Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
CVE-2012-1835 EXPLOITDB text VERIFIED
All-in-One Event Calendar 1.4-1.5 - Cross-Site Scripting via Multiple Parameters
Multiple cross-site scripting (XSS) vulnerabilities in the All-in-One Event Calendar plugin 1.4 and 1.5 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) title parameter to app/view/agenda-widget-form.php; (2) args, (3) title, (4) before_title, or (5) after_title parameter to app/view/agenda-widget.php; (6) button_value parameter to app/view/box_publish_button.php; or (7) msg parameter to /app/view/save_successful.php.
by High-Tech Bridge SA
EIP-2026-105460 EXPLOITDB html VERIFIED
BGS CMS 2.2.1 - Multiple Cross-Site Scripting / HTML Injection Vulnerabilities
by LiquidWorm
CVE-2012-0198 EXPLOITDB ruby VERIFIED
IBM Tivoli Provisioning Manager Express 4.1.1 - Stack-Based Buffer Overflow
Stack-based buffer overflow in the RunAndUploadFile method in the Isig.isigCtl.1 ActiveX control in IBM Tivoli Provisioning Manager Express for Software Distribution 4.1.1 allows remote attackers to execute arbitrary code via vectors related to an Asset Information file.
by Metasploit
EIP-2026-109347 EXPLOITDB text VERIFIED
Matterdaddy Market 1.1 - 'cat_name' Multiple SQL Injections
by Chokri B.A
CVE-2011-4571 EXPLOITDB text VERIFIED
Estate Agent (com_estateagent) - SQL Injection via id Parameter
SQL injection vulnerability in the Estate Agent (com_estateagent) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a showEO action to index.php.
by xDarkSton3x
EIP-2026-108277 EXPLOITDB text
Joomla! Component com_bearleague - SQL Injection
by xDarkSton3x
CVE-2012-10059 EXPLOITDB CRITICAL text VERIFIED
Dolibarr ERP/CRM <= 3.1.1-3.2.0 - Command Injection
Dolibarr ERP/CRM versions <= 3.1.1 and <= 3.2.0 contain a post-authenticated OS command injection vulnerability in its database backup feature. The export.php script fails to sanitize the sql_compat parameter, allowing authenticated users to inject arbitrary system commands, resulting in remote code execution on the server.
by Nahuel Grisolia
CVE-2012-10059 EXPLOITDB CRITICAL ruby VERIFIED
Dolibarr ERP/CRM <= 3.1.1-3.2.0 - Command Injection
Dolibarr ERP/CRM versions <= 3.1.1 and <= 3.2.0 contain a post-authenticated OS command injection vulnerability in its database backup feature. The export.php script fails to sanitize the sql_compat parameter, allowing authenticated users to inject arbitrary system commands, resulting in remote code execution on the server.
by Metasploit
CVE-2014-9448 EXPLOITDB python VERIFIED
Mini-stream RM-MP3 Converter <3.1.2.1.2010.03.30 - Buffer Overflow
Buffer overflow in Mini-stream RM-MP3 Converter 3.1.2.1.2010.03.30 allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a long string in a WAX file.
by SkY-NeT SySteMs
EIP-2026-105856 EXPLOITDB text VERIFIED
CitrusDB 2.4.1 - Local File Inclusion / SQL Injection
by wacky
CVE-2006-5276 EXPLOITDB ruby VERIFIED
Snort < 2.6.1.3 and 2.7 < beta 2 - Remote Code Execution via DCE/RPC Preprocessor
Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 before beta 2; and Sourcefire Intrusion Sensor; allows remote attackers to execute arbitrary code via crafted SMB traffic.
by Metasploit
CVE-2012-6664 EXPLOITDB CRITICAL ruby VERIFIED
Distinct Intranet Servers <3.10 - Path Traversal
Multiple directory traversal vulnerabilities in the TFTP Server in Distinct Intranet Servers 3.10 and earlier allow remote attackers to read or write arbitrary files via a .. (dot dot) in the (1) get or (2) put commands.
