALLPlayer 5.6.2 through 5.8.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in a .m3u (playlist) file.
by Metasploit
CVE-2014-2317 EXPLOITDB text
OpenDocMan <1.2.7.2 - SQL Injection
SQL injection vulnerability in ajax_udf.php in OpenDocMan before 1.2.7.2 allows remote attackers to execute arbitrary SQL commands via the table parameter. NOTE: some of these details are obtained from third party information.
by High-Tech Bridge SA
CVE-2014-1944 EXPLOITDB text
ilch_cms < 2.0 - Cross-Site Scripting via Guestbook Text Parameter
Cross-site scripting (XSS) vulnerability in Ilch CMS 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the text parameter to index.php/guestbook/index/newentry.
by High-Tech Bridge SA
EIP-2026-106171 EXPLOITDB text VERIFIED
Cory Jobs Search - 'cid' SQL Injection
by Slotleet
EIP-2026-116936 EXPLOITDB python VERIFIED
Calavera UpLoader 3.5 - Local Buffer Overflow (SEH)
by Daniel la calavera
EIP-2026-114005 EXPLOITDB text VERIFIED
WordPress Plugin Relevanssi - 'category_name' SQL Injection
by anonymous
CVE-2014-10034 EXPLOITDB text VERIFIED
couponphp < 1.1.0 - Authenticated SQL Injection via iDisplayLength or iDisplayStart Parameter
Multiple SQL injection vulnerabilities in the admin area in couponPHP before 1.2.0 allow remote administrators to execute arbitrary SQL commands via the (1) iDisplayLength or (2) iDisplayStart parameter to (a) comments_paginate.php or (b) stores_paginate.php in admin/ajax/.
by LiquidWorm
CVE-2013-7409 EXPLOITDB perl VERIFIED
ALLPlayer 5.6.2-5.8.1 - Buffer Overflow via .m3u Playlist File
Buffer overflow in ALLPlayer 5.6.2 through 5.8.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in a .m3u (playlist) file.
by Gabor Seljan
CVE-2013-6233 EXPLOITDB text
SpagoBI < 4.0 - Authenticated Cross-Site Scripting via Short Document Metadata Description Field
Cross-site scripting (XSS) vulnerability in SpagoBI before 4.1 allows remote authenticated users to inject arbitrary web script or HTML via the Description field in the "Short document metadata."
by Christian Catalano
CVE-2013-6232 EXPLOITDB text
SpagoBI < 4.0 - Authenticated Cross-Site Scripting via Document Note
Cross-site scripting (XSS) vulnerability in SpagoBI before 4.1 allows remote authenticated users to inject arbitrary web script or HTML via a document note in the execution page.
by Christian Catalano
CVE-2013-6234 EXPLOITDB HIGH text
SpagoBI < 4.1 - Authenticated Arbitrary File Upload via Worksheet Designer
Unrestricted file upload vulnerability in the Worksheet designer in SpagoBI before 4.1 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in an unspecified directory, aka "XSS File Upload."
by Christian Catalano
CVSS 8.0
CVE-2014-10035 EXPLOITDB text VERIFIED
couponphp < 1.1.0 - Authenticated Cross-Site Scripting via Admin Area Parameters
Multiple cross-site scripting (XSS) vulnerabilities in the admin area in couponPHP before 1.2.0 allow remote administrators to inject arbitrary web script or HTML via the (1) sEcho parameter to comments_paginate.php or (2) stores_paginate.php or the (3) affiliate_url, (4) description, (5) domain, (6) seo[description], (7) seo[heading], (8) seo[title], (9) seo[keywords], (10) setting[logo], (11) setting[perpage], or (12) setting[sitename] to admin/index.php.
