Exploitdb Exploits

50,076 exploits tracked across all sources.

Sort: Activity Stars
CVE-2014-1854 EXPLOITDB text VERIFIED
WordPress AdRotate Pro/FREE <3.9.5/3.9.4 - SQL Injection
SQL injection vulnerability in library/clicktracker.php in the AdRotate Pro plugin 3.9 through 3.9.5 and AdRotate Free plugin 3.9 through 3.9.4 for WordPress allows remote attackers to execute arbitrary SQL commands via the track parameter.
by High-Tech Bridge SA
CVE-2014-2090 EXPLOITDB text
ILIAS 4.4.1 - Authenticated Cross-Site Scripting via tar, tar_val, or title Parameter
Multiple cross-site scripting (XSS) vulnerabilities in ilias.php in ILIAS 4.4.1 allow remote authenticated users to inject arbitrary web script or HTML via the (1) tar, (2) tar_val, or (3) title parameter.
by HauntIT
CVE-2014-2091 EXPLOITDB text VERIFIED
ATutor 2.1.1 - Authenticated Stored Cross-Site Scripting via Forum Title Parameter
Cross-site scripting (XSS) vulnerability in mods/_standard/forums/admin/forum_add.php in ATutor 2.1.1 allows remote authenticated administrators to inject arbitrary web script or HTML via the title parameter in an add_forum action. NOTE: the original disclosure also reported issues that may not cross privilege boundaries.
by HauntIT
CVE-2014-2069 EXPLOITDB HIGH text VERIFIED
Eshtery CMS - Path Traversal via File Parameter in FileManager.aspx
Absolute path traversal vulnerability in Eshtery CMS allows remote attackers to read arbitrary files via a full pathname in the file parameter to FileManager.aspx.
by peng.deng
CVSS 7.5
EIP-2026-108923 EXPLOITDB text VERIFIED
Jorjweb - 'id' SQL Injection
by Vulnerability Laboratory
EIP-2026-119252 EXPLOITDB python VERIFIED
VideoCharge Studio 2.12.3.685 - 'GetHttpResponse()' Man In The Middle Remote Code Execution
by Julien Ahrens
CVE-2013-4730 EXPLOITDB python VERIFIED
pcman's ftp server 2.0.7 - Unauthenticated Buffer Overflow via USER Command
Buffer overflow in PCMan's FTP Server 2.0.7 allows remote attackers to execute arbitrary code via a long string in a USER command.
by Sumit
EIP-2026-115023 EXPLOITDB python
Catia V5-6R2013 - 'CATV5_Backbone_Bus' Stack Buffer Overflow (PoC)
by Mohamed Shetta
CVE-2014-10009 EXPLOITDB text
Stark CRM 1.0 - Stored Cross-Site Scripting via Multiple Parameters
Multiple cross-site scripting (XSS) vulnerabilities in Stark CRM 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) first_name, (2) last_name, or (3) notes parameter to the client page; (4) insu_name or (5) price parameter to the add_insurance_cat page; or (6) status[] parameter to the add_status page.
by LiquidWorm
EIP-2026-101548 EXPLOITDB text
Barracuda Firewall 6.1.0.016 - Multiple Vulnerabilities
by Vulnerability-Lab
CVE-2014-125122 EXPLOITDB MEDIUM python
Linksys WRT120N 1.0.07 - Unauthenticated Stack-based Buffer Overflow via TM_Block_URL Parameter
A stack-based buffer overflow vulnerability exists in the tmUnblock.cgi endpoint of the Linksys WRT120N wireless router. The vulnerability is triggered by sending a specially crafted HTTP POST request with an overly long TM_Block_URL parameter to the endpoint. By exploiting this flaw, an unauthenticated remote attacker can overwrite memory in a controlled manner, enabling them to temporarily reset the administrator password of the device to a blank value. This grants unauthorized access to the router’s web management interface without requiring valid credentials.
