Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
CVE-2008-0610 EXPLOITDB ruby VERIFIED
UltraVNC 1.0.2 and 1.0.4 - Stack-based Buffer Overflow in ClientConnection::NegotiateProtocolVersion
Stack-based buffer overflow in the ClientConnection::NegotiateProtocolVersion function in vncviewer/ClientConnection.cpp in vncviewer for UltraVNC 1.0.2 and 1.0.4 before 01252008, when in LISTENING mode or when using the DSM plugin, allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a modified size value.
by Metasploit
CVE-2012-6679 EXPLOITDB text
vBshop - Multiple Persistent Cross-Site Scripting Vulnerabilities
by ToiL
CVE-2012-0699 EXPLOITDB HIGH html VERIFIED
Family Connections CMS < 2.9.0 - Cross-Site Request Forgery via News or Prayer Add Action
Multiple cross-site request forgery (CSRF) vulnerabilities in Family Connections CMS (aka FCMS) 2.9 and earlier allow remote attackers to hijack the authentication of arbitrary users for requests that (1) add news via an add action to familynews.php or (2) add a prayer via an add action to prayers.php.
by Ahmed Elhady Mohamed
CVSS 8.8
EIP-2026-114652 EXPLOITDB text VERIFIED
Zumset.com FbiLike 1.00 - 'id' Cross-Site Scripting
by Crim3R
EIP-2026-103632 EXPLOITDB python
PHP 5.4.0 Built-in Web Server - Denial of Service (PoC)
by ls
CVE-2025-34126 EXPLOITDB HIGH text VERIFIED
RIPS Scanner <0.54 - Path Traversal
A path traversal vulnerability exists in RIPS Scanner version 0.54. The vulnerability allows remote attackers to read arbitrary files on the system with the privileges of the web server by sending crafted HTTP GET requests to the 'windows/code.php' script with a manipulated 'file' parameter. This can lead to disclosure of sensitive information.
by localh0t
CVE-2012-5002 EXPLOITDB ruby VERIFIED
Ricoh DC Software DL-10 <4.5.0.1 - Buffer Overflow
Stack-based buffer overflow in SR10 FTP server (SR10.exe) 1.1.0.6 in Ricoh DC Software DL-10 4.5.0.1, when the Log file name option is enabled, allows remote attackers to execute arbitrary code via a long USER FTP command.
by Metasploit
CVE-2012-1904 EXPLOITDB text
RealPlayer < 15.0.0 - Denial of Service via Crafted MP4 File
mp4fformat.dll in the QuickTime File Format plugin in RealNetworks RealPlayer 15 and earlier, and RealPlayer SP 1.1.4 Build 12.0.0.756 and earlier, allows remote attackers to cause a denial of service (memory corruption and application crash) via a crafted MP4 file.
by Senator of Pirates
CVE-2012-4869 EXPLOITDB ruby VERIFIED
FreePBX < 2.10 - Remote Code Execution via callmenum Parameter
The callme_startcall function in recordings/misc/callme_page.php in FreePBX 2.9, 2.10, and earlier allows remote attackers to execute arbitrary commands via the callmenum parameter in a c action.
by Metasploit
EIP-2026-106930 EXPLOITDB text VERIFIED
Event Calendar PHP - 'cal_year' Cross-Site Scripting
by 3spi0n
EIP-2026-117623 EXPLOITDB perl VERIFIED
mmPlayer 2.2 - '.ppl' Local Buffer Overflow (SEH)
by RjRjh Hack3r
EIP-2026-117622 EXPLOITDB perl VERIFIED
mmPlayer 2.2 - '.m3u' Local Buffer Overflow (SEH)
by RjRjh Hack3r
EIP-2026-116313 EXPLOITDB python
Spotify 0.8.2.610 - search func Memory Exhaustion
by LiquidWorm
CVE-2012-1898 EXPLOITDB text
Wolf CMS < 0.75 - Cross-Site Scripting via User Add Parameters
Multiple cross-site scripting (XSS) vulnerabilities in wolfcms/admin/user/add in Wolf CMS 0.75 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) user[name], (2) user[email], or (3) user[username] parameters.