by LiquidWorm
CVE-2014-0372 EXPLOITDB text VERIFIED
Oracle Demantra Demand Management - SQL Injection
Unspecified vulnerability in the Oracle Demantra Demand Management component in Oracle Supply Chain Products Suite 7.2.0.3 SQL-Server, 7.3.0, 7.3.1, 12.2.1, and 12.2.2 allows remote authenticated users to affect confidentiality and integrity via unknown vectors related to DM Others.
by Portcullis
CVE-2014-0379 EXPLOITDB text VERIFIED
Oracle Demantra Demand Management - SQL Injection
Unspecified vulnerability in the Oracle Demantra Demand Management component in Oracle Supply Chain Products Suite 7.2.0.3 SQL-Server, 7.3.0.x, 7.3.1.x, 12.2.0, 12.2.1, and 12.2.2 allows remote attackers to affect integrity via unknown vectors related to DM Others.
by Portcullis
CVE-2013-5795 EXPLOITDB text VERIFIED
Oracle Demantra Demand Management - Info Disclosure
Unspecified vulnerability in the Oracle Demantra Demand Management component in Oracle Supply Chain Products Suite 7.2.0.3 SQL-Server, 7.3.0, 7.3.1, 12.2.1, 12.2.2, and 12.2.3 allows remote attackers to affect confidentiality via unknown vectors related to DM Others.
by Portcullis
CVE-2013-5877 EXPLOITDB text VERIFIED
Oracle Demantra Demand Management <12.2.1 - Info Disclosure
Unspecified vulnerability in the Oracle Demantra Demand Management component in Oracle Supply Chain Products Suite 7.2.0.3 SQL-Server, 7.3.0, 7.3.1, 12.2.0, and 12.2.1 allows remote attackers to affect confidentiality via unknown vectors related to DM Others.
by Portcullis
CVE-2014-0750 EXPLOITDB ruby VERIFIED
GE Proficy HMI/SCADA - CIMPLICITY < 8.2 - Remote Code Execution via Directory Traversal in WebView CimWeb
Directory traversal vulnerability in gefebt.exe in the WebView CimWeb components in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY through 8.2 SIM 24, and Proficy Process Systems with CIMPLICITY, allows remote attackers to execute arbitrary code via a crafted HTTP request, aka ZDI-CAN-1622.
by Metasploit
CVE-2007-2568 EXPLOITDB ruby VERIFIED
VCDGear 3.55 - Stack-Based Buffer Overflow via CUE File Tag or Track Type
Multiple stack-based buffer overflows in VCDGear 3.55 allow user-assisted remote attackers to execute arbitrary code via a long (1) tag or (2) track type in a CUE file.
by Provensec
EIP-2026-118022 EXPLOITDB ruby VERIFIED
Total Video Player 1.3.1 - 'Settings.ini' Local Buffer Overflow (SEH) (Metasploit)
by Metasploit
EIP-2026-117245 EXPLOITDB python
Gold MP4 Player 3.3 - Local Buffer Overflow (SEH)
by metacom
CVE-2014-1908 EXPLOITDB text
VideoWhisper Live Streaming <4.29.5 - Info Disclosure
The error-handling feature in (1) bp.php, (2) videowhisper_streaming.php, and (3) ls/rtmp.inc.php in the VideoWhisper Live Streaming Integration plugin before 4.29.5 for WordPress allows remote attackers to obtain sensitive information via a direct request, which reveals the full path in an error message.
by High-Tech Bridge SA
CVE-2013-6043 EXPLOITDB text
Softaculous Webuzo < 2.1.4 - Username Enumeration via Login Error Messages
The login function in Softaculous Webuzo before 2.1.4 provides different error messages for invalid authentication attempts depending on whether the user account exists, which allows remote attackers to enumerate usernames via a series of requests.
by Mahendra
EIP-2026-113273 EXPLOITDB text VERIFIED
webERP 4.11.3 - 'SalesInquiry.php?SortBy' SQL Injection
by HauntIT
EIP-2026-110799 EXPLOITDB text
PHP-CMDB 0.7.3 - Multiple Vulnerabilities
by HauntIT