Exploitdb Exploits

50,076 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-115363 EXPLOITDB html
GreenBrowser 6.4.0515 - Heap Overflow
by Asesino04
CVE-2013-5673 EXPLOITDB text
IndiaNIC Testimonial plugin 2.2 - SQL Injection via custom_query Parameter
SQL injection vulnerability in testimonial.php in the IndiaNIC Testimonial plugin 2.2 for WordPress allows remote attackers to execute arbitrary SQL commands via the custom_query parameter in a testimonial_add action to wp-admin/admin-ajax.php.
by RogueCoder
EIP-2026-106375 EXPLOITDB text VERIFIED
dBlog CMS - 'm' SQL Injection
by ACC3SS
EIP-2026-102063 EXPLOITDB text
TP-Link TD-W8951ND - Multiple Vulnerabilities
by xistence
EIP-2026-101355 EXPLOITDB text
MikroTik RouterOS - sshd (ROSSSH) Remote Heap Corruption
by kingcope
EIP-2026-100326 EXPLOITDB text VERIFIED
Flo CMS - 'archivem' SQL Injection
by ACC3SS
CVE-2013-1775 EXPLOITDB python VERIFIED
Mac OS X Sudo Password Bypass
sudo 1.6.0 through 1.7.10p6 and sudo 1.8.0 through 1.8.6p6 allows local users or physically proximate attackers to bypass intended time restrictions and retain privileges without re-authenticating by setting the system clock and sudo user timestamp to the epoch.
by David Kennedy (ReL1K)
EIP-2026-119014 EXPLOITDB text
Oracle Java - ByteComponentRaster.verify() Memory Corruption
by Packet Storm
CVE-2013-0753 EXPLOITDB ruby VERIFIED
Mozilla Firefox <18 - Use After Free
Use-after-free vulnerability in the serializeToStream implementation in the XMLSerializer component in Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x before 17.0.2, Thunderbird before 17.0.2, Thunderbird ESR 10.x before 10.0.12 and 17.x before 17.0.2, and SeaMonkey before 2.15 allows remote attackers to execute arbitrary code via crafted web content.
by Metasploit
CVE-2013-2370 EXPLOITDB ruby VERIFIED
HP LoadRunner < 11.52 - Remote Code Execution
Unspecified vulnerability in HP LoadRunner before 11.52 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1671.
by Metasploit
EIP-2026-105207 EXPLOITDB text VERIFIED
appRain CMF - Multiple Cross-Site Request Forgery Vulnerabilities
by Yashar shahinzadeh
EIP-2026-104775 EXPLOITDB ruby VERIFIED
SPIP - 'connect' PHP Injection (Metasploit)
by Metasploit
CVE-2013-1775 EXPLOITDB ruby VERIFIED
Mac OS X Sudo Password Bypass
sudo 1.6.0 through 1.7.10p6 and sudo 1.8.0 through 1.8.6p6 allows local users or physically proximate attackers to bypass intended time restrictions and retain privileges without re-authenticating by setting the system clock and sudo user timestamp to the epoch.
by Metasploit
CVE-2013-1662 EXPLOITDB ruby VERIFIED
VMware Workstation 8.x-9.x and Player 4.x-5.x - Privilege Escalation via PATH lsb_release Hijacking
vmware-mount in VMware Workstation 8.x and 9.x and VMware Player 4.x and 5.x, on systems based on Debian GNU/Linux, allows host OS users to gain host OS privileges via a crafted lsb_release binary in a directory in the PATH, related to use of the popen library function.
by Metasploit
CVE-2013-4982 EXPLOITDB CRITICAL text VERIFIED
AVTECH AVN801 DVR Firmware - Authentication Bypass via Captcha
AVTECH AVN801 DVR has a security bypass via the administration login captcha
by Core Security
CVSS 9.8
CVE-2013-4978 EXPLOITDB text VERIFIED
AloahaPDFViewer <5.0.0.7 - Buffer Overflow
Stack-based buffer overflow in AloahaPDFViewer 5.0.0.7 and earlier in Aloaha PDF Suite FREE allows remote attackers to execute arbitrary code via a crafted PDF file.
by Marcos Accossatto
CVE-2013-3313 EXPLOITDB HIGH text
Loftek Nexus 543 IP Camera - Info Disclosure
The Loftek Nexus 543 IP Camera stores passwords in cleartext, which allows remote attackers to obtain sensitive information via an HTTP GET request to check_users.cgi. NOTE: cleartext passwords can also be obtained from proc/kcore when leveraging the directory traversal vulnerability in CVE-2013-3311.
by Craig Young
CVSS 7.5
CVE-2013-3312 EXPLOITDB HIGH text
Loftek Nexus 543 Firmware - Cross-Site Request Forgery via set_users.cgi
Multiple cross-site request forgery (CSRF) vulnerabilities in the Loftek Nexus 543 IP Camera allow remote attackers to hijack the authentication of unspecified victims for requests that change (1) passwords or (2) firewall configuration, as demonstrated by a request to set_users.cgi.
by Craig Young
CVSS 8.8
CVE-2013-3311 EXPLOITDB HIGH text
Loftek Nexus 543 Firmware - Unauthenticated Path Traversal via URL
Directory traversal vulnerability in the Loftek Nexus 543 IP Camera allows remote attackers to read arbitrary files via a .. (dot dot) in the URL of an HTTP GET request.
by Craig Young
CVSS 7.5
CVE-2013-3763 EXPLOITDB ruby VERIFIED
Oracle Endeca Server - Info Disclosure
Unspecified vulnerability in the Oracle Endeca Server component in Oracle Fusion Middleware 7.4.0 and 7.5.1.1 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2013-3764.
by Metasploit
CVE-2013-4694 EXPLOITDB python VERIFIED
Winamp <5.64 Build 3418 - Buffer Overflow
Stack-based buffer overflow in gen_jumpex.dll in Winamp before 5.64 Build 3418 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a package with a long Skin directory name. NOTE: a second buffer overflow involving a long GUI Search field to ml_local.dll was also reported. However, since it is only exploitable by the user of the application, this issue would not cross privilege boundaries unless Winamp is running under a highly restricted environment such as a kiosk.
by Ayman Sagy
EIP-2026-111231 EXPLOITDB text
PhpVibe 3.1 - Multiple Vulnerabilities
by Esac
EIP-2026-109651 EXPLOITDB text
MusicBox 2.3.8 - Multiple Vulnerabilities
by DevilScreaM
EIP-2026-109588 EXPLOITDB text
mooSocial 1.3 - Multiple Vulnerabilities
by Esac
EIP-2026-108586 EXPLOITDB text
Joomla! Component com_virtuemart 2.0.22a - SQL Injection
by Matias Fontanini