Exploitdb Exploits

50,091 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-109712 EXPLOITDB text
MyBB DyMy User Agent Plugin - 'newreply.php' SQL Injection
by JoinSe7en
EIP-2026-109706 EXPLOITDB text VERIFIED
MyBB AJAX Chat - Persistent Cross-Site Scripting
by Mr. P-teo
EIP-2026-107029 EXPLOITDB text VERIFIED
Facebook Profile MyBB Plugin 2.4 - Persistent Cross-Site Scripting
by limb0
CVE-2012-5967 EXPLOITDB python
Centreon 2.3.3-2.3.9-4 - Authenticated SQL Injection via menuXML.php menu Parameter
SQL injection vulnerability in menuXML.php in Centreon 2.3.3 through 2.3.9-4 (fixed in Centreon web 2.6.0) allows remote authenticated users to execute arbitrary SQL commands via the menu parameter.
by modpr0be
CVE-2012-5375 EXPLOITDB python VERIFIED
Linux kernel < 3.8 - Denial of Service via Btrfs CRC32C Hash Collision
The CRC32C feature in the Btrfs implementation in the Linux kernel before 3.8-rc1 allows local users to cause a denial of service (prevention of file creation) by leveraging the ability to write to a directory important to the victim, and creating a file with a crafted name that is associated with a specific CRC32C hash value.
by Pascal Junod
EIP-2026-102411 EXPLOITDB text VERIFIED
N-able N-central - Cross-Site Request Forgery
by Cartel
CVE-2012-6007 EXPLOITDB text
Cisco Wireless LAN Controller Software 7.2.110.0 - Authenticated Stored Cross-Site Scripting via Headline Parameter
Cross-site scripting (XSS) vulnerability in screens/base/web_auth_custom.html on Cisco Wireless LAN Controller (WLC) devices with software 7.2.110.0 allows remote authenticated users to inject arbitrary web script or HTML via the headline parameter, aka Bug ID CSCud65187, a different vulnerability than CVE-2012-5992.
by Jacob Holcomb
CVE-2012-4991 EXPLOITDB text
Axway SecureTransport <5.1 SP2 - Path Traversal
Multiple directory traversal vulnerabilities in Axway SecureTransport 5.1 SP2 and earlier allow remote authenticated users to (1) read, (2) delete, or (3) create files, or (4) list directories, via a ..%5C (encoded dot dot backslash) in a URI.
by Sebastian Perez
CVE-2012-4959 EXPLOITDB python VERIFIED
Novell File Reporter <1.0.2 - Path Traversal
Directory traversal vulnerability in NFRAgent.exe in Novell File Reporter 1.0.2 allows remote attackers to upload and execute files via a 130 /FSF/CMD request with a .. (dot dot) in a FILE element of an FSFUI record.
by Abysssec
EIP-2026-118843 EXPLOITDB text VERIFIED
Microsoft Internet Explorer 6 < 10 - Mouse Tracking
by Nick Johnson
EIP-2026-112724 EXPLOITDB text
TipsOfTheDay MyBB Plugin - Multiple Vulnerabilities
by VipVince
CVE-2010-3007 EXPLOITDB ruby VERIFIED
HP Data Protector <4.0 - Privilege Escalation/DoS
Unspecified vulnerability in HP Data Protector Express, and Data Protector Express Single Server Edition (SSE), 3.x before build 56936 and 4.x before build 56906 allows local users to gain privileges or cause a denial of service via unknown vectors.
