Exploitdb Exploits

50,076 exploits tracked across all sources.

Sort: Activity Stars
CVE-2013-6793 EXPLOITDB text VERIFIED
Olat 7.8.0.1 - Cross-Site Scripting via Calendar Event Name or Date Field
Multiple cross-site scripting (XSS) vulnerabilities in the Calendar module in Olat 7.8.0.1 (b20130821 N1) allow remote attackers to inject arbitrary web script or HTML via the (1) event name or (2) date field.
by Vulnerability-Lab
EIP-2026-119454 EXPLOITDB text VERIFIED
XAMPP for Windows 1.8.2 - Blind SQL Injection
by Sebastián Magof
CVE-2013-6794 EXPLOITDB text VERIFIED
Olat 7.8.0.1 - Cross-Site Scripting via Calendar Location Field
Cross-site scripting (XSS) vulnerability in the Calendar module in Olat 7.8.0.1 (b20130821 N1) allows remote attackers to inject arbitrary web script or HTML via the Location field. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
by Vulnerability-Lab
EIP-2026-107783 EXPLOITDB text
ILIAS eLearning CMS 4.3.4 < 4.4 - Persistent Cross-Site Scripting
by Vulnerability-Lab
CVE-2013-6275 EXPLOITDB MEDIUM html
Horde Groupware < 5.1.2 - Cross-Site Request Forgery in basic.php
Multiple CSRF issues in Horde Groupware Webmail Edition 5.1.2 and earlier in basic.php.
by Marcela Benetrix
CVSS 6.5
EIP-2026-107517 EXPLOITDB text
GTX CMS 2013 Optima - SQL Injection
by Vulnerability-Lab
CVE-2012-2336 EXPLOITDB c VERIFIED
PHP < 5.3.13 and 5.4.x < 5.4.3 - Denial of Service via Malformed CGI Query String
sapi/cgi/cgi_main.c in PHP before 5.3.13 and 5.4.x before 5.4.3, when configured as a CGI script (aka php-cgi), does not properly handle query strings that lack an = (equals sign) character, which allows remote attackers to cause a denial of service (resource consumption) by placing command-line options in the query string, related to lack of skipping a certain php_getopt for the 'T' case. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-1823.
by kingcope
CVE-2013-6236 EXPLOITDB CRITICAL text
IZON IP 2.0.2 - Use of Hard-coded Credentials
IZON IP 2.0.2: hard-coded password vulnerability
by Mark Stanislav
CVSS 9.8
CVE-2013-6021 EXPLOITDB perl
WatchGuard Fireware < 11.8 - Remote Code Execution via Long Session ID Cookie
Buffer overflow in WGagent in WatchGuard WSM and Fireware before 11.8 allows remote attackers to execute arbitrary code via a long sessionid value in a cookie.
by st3n
CVE-2006-6199 EXPLOITDB perl VERIFIED
BlazeVideo BlazeDVD Standard and Professional 5.0 - Stack-based Buffer Overflow via PLF Playlist Filename
Stack-based buffer overflow in BlazeVideo BlazeDVD Standard and Professional 5.0, and possibly earlier, allows remote attackers to execute arbitrary code via a long filename in a PLF playlist.
by Mike Czumak
EIP-2026-110753 EXPLOITDB text VERIFIED
PHP RSS Reader 2010 - SQL Injection
by mishal abdullah
EIP-2026-110208 EXPLOITDB text
Onpub CMS 1.4/1.5 - Multiple SQL Injections
by Vulnerability-Lab
EIP-2026-101916 EXPLOITDB perl
Pirelli Discus DRG A125g - Password Disclosure
by Sebastián Magof
CVE-2025-34123 EXPLOITDB HIGH python VERIFIED
VideoCharge Studio 2.12.3.685 - Buffer Overflow
A stack-based buffer overflow vulnerability exists in VideoCharge Studio 2.12.3.685 when processing a specially crafted .VSC configuration file. The issue occurs due to improper handling of user-supplied data in the XML 'Name' attribute, leading to an SEH overwrite condition. An attacker can exploit this vulnerability by convincing a user to open a malicious .VSC file, resulting in arbitrary code execution under the context of the user.
