Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-118658 EXPLOITDB perl VERIFIED
httpdx 1.5.4 - Remote Heap Overflow
by st3n
EIP-2026-110012 EXPLOITDB text VERIFIED
ocPortal 7.1.5 - 'redirect' Open Redirection
by Aung Khant
CVE-2012-3351 EXPLOITDB MEDIUM text VERIFIED
JW Player < 5.10.2295 - Cross-Site Scripting via Link or Logo Parameters
Multiple cross-site scripting (XSS) vulnerabilities in LongTail Video JW Player through 5.10.2295 allow remote attackers to inject arbitrary web script or HTML via the (1) link, (2) logo.link, or (3) aboutlink parameter, or a nested URI scheme name for (4) javascript, (5) asfunction, or (6) vbscript.
by MustLive
CVSS 6.1
EIP-2026-106873 EXPLOITDB text VERIFIED
eNdonesia - 'cid' SQL Injection
by Crim3R
EIP-2026-110940 EXPLOITDB text VERIFIED
phpBB - Multiple SQL Injections
by HauntIT
CVE-2012-10051 EXPLOITDB HIGH ruby VERIFIED
Photodex ProShow Producer <5.0.3256 - Buffer Overflow
Photodex ProShow Producer version 5.0.3256 contains a stack-based buffer overflow vulnerability in the handling of plugin load list files. When a specially crafted load file is placed in the installation directory, the application fails to properly validate its contents, leading to a buffer overflow when the file is parsed during startup. Exploitation requires local access to place the file and user interaction to launch the application.
by Metasploit
CVE-2012-10050 EXPLOITDB CRITICAL ruby VERIFIED
CuteFlow < 2.11.2 - Unauthenticated Arbitrary File Upload via restart_circulation_values_write.php
CuteFlow version 2.11.2 and earlier contains an arbitrary file upload vulnerability in the restart_circulation_values_write.php script. The application fails to validate or restrict uploaded file types, allowing unauthenticated attackers to upload arbitrary PHP files to the upload/___1/ directory. These files are then accessible via the web server, enabling remote code execution.
by Metasploit
EIP-2026-118359 EXPLOITDB ruby VERIFIED
Cisco Linksys PlayerPT - ActiveX Control Buffer Overflow (Metasploit)
by Metasploit
CVE-2009-1328 EXPLOITDB python VERIFIED
Mini-stream RM-MP3 Converter 3.0.0.7 - Stack-based Buffer Overflow via Long URI in Playlist File
Stack-based buffer overflow in Mini-stream RM-MP3 Converter 3.0.0.7 allows remote attackers to execute arbitrary code via a long URI in a playlist (.m3u) file.
by Ptrace Security
CVE-2012-2953 EXPLOITDB ruby VERIFIED
Symantec Web Gateway <5.0.3.18 - RCE
The management console in Symantec Web Gateway 5.0.x before 5.0.3.18 allows remote attackers to execute arbitrary commands via crafted input to application scripts.
by Metasploit
CVE-2012-3430 EXPLOITDB c VERIFIED
Linux Kernel < 3.0.44 - Information Exposure via Uninitialized Structure in RDS recvmsg
The rds_recvmsg function in net/rds/recv.c in the Linux kernel before 3.0.44 does not initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a (1) recvfrom or (2) recvmsg system call on an RDS socket.
by Jay Fenlason
EIP-2026-118305 EXPLOITDB html VERIFIED
Barcodewiz 'Barcodewiz.dll' ActiveX Control - 'Barcode' Method Remote Buffer Overflow
by coolkaveh
EIP-2026-112586 EXPLOITDB text VERIFIED
tekno.Portal 0.1b - 'anket.php' SQL Injection
by Socket_0x03
EIP-2026-108813 EXPLOITDB text VERIFIED
Joomla! Component Odudeprofile 2.8 - 'profession' SQL Injection
by Daniel Barragan
CVE-2012-3571 EXPLOITDB python VERIFIED
ISC DHCP 4.1.2-4.2.4 and 4.1-ESV < R6 - Denial of Service via Malformed Client Identifier
ISC DHCP 4.1.2 through 4.2.4 and 4.1-ESV before 4.1-ESV-R6 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a malformed client identifier.
by Markus Hietava
CVE-2012-3435 EXPLOITDB python VERIFIED
Zabbix < 1.8.15 - SQL Injection via itemid Parameter
SQL injection vulnerability in frontends/php/popup_bitem.php in Zabbix 1.8.15rc1 and earlier, and 2.x before 2.0.2rc1, allows remote attackers to execute arbitrary SQL commands via the itemid parameter.
by muts
EIP-2026-113772 EXPLOITDB text VERIFIED
WordPress Plugin Front End Upload 0.5.4.4 - Arbitrary '.PHP' File Upload
by Chris Kellum
EIP-2026-111185 EXPLOITDB text VERIFIED
phpProfiles - Multiple Vulnerabilities
by L0n3ly-H34rT
CVE-2012-2957 EXPLOITDB python VERIFIED
Symantec Web Gateway <5.0.3.18 - Privilege Escalation
The management console in Symantec Web Gateway 5.0.x before 5.0.3.18 allows local users to gain privileges by modifying files, related to a "file inclusion" issue.
by muts
CVE-2012-2953 EXPLOITDB python VERIFIED
Symantec Web Gateway <5.0.3.18 - RCE
The management console in Symantec Web Gateway 5.0.x before 5.0.3.18 allows remote attackers to execute arbitrary commands via crafted input to application scripts.
by muts
CVE-2012-2956 EXPLOITDB text VERIFIED
SpiceWorks 5.3.75941 - SQL Injection
SQL injection vulnerability in SpiceWorks 5.3.75941 allows remote authenticated users to execute arbitrary SQL commands via the id parameter to api_v2.json. NOTE: this entry was SPLIT per ADT2 due to different vulnerability types. CVE-2012-6658 is for the XSS.
by dookie
CVE-2012-10053 EXPLOITDB CRITICAL ruby VERIFIED
Simple Web Server 2.2 rc2 - Buffer Overflow
Simple Web Server 2.2 rc2 contains a stack-based buffer overflow vulnerability in its handling of the Connection HTTP header. When a remote attacker sends an overly long string in this header, the server uses vsprintf() without proper bounds checking, leading to a buffer overflow on the stack. This flaw allows remote attackers to execute arbitrary code with the privileges of the web server process. The vulnerability is triggered before authentication.
by Metasploit
CVE-2012-10052 EXPLOITDB CRITICAL ruby VERIFIED
EGallery 1.2 - Unauthenticated Arbitrary File Upload via uploadify.php
EGallery version 1.2 contains an unauthenticated arbitrary file upload vulnerability in the uploadify.php script. The application fails to validate file types or enforce authentication, allowing remote attackers to upload malicious PHP files directly into the web-accessible egallery/ directory. This results in full remote code execution under the web server context.
by Metasploit
CVE-2012-6658 EXPLOITDB text VERIFIED
SpiceWorks 5.3.75941 - Cross-Site Scripting via SNMP Configuration Parameters
Multiple cross-site scripting (XSS) vulnerabilities in SpiceWorks 5.3.75941 allow remote attackers to inject arbitrary web script or HTML via the (1) syslocation, (2) syscontact, or (3) sysName configuration in snmpd.conf. NOTE: this entry was SPLIT from CVE-2012-2956 per ADT2 due to different vulnerability types.
by dookie
EIP-2026-117763 EXPLOITDB perl VERIFIED
Photodex ProShow Producer 5.0.3256 - Local Buffer Overflow
by mr.pr0n