Exploitdb Exploits

50,076 exploits tracked across all sources.

Sort: Activity Stars
CVE-2013-5120 EXPLOITDB text
PHPFox - SQL Injection via search[gender] Parameter
SQL injection vulnerability in PHPFox before 3.6.0 (build4) allows remote attackers to execute arbitrary SQL commands via the search[gender] parameter to user/browse/view_/.
by Matias Fontanini
CVE-2013-1690 EXPLOITDB HIGH ruby VERIFIED
Firefox < 22.0 and Thunderbird < 17.0.7 - Remote Code Execution via onreadystatechange Event Handling
Mozilla Firefox before 22.0, Firefox ESR 17.x before 17.0.7, Thunderbird before 17.0.7, and Thunderbird ESR 17.x before 17.0.7 do not properly handle onreadystatechange events in conjunction with page reloading, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted web site that triggers an attempt to execute data at an unmapped memory location.
by Metasploit
CVSS 8.8
CVE-2013-5121 EXPLOITDB text
PHPFox - SQL Injection via search[sort_by] Parameter
SQL injection vulnerability in PHPFox before 3.6.0 (build6) allows remote attackers to execute arbitrary SQL commands via the search[sort_by] parameter to user/browse/view_/.
by Matias Fontanini
CVE-2013-4880 EXPLOITDB text VERIFIED
BigTree CMS < 4.0 - Cross-Site Scripting via Module Parameter
Cross-site scripting (XSS) vulnerability in core/admin/modules/developer/modules/views/add.php in BigTree CMS 4.0 RC2 and earlier allows remote attackers to inject arbitrary web script or HTML via the module parameter.
by High-Tech Bridge SA
EIP-2026-104977 EXPLOITDB text VERIFIED
Advanced Guestbook - 'addentry.php' Arbitrary File Upload
by Ashiyane Digital Security Team
CVE-2013-4884 EXPLOITDB text VERIFIED
McAfee SuperScan 4.0 - Cross-Site Scripting via UTF-7 Encoded Server Response
Cross-site scripting (XSS) vulnerability in McAfee SuperScan 4.0 allows remote attackers to inject arbitrary web script or HTML via UTF-7 encoded sequences in a server response, which is not properly handled in the SuperScan HTML report.
by Trustwave's SpiderLabs
CVE-2011-0923 EXPLOITDB python
HP Data Protector - Remote Code Execution via EXEC_CMD Argument Injection
The client in HP Data Protector does not properly validate EXEC_CMD arguments, which allows remote attackers to execute arbitrary Perl code via a crafted command, related to the "local bin directory."
by Alessandro Di Pinto & Claudio Moletta
CVE-2010-2620 EXPLOITDB python VERIFIED
Open-FTPD < 1.2 - Unauthenticated Authentication Bypass via FTP Command Injection
Open&Compact FTP Server (Open-FTPD) 1.2 and earlier allows remote attackers to bypass authentication by sending (1) LIST, (2) RETR, (3) STOR, or other commands without performing the required login steps first.
by Wireghoul
EIP-2026-114161 EXPLOITDB text VERIFIED
WordPress Plugin Usernoise 3.7.8 - Persistent Cross-Site Scripting
by RogueCoder
EIP-2026-113597 EXPLOITDB text
WordPress Plugin Booking Calendar 4.1.4 - Cross-Site Request Forgery
by Dylan Irzi
EIP-2026-111355 EXPLOITDB text VERIFIED
Pluck CMS 4.7 - HTML Code Injection
by Yashar shahinzadeh
EIP-2026-108531 EXPLOITDB text
Joomla! Component com_sectionex 2.5.96 - SQL Injection
by Matias Fontanini
EIP-2026-103065 EXPLOITDB text VERIFIED
Apache suEXEC - Information Disclosure / Privilege Escalation
by kingcope
EIP-2026-102241 EXPLOITDB text
FTP OnConnect 1.4.11 iOS - Multiple Vulnerabilities
by Vulnerability-Lab
CVE-2013-4977 EXPLOITDB text VERIFIED
Hikvision DS-2CD7153-E <4.1.0 b130111 - Buffer Overflow
Buffer overflow in the RTSP Packet Handler in Hikvision DS-2CD7153-E IP camera with firmware 4.1.0 b130111 (Jan 2013), and possibly other devices, allows remote attackers to cause a denial of service (device crash and reboot) and possibly execute arbitrary code via a long string in the Range header field in an RTSP transaction.