by metacom
EIP-2026-117765 EXPLOITDB perl VERIFIED
Photodex ProShow Producer 5.0.3310 - Local Buffer Overflow (SEH)
by Mike Czumak
EIP-2026-114317 EXPLOITDB text
WordPress Theme Curvo - Cross-Site Request Forgery / Arbitrary File Upload
by Byakuya Kouta
CVE-2011-4275 EXPLOITDB ruby VERIFIED
iTop 1.1.181 and 1.2.0-RC-282 - Cross-Site Scripting via Multiple Input Vectors
Multiple cross-site scripting (XSS) vulnerabilities in iTop (aka IT Operations Portal) 1.1.181 and 1.2.0-RC-282 allow remote attackers to inject arbitrary web script or HTML via (1) a crafted company name, (2) a crafted database server name, (3) a crafted CSV file, (4) a crafted copy-and-paste action, (5) the auth_user parameter in a suggest_pwd action to UI.php, (6) the c[menu] parameter to UniversalSearch.php, (7) the description parameter in a SearchFormToAdd_document_list action to UI.php, (8) the category parameter in an errors action to audit.php, or (9) the suggest_pwd parameter to UI.php.
by Metasploit
CVE-2013-4474 EXPLOITDB text VERIFIED
Canonical Ubuntu Linux < 0.24.1 - Improper Input Validation
Format string vulnerability in the extractPages function in utils/pdfseparate.cc in poppler before 0.24.3 allows remote attackers to cause a denial of service (crash) via format string specifiers in a destination filename.
by Daniel Kahn Gillmor
EIP-2026-102489 EXPLOITDB html VERIFIED
JReport - 'dealSchedules.jsp' Cross-Site Request Forgery
by Poonam Singh
EIP-2026-115270 EXPLOITDB c++ VERIFIED
FortKnox Personal Firewall 9.0.305.0/10.0.305.0 - Kernel Driver 'fortknoxfw.sys' Memory Corruption
by Arash Allebrahim
EIP-2026-114348 EXPLOITDB text
WordPress Theme SAICO 1.0 < 1.0.2 - Arbitrary File Upload
by Byakuya Kouta
EIP-2026-114934 EXPLOITDB text VERIFIED
ASF Demux for VideoLAN VLC Media Player 2.0.x - Denial of Service (PoC)
by Pedro Ribeiro
EIP-2026-114318 EXPLOITDB text VERIFIED
WordPress Theme Daily Deal - Arbitrary File Upload
by DevilScreaM
CVE-2013-10037 EXPLOITDB CRITICAL ruby VERIFIED
WebTester 5.x - Unauthenticated OS Command Injection via install2.php Parameters
An OS command injection vulnerability exists in WebTester version 5.x via the install2.php installation script. The parameters cpusername, cppassword, and cpdomain are passed directly to shell commands without sanitization. A remote unauthenticated attacker can exploit this flaw by sending a crafted HTTP POST request, resulting in arbitrary command execution on the underlying system with web server privileges.
by Metasploit
CVE-2012-10021 EXPLOITDB CRITICAL ruby
D-Link DIR-605L Wireless N300 Cloud Router <1.13 - Buffer Overflow
A stack-based buffer overflow vulnerability exists in D-Link DIR-605L Wireless N300 Cloud Router firmware versions 1.12 and 1.13 via the getAuthCode() function. The flaw arises from unsafe usage of sprintf() when processing user-supplied CAPTCHA data via the FILECODE parameter in /goform/formLogin. A remote unauthenticated attacker can exploit this to execute arbitrary code with root privileges on the device.
by Metasploit
CVSS 9.8