Exploitdb Exploits

50,076 exploits tracked across all sources.

Sort: Activity Stars
CVE-2013-4859 EXPLOITDB HIGH text VERIFIED
INSTEON Hub 2242-222 - No Auth Required
INSTEON Hub 2242-222 lacks Web and API authentication
by Trustwave's SpiderLabs
CVSS 8.1
CVE-2013-7389 EXPLOITDB text
D-Link DIR-645 < 1.04B11 - Cross-Site Scripting via Parental Controls Bind Parameter
Multiple cross-site scripting (XSS) vulnerabilities in D-Link DIR-645 Router (Rev. A1) with firmware before 1.04B11 allow remote attackers to inject arbitrary web script or HTML via the (1) deviceid parameter to parentalcontrols/bind.php, (2) RESULT parameter to info.php, or (3) receiver parameter to bsc_sms_send.php.
by Roberto Paleari
CVE-2013-4868 EXPLOITDB MEDIUM text VERIFIED
Karotz API <12.07.19.00 - Info Disclosure
Karotz API 12.07.19.00: Session Token Information Disclosure
by Trustwave's SpiderLabs
CVSS 5.3
CVE-2013-2653 EXPLOITDB text VERIFIED
SilverStripe 3.0.3 - Phishing Attack via GET Request Login
security/MemberLoginForm.php in SilverStripe 3.0.3 supports login using a GET request, which makes it easier for remote attackers to conduct phishing attacks without detection by the victim.
by Fara Rustein
CVE-2013-4200 EXPLOITDB text VERIFIED
Plone 2.1-4.1, 4.2-4.2.5, 4.3-4.3.1 - Open Redirect via Space-Prefixed URL in 'next' Parameter
The isURLInPortal method in the URLTool class in in_portal.py in Plone 2.1 through 4.1, 4.2.x through 4.2.5, and 4.3.x through 4.3.1 treats URLs starting with a space as a relative URL, which allows remote attackers to bypass the allow_external_login_sites filtering property, redirect users to arbitrary web sites, and conduct phishing attacks via a space before a URL in the "next" parameter to acl_users/credentials_cookie_auth/require_login.
by Cyrill Bannwart
CVE-2013-4624 EXPLOITDB text VERIFIED
Jahia xCM 6.6.1.0 - Cross-Site Scripting via Multiple Parameters
Multiple cross-site scripting (XSS) vulnerabilities in Jahia xCM 6.6.1.0 before hotfix 7 allow remote attackers to inject arbitrary web script or HTML via (1) the site parameter to engines/manager.jsp, (2) the searchString parameter to administration/ in a search action, or the (3) username, (4) firstName, (5) lastName, (6) email, or (7) organization field to administration/ in a users action.
by High-Tech Bridge
CVE-2013-4624 EXPLOITDB text VERIFIED
Jahia xCM 6.6.1.0 - Cross-Site Scripting via Multiple Parameters
Multiple cross-site scripting (XSS) vulnerabilities in Jahia xCM 6.6.1.0 before hotfix 7 allow remote attackers to inject arbitrary web script or HTML via (1) the site parameter to engines/manager.jsp, (2) the searchString parameter to administration/ in a search action, or the (3) username, (4) firstName, (5) lastName, (6) email, or (7) organization field to administration/ in a users action.
by High-Tech Bridge
CVE-2013-3956 EXPLOITDB python VERIFIED
Novell Client - Local Privilege Escalation via NICM.SYS IOCTL 0x143B6B
The NICM.SYS kernel driver 3.1.11.0 in Novell Client 4.91 SP5 on Windows XP and Windows Server 2003; Novell Client 2 SP2 on Windows Vista and Windows Server 2008; and Novell Client 2 SP3 on Windows Server 2008 R2, Windows 7, Windows 8, and Windows Server 2012 allows local users to gain privileges via a crafted 0x143B6B IOCTL call.
