Exploitdb Exploits

50,076 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-105571 EXPLOITDB text VERIFIED
Bo-Blog 2.1.1 - Cross-Site Scripting / SQL Injection
by Ashiyane Digital Security Team
CVE-2013-4730 EXPLOITDB python VERIFIED
pcman's ftp server 2.0.7 - Unauthenticated Buffer Overflow via USER Command
Buffer overflow in PCMan's FTP Server 2.0.7 allows remote attackers to execute arbitrary code via a long string in a USER command.
by Polunchis
EIP-2026-118375 EXPLOITDB ruby VERIFIED
Cogent DataHub - HTTP Server Buffer Overflow (Metasploit)
by Metasploit
CVE-2013-6283 EXPLOITDB python VERIFIED
VLC Media Player < 2.0.8 - Denial of Service and Possible Remote Code Execution via Long URL in M3U File
VideoLAN VLC Media Player 2.0.8 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in a URL in a m3u file.
by Asesino04
CVE-2013-2465 EXPLOITDB CRITICAL ruby VERIFIED
Java storeImageArray() Invalid Array Indexing Vulnerability
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. NOTE: the previous information is from the June 2013 CPU. Oracle has not commented on claims from another vendor that this issue allows remote attackers to bypass the Java sandbox via vectors related to "Incorrect image channel verification" in 2D.
by Metasploit
CVSS 9.8
CVE-2013-0526 EXPLOITDB text
IBM Avocent 1754 KVM - Command Injection
ping.php in Global Console Manager 16 (GCM16) and Global Console Manager 32 (GCM32) before 1.20.0.22575 on the IBM Avocent 1754 KVM switch allows remote authenticated users to execute arbitrary commands via shell metacharacters in the (1) count or (2) size parameter.
by Alejandro Alvarez Bravo
EIP-2026-111625 EXPLOITDB text VERIFIED
Quack Chat 1.0 - Multiple Vulnerabilities
by Dylan Irzi
EIP-2026-102275 EXPLOITDB text
Photo Transfer Upload 1.0 iOS - Multiple Vulnerabilities
by Vulnerability-Lab
EIP-2026-102222 EXPLOITDB text
Copy to WebDAV 1.1 iOS - Multiple Vulnerabilities
by Vulnerability-Lab
CVE-2013-5092 EXPLOITDB text VERIFIED
AlgoSec Firewall Analyzer 6.1-b86 - XSS
Cross-site scripting (XSS) vulnerability in afa/php/Login.php in AlgoSec Firewall Analyzer 6.1-b86 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
by Asheesh kumar Mani Tripathi
CVE-2013-10047 EXPLOITDB CRITICAL ruby VERIFIED
MiniWeb HTTP Server <= Build 300 - File Upload
An unrestricted file upload vulnerability exists in MiniWeb HTTP Server <= Build 300 that allows unauthenticated remote attackers to upload arbitrary files to the server’s filesystem. By abusing the upload handler and crafting a traversal path, an attacker can place a malicious .exe in system32, followed by a .mof file in the WMI directory. This triggers execution of the payload with SYSTEM privileges via the Windows Management Instrumentation service. The exploit is only viable on Windows versions prior to Vista.
by Metasploit
CVE-2013-5019 EXPLOITDB ruby VERIFIED
Ultra Mini HTTPD 1.21 - Buffer Overflow
Stack-based buffer overflow in Ultra Mini HTTPD 1.21 allows remote attackers to execute arbitrary code via a long resource name in an HTTP request.
by Metasploit
EIP-2026-119012 EXPLOITDB text
Oracle Java - 'IntegerInterleavedRaster.verify()' Signed Integer Overflow
by Packet Storm
EIP-2026-118696 EXPLOITDB ruby VERIFIED
Intrasrv 1.0 - Remote Buffer Overflow (Metasploit)
by Metasploit
CVE-2013-3928 EXPLOITDB ruby VERIFIED
Chasys Draw IES < 4.11.02 - Remote Code Execution via Crafted BMP File
Stack-based buffer overflow in the ReadFile function in flt_BMP.dll in Chasys Draw IES before 4.11.02 allows remote attackers to execute arbitrary code via crafted biPlanes and biBitCount fields in a BMP file.
by Metasploit
EIP-2026-113168 EXPLOITDB text
w-CMS 2.0.1 - Remote Code Execution
by ICheer_No0M
EIP-2026-112395 EXPLOITDB text
Spitfire CMS 1.1.4 - Cross-Site Request Forgery
by Yashar shahinzadeh
EIP-2026-111337 EXPLOITDB text VERIFIED
Pligg CMS 2.0.0rc2 - Cross-Site Request Forgery (File Creation)
by DaOne
EIP-2026-109233 EXPLOITDB text
Mac's CMS 1.1.4 - Multiple Vulnerabilities
by Yashar shahinzadeh
CVE-2014-1222 EXPLOITDB text
vtiger CRM < 6.0.0 - Authenticated Path Traversal via KCFinder File Parameter
Directory traversal vulnerability in kcfinder/browse.php in Vtiger CRM before 6.0.0 Security patch 1 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the file parameter in a download action. NOTE: it is likely that this issue is actually in the KCFinder third-party component, and it affects additional products besides Vtiger CRM.
by DaOne
CVE-2013-5117 EXPLOITDB text VERIFIED
zldnn dnnarticle < 10.0 - SQL Injection via categoryid Parameter
SQL injection vulnerability in the RSS page (DNNArticleRSS.aspx) in the ZLDNN DNNArticle module before 10.1 for DotNetNuke allows remote attackers to execute arbitrary SQL commands via the categoryid parameter.
by Sajjad Pourali
EIP-2026-105087 EXPLOITDB text
Alibaba Clone Tritanium Version - 'news_desc.html' SQL Injection
by IRAQ_JAGUAR
EIP-2026-104901 EXPLOITDB text VERIFIED
ACal 2.2.6 - 'view' Local File Inclusion
by ICheer_No0M
CVE-2013-5576 EXPLOITDB ruby VERIFIED
Joomla! <2.5.14, <3.1.5 - Auth Bypass
administrator/components/com_media/helpers/media.php in the media manager in Joomla! 2.5.x before 2.5.14 and 3.x before 3.1.5 allows remote authenticated users or remote attackers to bypass intended access restrictions and upload files with dangerous extensions via a filename with a trailing . (dot), as exploited in the wild in August 2013.
by Metasploit
CVE-2010-2620 EXPLOITDB ruby VERIFIED
Open-FTPD < 1.2 - Unauthenticated Authentication Bypass via FTP Command Injection
Open&Compact FTP Server (Open-FTPD) 1.2 and earlier allows remote attackers to bypass authentication by sending (1) LIST, (2) RETR, (3) STOR, or other commands without performing the required login steps first.
by Metasploit