Exploitdb Exploits

50,083 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-111846 EXPLOITDB text VERIFIED
Ruubikcms 1.1.1 - 'tinybrowser.php?folder' Directory Traversal
by expl0i13r
EIP-2026-106277 EXPLOITDB text VERIFIED
Cuppa CMS - '/alertConfigField.php' Local/Remote File Inclusion
by CWH Underground
CVE-2013-4878 EXPLOITDB text VERIFIED
Parallels Plesk Panel <9.0.x, 9.2.x - RCE
The default configuration of Parallels Plesk Panel 9.0.x and 9.2.x on UNIX, and Small Business Panel 10.x on UNIX, has an improper ScriptAlias directive for phppath, which makes it easier for remote attackers to execute arbitrary code via a crafted request, a different vulnerability than CVE-2012-1823.
by kingcope
CVE-2013-0984 EXPLOITDB text VERIFIED
Mac OS X <= 10.6.8 - Remote Code Execution in Directory Service
Directory Service in Apple Mac OS X through 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service (daemon crash) via a crafted message.
by Core Security
CVE-2013-2134 EXPLOITDB text VERIFIED
Apache Struts 2.0.0-2.3.14.2 - Remote Code Execution via OGNL Expression in Action Name
Apache Struts 2 before 2.3.14.3 allows remote attackers to execute arbitrary OGNL code via a request with a crafted action name that is not properly handled during wildcard matching, a different vulnerability than CVE-2013-2135.
by Jon Passki
CVE-2013-2115 EXPLOITDB HIGH ruby VERIFIED
Apache Struts 2.0.0-2.3.14.1 - Remote Code Execution via OGNL Injection in URL/A Tag
Apache Struts 2 before 2.3.14.2 allows remote attackers to execute arbitrary OGNL code via a crafted request that is not properly handled when using the includeParams attribute in the (1) URL or (2) A tag. NOTE: this issue is due to an incomplete fix for CVE-2013-1966.
by Metasploit
CVSS 8.1
CVE-2013-0230 EXPLOITDB ruby VERIFIED
miniupnpd 1.0 - Remote Code Execution via Long Quoted Method in SOAPAction Handler
Stack-based buffer overflow in the ExecuteSoapAction function in the SOAPAction handler in the HTTP service in MiniUPnP MiniUPnPd 1.0 allows remote attackers to execute arbitrary code via a long quoted method.
by Metasploit
EIP-2026-103108 EXPLOITDB python
Exim - 'sender_address' Remote Code Execution
by eKKiM
EIP-2026-102656 EXPLOITDB c VERIFIED
Linux Kernel 3.0.5 - 'test_root()' Local Denial of Service
by Jonathan Salwan
CVE-2013-4095 EXPLOITDB text
Imperva SecureSphere 9.0.0.5 - Authenticated Remote Code Execution via Task Command Field
plain/actionsets.html in the SecureSphere Operations Manager (SOM) Management Server in Imperva SecureSphere 9.0.0.5 allows remote authenticated users to execute arbitrary commands via a task with a [command].value field in conjunction with an [arguments].value field.
by Pedro Andujar
EIP-2026-101990 EXPLOITDB perl
Seowonintech Routers fw: 2.3.9 - File Disclosure
by Todor Donev
EIP-2026-101883 EXPLOITDB text
Netgear WPN824v3 - Unauthorized Configuration Download
by Jens Regel
CVE-2013-4098 EXPLOITDB text
DS3 Authentication Server - Remote Code Execution via ErrorViewer.jsp Message Parameter
ServerAdmin/ErrorViewer.jsp in DS3 Authentication Server allow remote attackers to inject arbitrary error-page text via the message parameter.
by Pedro Andujar
CVE-2013-2571 EXPLOITDB CRITICAL text VERIFIED
hcomm xpient_iris < 3.8 - Remote Code Execution via TCP Port 7510
Iris 3.8 before build 1548, as used in Xpient point of sale (POS) systems, allows remote attackers to execute arbitrary commands via a crafted request to TCP port 7510, as demonstrated by opening the cash drawer.
by Core Security
CVSS 9.8
CVE-2013-0143 EXPLOITDB text VERIFIED
QNAP VioStor NVR 4.0.3 and Surveillance Station Pro - Authenticated Remote Code Execution via pingping.cgi Query String
cgi-bin/pingping.cgi on QNAP VioStor NVR devices with firmware 4.0.3, and in the Surveillance Station Pro component in QNAP NAS, allows remote authenticated users to execute arbitrary commands by leveraging guest access and placing shell metacharacters in the query string.
by Tim Herres
CVE-2013-2621 EXPLOITDB MEDIUM text VERIFIED
Telaen < 1.3.1 - Open Redirect via redir.php URL Parameter
Open Redirection Vulnerability in the redir.php script in Telaen before 1.3.1 allows remote attackers to redirect victims to arbitrary websites via a crafted URL.
by Manuel García Cárdenas
CVSS 6.1
CVE-2013-2623 EXPLOITDB MEDIUM text VERIFIED
telaen < 1.3.1 - Cross-Site Scripting via f_email Parameter
Cross-site Scripting (XSS) in Telaen before 1.3.1 allows remote attackers to inject arbitrary web script or HTML via the "f_email" parameter in index.php.
by Manuel García Cárdenas
CVSS 6.1
EIP-2026-105972 EXPLOITDB text VERIFIED
CMS Gratis Indonesia - 'config.php' PHP Code Injection
by CWH Underground
CVE-2013-3969 EXPLOITDB text VERIFIED
MongoDB 2.4.0-2.4.4 - Authenticated Denial of Service via Invalid RefDB Object
The find prototype in scripting/engine_v8.h in MongoDB 2.4.0 through 2.4.4 allows remote authenticated users to cause a denial of service (uninitialized pointer dereference and server crash) or possibly execute arbitrary code via an invalid RefDB object.
by SCRT Security
CVE-2013-3661 EXPLOITDB c VERIFIED
Microsoft Windows - Denial of Service via EPATHOBJ::bFlatten Path Traversal
The EPATHOBJ::bFlatten function in win32k.sys in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT does not check whether linked-list traversal is continually accessing the same list member, which allows local users to cause a denial of service (infinite traversal) via vectors that trigger a crafted PATHRECORD chain.
by Tavis Ormandy
CVE-2013-2624 EXPLOITDB MEDIUM text VERIFIED
telaen < 1.3.1 - Exposure of Sensitive Information via Crafted URL Request
Telean before 1.3.1 contains a full path disclosure vulnerability which could allow remote attackers to obtain sensitive information through a specially crafted URL request.
by Manuel García Cárdenas
CVSS 5.3
EIP-2026-110580 EXPLOITDB python VERIFIED
PHD Help Desk 2.12 - SQL Injection
by drone
EIP-2026-116914 EXPLOITDB text VERIFIED
BOINC Manager (Seti@home) 7.0.64 - Field Buffer Overflow (SEH)
by xis_one
CVE-2013-3563 EXPLOITDB ruby VERIFIED
Lianja SQL Server < 1.0 - Stack-Based Buffer Overflow via TCP Port 8001
Stack-based buffer overflow in db_netserver in Lianja SQL Server before 1.0.0RC5.2 allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted string to TCP port 8001.
by Metasploit
EIP-2026-111217 EXPLOITDB text VERIFIED
PhpTax 0.8 - File Manipulation 'newvalue' / Remote Code Execution
by CWH Underground