by sickness
EIP-2026-107160 EXPLOITDB text
FluxBB 1.5.3 - Multiple Vulnerabilities
by LiquidWorm
EIP-2026-102517 EXPLOITDB python
OpenEMM-2013 8.10.380.hf13.0.066 - SOAP SQL Injection / Persistent Cross-Site Scripting
by drone
EIP-2026-102307 EXPLOITDB text
WebDisk 3.0.2 PhotoViewer iOS - Command Execution
by Vulnerability-Lab
EIP-2026-102291 EXPLOITDB text
Private Photos 1.0 iOS - Persistent Cross-Site Scripting
by Vulnerability-Lab
CVE-2013-3365 EXPLOITDB html
TRENDnet TEW-812DRU - Authenticated OS Command Injection via Multiple Parameters
TRENDnet TEW-812DRU router allows remote authenticated users to execute arbitrary commands via shell metacharacters in the (1) wan network prefix to internet/ipv6.asp; (2) remote port to adm/management.asp; (3) pptp username, (4) pptp password, (5) ip, (6) gateway, (7) l2tp username, or (8) l2tp password to internet/wan.asp; (9) NtpDstStart, (10) NtpDstEnd, or (11) NtpDstOffset to adm/time.asp; or (12) device url to adm/management.asp. NOTE: vectors 9, 10, and 11 can be exploited by unauthenticated remote attackers by leveraging CVE-2013-3098.
by Jacob Holcomb
EIP-2026-113442 EXPLOITDB text
Windu CMS 2.2 - Multiple Vulnerabilities
by LiquidWorm
CVE-2013-1616 EXPLOITDB text VERIFIED
Symantec Web Gateway < 5.1.1 - OS Command Injection via Management Console
The management console on the Symantec Web Gateway (SWG) appliance before 5.1.1 allows remote attackers to execute arbitrary commands by injecting a command into an application script.
by SEC Consult
EIP-2026-106690 EXPLOITDB text
Easy Blog by JM LLC - Multiple Vulnerabilities
by Sp3ctrecore
EIP-2026-105402 EXPLOITDB text
Basic Forum by JM LLC - Multiple Vulnerabilities
by Sp3ctrecore
CVE-2013-2251 EXPLOITDB CRITICAL ruby VERIFIED
Apache Archiva 1.3-1.3.8 - Remote Code Execution via OGNL Expression Injection
Apache Struts 2.0.0 through 2.3.15 allows remote attackers to execute arbitrary OGNL expressions via a parameter with a crafted (1) action:, (2) redirect:, or (3) redirectAction: prefix.
by Metasploit
CVSS 9.8
CVE-2013-4659 EXPLOITDB CRITICAL python
ASUS RT-AC66U and TRENDnet TEW-812DRU Firmware - Remote Code Execution via ACSD TCP Port 5916 Buffer Overflow
Buffer overflow in Broadcom ACSD allows remote attackers to execute arbitrary code via a long string to TCP port 5916. This component is used on routers of multiple vendors including ASUS RT-AC66U and TRENDnet TEW-812DRU.
by Jacob Holcomb
CVSS 9.8
EIP-2026-101575 EXPLOITDB perl
Broadkam PJ871 - Authentication Bypass
by d3c0der
CVE-2013-0699 EXPLOITDB python
Galil RIO-47100 Pocket PLC - Denial of Service via Repeated Requests
The Galil RIO-47100 Pocket PLC allows remote attackers to cause a denial of service via a session that includes "repeated requests."
by Sapling
CVE-2013-1436 EXPLOITDB html VERIFIED
xmonad-contrib < 0.11.2 - Remote Code Execution via Web Page Title
The XMonad.Hooks.DynamicLog module in xmonad-contrib before 0.11.2 allows remote attackers to execute arbitrary commands via a web page title, which activates the commands when the user clicks on the xmobar window title, as demonstrated using an action tag.
by Joachim Breitner
EIP-2026-105092 EXPLOITDB text VERIFIED
Alienvault Open Source SIEM (OSSIM) - Multiple Cross-Site Scripting Vulnerabilities
by xistence
CVE-2013-4625 EXPLOITDB text VERIFIED
Duplicator < 0.4.5 - Cross-Site Scripting via Package Parameter
Cross-site scripting (XSS) vulnerability in files/installer.cleanup.php in the Duplicator plugin before 0.4.5 for WordPress allows remote attackers to inject arbitrary web script or HTML via the package parameter.
by High-Tech Bridge
EIP-2026-112997 EXPLOITDB text VERIFIED
vBulletin 4.0.2 - 'update_order' SQL Injection
by n3tw0rk