Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-113138 EXPLOITDB text VERIFIED
VoipNow Professional 2.5.3 - 'nsextt' Cross-Site Scripting
by Aboud-el
EIP-2026-109405 EXPLOITDB text VERIFIED
Membris 2.0.1 - Multiple Vulnerabilities
by Dr.abolalh
EIP-2026-104853 EXPLOITDB html
4PSA VoIPNow Professional 2.5.3 - Multiple Vulnerabilities
by Aboud-el
CVE-2012-10056 EXPLOITDB HIGH ruby VERIFIED
PHP Volunteer Management System v1.0.2 - Code Injection
PHP Volunteer Management System v1.0.2 contains an arbitrary file upload vulnerability in its document upload functionality. Authenticated users can upload files to the mods/documents/uploads/ directory without any restriction on file type or extension. Because this directory is publicly accessible and lacks execution controls, attackers can upload a malicious PHP payload and execute it remotely. The application ships with default credentials, making exploitation trivial. Once authenticated, the attacker can upload a PHP shell and trigger it via a direct GET request.
by Metasploit
EIP-2026-116279 EXPLOITDB python
Sorensoft Power Media 6.0 - Denial of Service
by Onying
CVE-2012-0985 EXPLOITDB html
Sony VAIO PC Wireless LAN Wizard 1.0-4.11 - Buffer Overflow
Multiple buffer overflows in the Wireless Manager ActiveX control 4.0.0.0 in WifiMan.dll in Sony VAIO PC Wireless LAN Wizard 1.0; VAIO Wireless Wizard 1.00, 1.00_64, 1.0.1, 2.0, and 3.0; SmartWi Connection Utility 4.7, 4.7.4, 4.8, 4.9, 4.10, and 4.11; and VAIO Easy Connect software 1.0.0 and 1.1.0 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in the second argument of the (1) SetTmpProfileOption or (2) ConnectToNetwork method.
by High-Tech Bridge SA
CVE-2012-2763 EXPLOITDB c
GIMP < 2.6.13 - Remote Code Execution via Long String in Script-Fu Server Command
Buffer overflow in the readstr_upto function in plug-ins/script-fu/tinyscheme/scheme.c in GIMP 2.6.12 and earlier, and possibly 2.6.13, allows remote attackers to execute arbitrary code via a long string in a command to the script-fu server.
by Joseph Sheridan
EIP-2026-113412 EXPLOITDB text VERIFIED
WHMCompleteSolution (WHMCS) 5.0 - Cross-Site Request Forgery (Multiple Application Function)
by Shadman Tanjim
EIP-2026-113411 EXPLOITDB text VERIFIED
WHMCompleteSolution (WHMCS) 5.0 - 'KnowledgeBase.php?search' Cross-Site Scripting
by Shadman Tanjim
EIP-2026-112490 EXPLOITDB text VERIFIED
Supernews 2.6.1 - 'noticias.php?cat' SQL Injection
by Yakir Wizman
EIP-2026-110910 EXPLOITDB text VERIFIED
PHP4dvd - 'config.php' PHP Code Injection
by CWH Underground
EIP-2026-109915 EXPLOITDB text VERIFIED
NewsAdd 1.0 - 'lerNoticia.php?id' SQL Injection
by Yakir Wizman
EIP-2026-103765 EXPLOITDB text VERIFIED
Browsers Browsers - Navigation Download Trick
by Michal Zalewski
CVE-2011-3625 EXPLOITDB ruby VERIFIED
mplayer2 - Stack-based Buffer Overflow in SAMI Subtitle Parser
Stack-based buffer overflow in the sub_read_line_sami function in subreader.c in MPlayer, as used in SMPlayer 0.6.9, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in a SAMI subtitle file.
by Metasploit
EIP-2026-115835 EXPLOITDB text VERIFIED
Microsoft Wordpad 5.1 - '.doc' Null Pointer Dereference
by condis
CVE-2012-3791 EXPLOITDB text VERIFIED
Simple Web Content Management System 1.1 - SQL Injection via id or status Parameter
Multiple SQL injection vulnerabilities in Simple Web Content Management System 1.1 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) item_delete.php, (2) item_status.php, (3) item_detail.php, (4) item_modify.php, or (5) item_position.php in admin/; or (6) status parameter to admin/item_status.php.
by loneferret
EIP-2026-109916 EXPLOITDB text VERIFIED
NewsAdd 1.0 - Multiple SQL Injections
by WhiteCollarGroup
EIP-2026-107344 EXPLOITDB text VERIFIED
Ganesha Digital Library 4.0 - Multiple Vulnerabilities
by X-Cisadane
CVE-2012-10057 EXPLOITDB HIGH ruby VERIFIED
Lattice Semiconductor ispVM System v18.0.2 - Buffer Overflow
Lattice Semiconductor ispVM System v18.0.2 contains a buffer overflow vulnerability in its handling of .xcf project files. When parsing the version attribute of the ispXCF XML tag, the application fails to properly validate input length, allowing a specially crafted file to overwrite memory on the stack. This can result in arbitrary code execution under the context of the user who opens the file. The vulnerability is triggered locally by opening a malicious .xcf file and does not require elevated privileges.
by Metasploit
CVE-2012-3816 EXPLOITDB text
WinRadius Server 2009 - Denial of Service via Long Password in Access-Request Packet
WinRadius Server 2009 allows remote attackers to cause a denial of service (crash) via a long password in an Access-Request packet.
by demonalex
EIP-2026-116404 EXPLOITDB text VERIFIED
TFTPD32 DNS Server 4.00 - Denial of Service
by demonalex
EIP-2026-113407 EXPLOITDB python VERIFIED
WHMCompleteSolution (WHMCS) - 'boleto_bb.php' SQL Injection
by dex
EIP-2026-110510 EXPLOITDB text VERIFIED
PBBoard 2.1.4 - Multiple SQL Injections
by loneferret
CVE-2012-10056 EXPLOITDB HIGH text VERIFIED
PHP Volunteer Management System v1.0.2 - Code Injection
PHP Volunteer Management System v1.0.2 contains an arbitrary file upload vulnerability in its document upload functionality. Authenticated users can upload files to the mods/documents/uploads/ directory without any restriction on file type or extension. Because this directory is publicly accessible and lacks execution controls, attackers can upload a malicious PHP payload and execute it remotely. The application ships with default credentials, making exploitation trivial. Once authenticated, the attacker can upload a PHP shell and trigger it via a direct GET request.
by Ashoo
EIP-2026-115552 EXPLOITDB php VERIFIED
LibreOffice 3.5.3 - '.rtf' FileOpen Crash
by shinnai