by Metasploit
CVSS 9.1
CVE-2012-1196 EXPLOITDB ruby VERIFIED
Lenovo ThinkManagement Console 9.0.3 - Path Traversal and Arbitrary File Deletion via VulCore Web Service
Directory traversal vulnerability in the VulCore web service (WSVulnerabilityCore/VulCore.asmx) in Lenovo ThinkManagement Console 9.0.3 allows remote attackers to delete arbitrary files via a .. (dot dot) in the filename parameter in a SetTaskLogByFile SOAP request.
by Metasploit
EIP-2026-118431 EXPLOITDB text VERIFIED
Distinct TFTP Server 3.01 - Directory Traversal
by modpr0be
EIP-2026-116073 EXPLOITDB perl VERIFIED
Play [EX] 2.1 - '.M3U'/'.PLS'/'.LST' Playlist File Denial of Service
by Death-Shadow-Dark
EIP-2026-115013 EXPLOITDB text VERIFIED
BulletProof FTP Client 2010 - Buffer Overflow (PoC)
by Vulnerability-Lab
EIP-2026-114902 EXPLOITDB text VERIFIED
AnvSoft Any Video Converter 4.3.6 - Multiple Buffer Overflows
by Vulnerability-Lab
CVE-2012-4325 EXPLOITDB text VERIFIED
Utopia News Pro < 1.4.0 - Cross-Site Request Forgery via upload/users.php
Cross-site request forgery (CSRF) vulnerability in upload/users.php in Utopia News Pro (UNP) 1.4.0 and earlier allows remote attackers to hijack the authentication of administrators for requests that add administrator accounts.
by Dr.NaNo
CVE-2011-1571 EXPLOITDB ruby
Liferay Portal 5.1.0-5.1.1 and 5.0.0-6.0.5 - Remote Code Execution in XSL Content Portlet
Unspecified vulnerability in the XSL Content portlet in Liferay Portal Community Edition (CE) 5.x and 6.x before 6.0.6 GA, when Apache Tomcat is used, allows remote attackers to execute arbitrary commands via unknown vectors.
by Spencer McIntyre
CVE-2012-4746 EXPLOITDB text
ZTE ZXDSL 831IIV7.5.0a_Z29_OV - CSRF
Cross-site request forgery (CSRF) vulnerability in accessaccount.cgi in ZTE ZXDSL 831IIV7.5.0a_Z29_OV allows remote attackers to hijack the authentication of administrators for requests that change the administrator password via the sysPassword parameter.
by Nuevo Asesino
CVE-2012-4876 EXPLOITDB ruby VERIFIED
TRENDnet SecurView TV-IP121WN - Buffer Overflow
Stack-based buffer overflow in the UltraMJCam ActiveX Control in TRENDnet SecurView TV-IP121WN Wireless Internet Camera allows remote attackers to execute arbitrary code via a long string to the OpenFileDlg method.
by Metasploit
CVE-2012-0270 EXPLOITDB ruby VERIFIED
Csound < 5.16.6 - Remote Code Execution via Crafted HETRO or PVOC File
Multiple stack-based buffer overflows in Csound before 5.16.6 allow remote attackers to execute arbitrary code via a crafted (1) hetro file to the getnum function in util/heti_main.c or (2) PVOC file to the getnum function in util/pv_import.c.
by Metasploit
EIP-2026-114151 EXPLOITDB text VERIFIED
WordPress Plugin Uploadify Integration 0.9.6 - Multiple Cross-Site Scripting Vulnerabilities
by waraxe
CVE-2012-6522 EXPLOITDB text VERIFIED
w-cms 2.01 - Path Traversal via p Parameter
Directory traversal vulnerability in the getContent function in codes/wcms.php in w-CMS 2.01 allows remote attackers to read arbitrary files via a .. (dot dot) in the p parameter. NOTE: some of these details are obtained from third party information.
by Black-ID
EIP-2026-119064 EXPLOITDB text VERIFIED
Quest vWorkspace 7.5 Connection Broker Client - ActiveX Control 'pnllmcli.dll 7.5.304.547' SaveMiniLaunchFile() Method Remote File Creation / Overwrite
by rgod