by Ivano Binetti
CVE-2012-1300 EXPLOITDB php
PHPFox 3.0.1 - 'ajax.php' Remote Command Execution
by EgiX
CVE-2012-4869 EXPLOITDB python VERIFIED
FreePBX < 2.10 - Remote Code Execution via callmenum Parameter
The callme_startcall function in recordings/misc/callme_page.php in FreePBX 2.9, 2.10, and earlier allows remote attackers to execute arbitrary commands via the callmenum parameter in a c action.
by muts
CVE-2012-1592 EXPLOITDB HIGH xml VERIFIED
Apache Struts 2.0-2.5.22 - Unrestricted Upload of File with Dangerous Type via Malformed XSLT Processing
A local code execution issue exists in Apache Struts2 when processing malformed XSLT files, which could let a malicious user upload and execute arbitrary files.
by voidloafer
CVSS 8.8
CVE-2012-1922 EXPLOITDB text
Sitecom WLM-2501 - Cross-Site Request Forgery in Multiple Admin Forms
Multiple cross-site request forgery (CSRF) vulnerabilities in Sitecom WLM-2501 allow remote attackers to hijack the authentication of administrators for requests that modify settings for (1) Mac Filtering via admin/formFilter, (2) IP/Port Filtering via formFilter, (3) Port Forwarding via formPortFw, (4) Wireless Access Control via admin/formWlAc, (5) Wi-Fi Protected Setup via formWsc, (6) URL Blocking Filter via formURL, (7) Domain Blocking Filter via formDOMAINBLK, and (8) IP Address ACL Filter via admin/formACL in goform/, different vectors than CVE-2012-1921.
by Ivano Binetti
CVE-2012-1669 EXPLOITDB text VERIFIED
phpmoneybooks < 1.0.2 - Path Traversal via Module Parameter
Directory traversal vulnerability in index.php in phpMoneyBooks before 1.0.3 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the module parameter.
by Mark Stanislav
CVE-2012-4869 EXPLOITDB text VERIFIED
FreePBX < 2.10 - Remote Code Execution via callmenum Parameter
The callme_startcall function in recordings/misc/callme_page.php in FreePBX 2.9, 2.10, and earlier allows remote attackers to execute arbitrary commands via the callmenum parameter in a c action.
by Martin Tschirsich
CVE-2010-0248 EXPLOITDB HIGH ruby VERIFIED
Microsoft Internet Explorer 6, 6 SP1, 7, 8 - Remote Code Execution via Memory Corruption
Microsoft Internet Explorer 6, 6 SP1, 7, and 8 does not properly handle objects in memory, which allows remote attackers to execute arbitrary code by accessing an object that (1) was not properly initialized or (2) is deleted, leading to memory corruption, aka "HTML Object Memory Corruption Vulnerability."
by Metasploit
CVSS 8.1
EIP-2026-118617 EXPLOITDB text VERIFIED
Google Talk - 'gtalk://' Deprecated URI Handler Injection
by rgod
CVE-2015-6750 EXPLOITDB python VERIFIED
Ricoh DL-1 SR10 < 1.1.0.6 - Remote Code Execution via Long USER Command
Buffer overflow in Ricoh DL FTP Server 1.1.0.6 and earlier allows remote attackers to execute arbitrary code via a long USER command.
by Julien Ahrens
CVE-2012-0284 EXPLOITDB text VERIFIED
Cisco Linksys PlayerPT <1.0.0.15 - Buffer Overflow
Stack-based buffer overflow in the SetSource method in the Cisco Linksys PlayerPT ActiveX control 1.0.0.15 in PlayerPT.ocx on the Cisco WVC200 Wireless-G PTZ Internet video camera allows remote attackers to execute arbitrary code via a long URL in the first argument (aka the sURL argument).
by rgod
CVE-2012-6667 EXPLOITDB MEDIUM text VERIFIED
vbshout < 6.2.18 - Cross-Site Scripting via Shout Parameter
Cross-site scripting (XSS) vulnerability in vbshout.php in DragonByte Technologies vBShout module for vBulletin allows remote attackers to inject arbitrary web script or HTML via the shout parameter in a shout action.
by ToiL
CVSS 6.1