by Craig Heffner
EIP-2026-119390 EXPLOITDB text
Lotus Sametime 8.5.1 - Password Disclosure
by Adriano Marcio Monteiro
EIP-2026-119251 EXPLOITDB python VERIFIED
VideoCharge Studio - 'CHTTPResponse::GetHttpResponse()' Remote Stack Buffer Overflow
by Julien Ahrens
EIP-2026-116845 EXPLOITDB ruby VERIFIED
Audiotran - '.pls' Local Stack Buffer Overflow (Metasploit)
by Metasploit
CVE-2014-100014 EXPLOITDB python
SolidWorks Workgroup PDM 2014 SP2 - Remote Code Execution via Long String in Opcode to Port 3000
Multiple stack-based buffer overflows in pdmwService.exe in SolidWorks Workgroup PDM 2014 SP2 allow remote attackers to execute arbitrary code via a long string in a (1) 2001, (2) 2002, or (3) 2003 opcode to port 3000.
by Mohamed Shetta
EIP-2026-115022 EXPLOITDB python
Catia V5-6R2013 - 'CATV5_AllApplications' Stack Buffer Overflow (PoC)
by Mohamed Shetta
EIP-2026-113925 EXPLOITDB text VERIFIED
WordPress Plugin NextGEN Gallery - 'jqueryFileTree.php' Directory Traversal
by Tom Adams
EIP-2026-113605 EXPLOITDB text
WordPress Plugin BP Group Documents 1.2.1 - Multiple Vulnerabilities
by Tom Adams
CVE-2014-1610 EXPLOITDB ruby VERIFIED
MediaWiki <1.22.2/<1.21.5/<1.19.11 - RCE
MediaWiki 1.22.x before 1.22.2, 1.21.x before 1.21.5, and 1.19.x before 1.19.11, when DjVu or PDF file upload support is enabled, allows remote attackers to execute arbitrary commands via shell metacharacters in (1) the page parameter to includes/media/DjVu.php; (2) the w parameter (aka width field) to thumb.php, which is not properly handled by includes/media/PdfHandler_body.php; and possibly unspecified vectors in (3) includes/media/Bitmap.php and (4) includes/media/ImageHandler.php.
by Metasploit
CVE-2014-2072 EXPLOITDB CRITICAL python VERIFIED
Dassault Systemes Catia V5-6R2013 - Buffer Overflow
Dassault Systemes Catia V5-6R2013: Stack Buffer Overflow due to inadequate boundary checks
by Mohamed Shetta
CVSS 9.8
EIP-2026-102577 EXPLOITDB text
Embedthis Goahead WebServer 3.1.3-0 - Multiple Vulnerabilities
by Maksymilian Motyl
EIP-2026-101632 EXPLOITDB text
D-Link DIR-615 vE4 Firmware 5.10 - Cross-Site Request Forgery
by Dhruv Shah
EIP-2026-101551 EXPLOITDB text
Barracuda Message Archiver 650 - Persistent Cross-Site Scripting
by Vulnerability-Lab
CVE-2013-5019 EXPLOITDB python VERIFIED
Ultra Mini HTTPD 1.21 - Buffer Overflow
Stack-based buffer overflow in Ultra Mini HTTPD 1.21 allows remote attackers to execute arbitrary code via a long resource name in an HTTP request.
by Sumit
CVE-2012-3152 EXPLOITDB CRITICAL ruby VERIFIED
Oracle Reports Developer - Info Disclosure
Unspecified vulnerability in the Oracle Reports Developer component in Oracle Fusion Middleware 11.1.1.4, 11.1.1.6, and 11.1.2.0 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Report Server Component. NOTE: the previous information is from the October 2012 CPU. Oracle has not commented on claims from the original researcher that the URLPARAMETER functionality allows remote attackers to read and upload arbitrary files to reports/rwservlet, and that this issue occurs in earlier versions. NOTE: this can be leveraged with CVE-2012-3153 to execute arbitrary code by uploading a .jsp file.
by Metasploit
CVSS 9.1