by Core Security
CVE-2013-5028 EXPLOITDB text VERIFIED
Kwoksys Kwok Info Server <2.8.5 - SQL Injection
SQL injection vulnerability in IT/hardware-list.dll in Kwoksys Kwok Information Server before 2.8.5 allows remote authenticated users to execute arbitrary SQL commands via the (1) hardwareType, (2) hardwareStatus, or (3) hardwareLocation parameter in a search command.
by Yogesh Phadtare
CVE-2012-3993 EXPLOITDB ruby VERIFIED
Firefox 5.0 - 15.0.1 __exposedProps__ XCS Code Execution
The Chrome Object Wrapper (COW) implementation in Mozilla Firefox before 16.0, Firefox ESR 10.x before 10.0.8, Thunderbird before 16.0, Thunderbird ESR 10.x before 10.0.8, and SeaMonkey before 2.13 does not properly interact with failures of InstallTrigger methods, which allows remote attackers to execute arbitrary JavaScript code with chrome privileges via a crafted web site, related to an "XrayWrapper pollution" issue.
by Metasploit
CVE-2013-4885 EXPLOITDB text VERIFIED
nmap < 6.40 - Arbitrary File Write via http-domino-enum-passwords.nse Script
The http-domino-enum-passwords.nse script in NMap before 6.40, when domino-enum-passwords.idpath is set, allows remote servers to upload "arbitrarily named" files via a crafted FullName parameter in a response, as demonstrated using directory traversal sequences.
by Piotr Duszynski
CVE-2013-5316 EXPLOITDB text
RiteCMS 1.0.0 - Cross-Site Request Forgery via Administrator Password Change
Cross-site request forgery (CSRF) vulnerability in RiteCMS 1.0.0 allows remote attackers to hijack the authentication of administrators for requests that change the administrator password via an edit user action to cms/index.php.
by Yashar shahinzadeh
CVE-2013-6079 EXPLOITDB python VERIFIED
MostGear Soft Easy LAN Folder Share 3.2.0.100 - Buffer Overflow via Long Registration Code or License Registry Key
Buffer overflow in MostGear Soft Easy LAN Folder Share 3.2.0.100 allows local users to cause a denial of service (application crash) and possibly execute arbitrary code via a long string in the (1) registration code field in the activate license window or the (2) HKLM\SOFTWARE\MostGear\EasyLanFolderShare_V1\License registry key. NOTE: it is not clear from the original report whether this issue crosses privilege boundaries. If not, then it should not be included in CVE.
by sagi-
CVE-2013-5578 EXPLOITDB text
StarUML - Buffer Overflow in ToDot Method via Long Argument
Buffer overflow in the ToDot method in the WINGRAPHVIZLib.NEATO ActiveX control in WinGraphviz.dll in StarUML allows remote attackers to execute arbitrary code via a long argument.
by d3b4g
CVE-2013-5317 EXPLOITDB text
RiteCMS 1.0.0 - Authenticated Cross-Site Scripting via Mode Parameter
Cross-site scripting (XSS) vulnerability in RiteCMS 1.0.0 allows remote authenticated users to inject arbitrary web script or HTML via the mode parameter to cms/index.php.
by Yashar shahinzadeh
CVE-2013-4867 EXPLOITDB MEDIUM text VERIFIED
Electronic Arts Karotz Smart Rabbit <12.07.19.00 - Code Injection
Electronic Arts Karotz Smart Rabbit 12.07.19.00 allows Python module hijacking
by Trustwave's SpiderLabs
CVSS 6.3
CVE-2013-4864 EXPLOITDB CRITICAL text VERIFIED
MiCasaVerde VeraLite <1.5.408 - SSRF
MiCasaVerde VeraLite with firmware 1.5.408 allows remote attackers to send HTTP requests to intranet servers via the url parameter to cgi-bin/cmh/proxy.sh, related to a Server-Side Request Forgery (SSRF) issue.
by Trustwave's SpiderLabs
CVSS 9.8
CVE-2013-4863 EXPLOITDB HIGH text VERIFIED
MiCasaVerde VeraLite <1.5.408 - RCE
The HomeAutomationGateway service in MiCasaVerde VeraLite with firmware 1.5.408 allows (1) remote attackers to execute arbitrary Lua code via a RunLua action in a request to upnp/control/hag on port 49451 or (2) remote authenticated users to execute arbitrary Lua code via a RunLua action in a request to port_49451/upnp/control/hag.
by Trustwave's SpiderLabs
CVSS 8.8