Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
CVE-2012-3363 EXPLOITDB CRITICAL text
Zend Framework 1.x < 1.11.12 and 1.12.x < 1.12.0 - XML External Entity Injection via XML-RPC Request
Zend_XmlRpc in Zend Framework 1.x before 1.11.12 and 1.12.x before 1.12.0 does not properly handle SimpleXMLElement classes, which allows remote attackers to read arbitrary files or create TCP connections via an external entity reference in a DOCTYPE element in an XML-RPC request, aka an XML external entity (XXE) injection attack.
by SEC Consult
CVSS 9.1
EIP-2026-111937 EXPLOITDB text VERIFIED
Schoolhos CMS - HTML Injection
by the_cyber_nuxbie
CVE-2012-0298 EXPLOITDB text VERIFIED
Symantec Web Gateway <5.0.3 - Info Disclosure
The file-management scripts in the management GUI in Symantec Web Gateway 5.0.x before 5.0.3 allow remote attackers to (1) read or (2) delete arbitrary files via unspecified vectors.
by S2 Crew
CVE-2012-2764 EXPLOITDB c VERIFIED
Google Chrome <20.0.1132.43 - Privilege Escalation
Untrusted search path vulnerability in Google Chrome before 20.0.1132.43 on Windows might allow local users to gain privileges via a Trojan horse Metro DLL in the current working directory.
by Moshe Zioni
EIP-2026-116804 EXPLOITDB text
Apple QuickTime - QuickTime.util.QTByteObject Initialization Security Checks Bypass
by Security Explorations
EIP-2026-114187 EXPLOITDB text VERIFIED
WordPress Plugin Website FAQ 1.0 - SQL Injection
by Chris Kellum
CVE-2012-0694 EXPLOITDB CRITICAL ruby VERIFIED
SugarCRM CE <= 6.3.1 - Code Injection
SugarCRM CE <= 6.3.1 contains scripts that use "unserialize()" with user controlled input which allows remote attackers to execute arbitrary PHP code.
by Metasploit
CVSS 9.8
EIP-2026-106455 EXPLOITDB text VERIFIED
DigPHP - 'dig.php' Script Remote File Disclosure
by Ryuzaki Lawlet
EIP-2026-101494 EXPLOITDB text
Western Digital's WD TV Live SMP/Hub - Privilege Escalation
by Wolfgang Borst
CVE-2012-0677 EXPLOITDB ruby VERIFIED
Apple iTunes <10.6.3 - Buffer Overflow
Heap-based buffer overflow in Apple iTunes before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted .m3u playlist.
by Metasploit
CVE-2012-0779 EXPLOITDB ruby VERIFIED
Adobe Flash Player <10.3.183.19-11.2.202.235 - RCE
Adobe Flash Player before 10.3.183.19 and 11.x before 11.2.202.235 on Windows, Mac OS X, and Linux; before 11.1.111.9 on Android 2.x and 3.x; and before 11.1.115.8 on Android 4.x allows remote attackers to execute arbitrary code via a crafted file, related to an "object confusion vulnerability," as exploited in the wild in May 2012.
by Metasploit
EIP-2026-116536 EXPLOITDB perl VERIFIED
Winamp 5.13 - '.m3u' File Exception Handling Remote Denial of Service
by Dark-Puzzle
CVE-2011-4222 EXPLOITDB python VERIFIED
Investintech.com Able2Extract - DoS/Code Injection
Unspecified vulnerability in Investintech.com Able2Extract and Able2Extract Server allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted document.
by Carlos Mario Penagos Hollmann
CVE-2012-1831 EXPLOITDB text VERIFIED
WellinTech KingView < 6.53 - Remote Code Execution via Crafted TCP Packet
Heap-based buffer overflow in WellinTech KingView 6.53 allows remote attackers to execute arbitrary code via a crafted packet to TCP port 555.
by Carlos Mario Penagos Hollmann
CVE-2012-1830 EXPLOITDB python VERIFIED
WellinTech KingView < 6.53 - Remote Code Execution via Crafted TCP Packet
Stack-based buffer overflow in WellinTech KingView 6.53 allows remote attackers to execute arbitrary code via a crafted packet to TCP port 555.
by Carlos Mario Penagos Hollmann
CVE-2011-4222 EXPLOITDB python VERIFIED
Investintech.com Able2Extract - DoS/Code Injection
Unspecified vulnerability in Investintech.com Able2Extract and Able2Extract Server allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted document.
by Carlos Mario Penagos Hollmann
CVE-2011-4222 EXPLOITDB python VERIFIED
Investintech.com Able2Extract - DoS/Code Injection
Unspecified vulnerability in Investintech.com Able2Extract and Able2Extract Server allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted document.
by Carlos Mario Penagos Hollmann
EIP-2026-113737 EXPLOITDB text
WordPress Plugin Fancy Gallery 1.2.4 - Arbitrary File Upload
by Sammy FORGIT
EIP-2026-112893 EXPLOITDB text VERIFIED
Umapresence - Local File Inclusion / Arbitrary File Deletion
by Sammy FORGIT
CVE-2012-4000 EXPLOITDB html VERIFIED
FCKeditor < 2.6.7 - Cross-Site Scripting via textinputs Array Parameter
Cross-site scripting (XSS) vulnerability in the print_textinputs_var function in editor/dialog/fck_spellerpages/spellerpages/server-scripts/spellchecker.php in FCKeditor 2.6.7 and earlier allows remote attackers to inject arbitrary web script or HTML via textinputs array parameters.
by Emilio Pinna
EIP-2026-106594 EXPLOITDB php VERIFIED
Drupal Module Drag & Drop Gallery 6.x-1.5 - 'upload.php' Arbitrary File Upload
by Sammy FORGIT
CVE-2011-2751 EXPLOITDB text VERIFIED
Parodia < 6.8 - SQL Injection
SQL injection vulnerability in Parodia before 6.809 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
by Carlos Mario Penagos Hollmann
EIP-2026-115466 EXPLOITDB text VERIFIED
IrfanView 4.33 - '.DJVU' Image Processing Heap Overflow
by Francis Provencher
EIP-2026-112848 EXPLOITDB text VERIFIED
UCCASS 1.8.1 - Blind SQL Injection
by dun
EIP-2026-113759 EXPLOITDB text VERIFIED
WordPress Plugin Flip Book - 'PHP.php' Arbitrary File Upload
by Sammy FORGIT