by Metasploit
EIP-2026-115467 EXPLOITDB text VERIFIED
IrfanView 4.33 - 'IMXCF.dll' Plugin Code Execution
by beford
EIP-2026-110873 EXPLOITDB text VERIFIED
PHP-Nuke 8.2.4 - Cross-Site Request Forgery
by sajith
EIP-2026-109732 EXPLOITDB text VERIFIED
MyBB Profile Blogs Plugin 1.2 - Multiple Vulnerabilities
by Zixem
EIP-2026-109708 EXPLOITDB text VERIFIED
MyBB Bank- 3 Plugin - SQL Injection
by Red_Hat
EIP-2026-108415 EXPLOITDB text VERIFIED
Joomla! Component com_jooproperty 1.13.0 - Multiple Vulnerabilities
by D4NB4R
EIP-2026-115304 EXPLOITDB python VERIFIED
FreeVimager 4.1.0 - Crash (PoC)
by Jean Pascal Pereira
EIP-2026-115146 EXPLOITDB python VERIFIED
DIMIN Viewer 5.4.0 - Crash (PoC)
by Jean Pascal Pereira
CVE-2012-4932 EXPLOITDB text VERIFIED
SimpleInvoices <stable-2012-1-CIS3000 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in SimpleInvoices before stable-2012-1-CIS3000 allow remote attackers to inject arbitrary web script or HTML via (1) the having parameter in a manage action to index.php; (2) the Email field in an Add User action; (3) the Customer Name field in an Add Customer action; the (4) Street address, (5) Street address 2, (6) City, (7) Zip code, (8) State, (9) Country, (10) Mobile Phone, (11) Phone, (12) Fax, (13) Email, (14) PayPal business name, (15) PayPal notify url, (16) PayPal return url, (17) Eway customer ID, (18) Custom field 1, (19) Custom field 2, (20) Custom field 3, or (21) Custom field 4 field in an Add Biller action; (22) the Customer field in an Add Invoice action; the (23) Invoice or (24) Notes field in a Process Payment action; (25) the Payment type description field in a Payment Types action; (26) the Description field in an Invoice Preferences action; (27) the Description field in a Manage Products action; or (28) the Description field in a Tax Rates action.
by tommccredie
CVE-2012-5878 EXPLOITDB CRITICAL html VERIFIED
Bulb Security Smartphone Pentest Framework 0.1.2-0.1.4 - Remote Code Execution via Shell Metacharacters
Bulb Security Smartphone Pentest Framework (SPF) 0.1.2 through 0.1.4 allows remote attackers to execute arbitrary commands via shell metacharacters in the hostingPath parameter to (1) SEAttack.pl or (2) CSAttack.pl in frameworkgui/ or the (3) appURLPath parameter to frameworkgui/attachMobileModem.pl.
by High-Tech Bridge
CVSS 9.8
CVE-2012-10032 EXPLOITDB HIGH ruby VERIFIED
Maxthon3 < 3.2.2 build 1000 - Cross-Context Scripting via about:history Page
Maxthon3 version 3.2.2 build 1000 and prior are vulnerable to cross context scripting (XCS) via the about:history page. The browser’s trusted zone improperly handles injected script content, allowing attackers to execute arbitrary JavaScript in a privileged context. This flaw enables modification of browser configuration and execution of arbitrary code through Maxthon’s exposed DOM APIs, including maxthon.program.Program.launch() and maxthon.io.writeDataURL(). Exploitation requires user interaction, typically by visiting a malicious webpage that triggers the injection.
by Metasploit
CVE-2012-10030 EXPLOITDB CRITICAL ruby VERIFIED
FreeFloat FTP Server - Unauthenticated RCE
FreeFloat FTP Server contains multiple critical design flaws that allow unauthenticated remote attackers to upload arbitrary files to sensitive system directories. The server accepts empty credentials, defaults user access to the root of the C:\ drive, and imposes no restrictions on file type or destination path. These conditions enable attackers to upload executable payloads and .mof files to locations such as system32 and wbem\mof, where Windows Management Instrumentation (WMI) automatically processes and executes them. This results in remote code execution with SYSTEM-level privileges, without requiring user interaction.
by Metasploit
CVSS 9.8
CVE-2012-10029 EXPLOITDB HIGH ruby VERIFIED
Nagios XI Network Monitor <1.3 - Command Injection
Nagios XI Network Monitor prior to Graph Explorer component version 1.3 contains a command injection vulnerability in `visApi.php`. An authenticated user can inject system commands via unsanitized parameters such as `host`, resulting in remote code execution.
by Metasploit
CVE-2012-10023 EXPLOITDB CRITICAL python VERIFIED
FreeFloat FTP Server 1.0.0 - Buffer Overflow
A stack-based buffer overflow vulnerability exists in FreeFloat FTP Server version 1.0.0. The server fails to properly validate input passed to the USER command, allowing remote attackers to overwrite memory and potentially execute arbitrary code. The flaw is triggered by sending an overly long username string, which overflows the buffer allocated for user authentication.
by D35m0nd142
CVSS 9.8