Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
CVE-2012-1028 EXPLOITDB text VERIFIED
SimpleGroupware < 0.743 - Cross-Site Scripting via Export Parameter
Cross-site scripting (XSS) vulnerability in bin/index.php in SimpleGroupware 0.742 and other versions before 0.743 allows remote attackers to inject arbitrary web script or HTML via the export parameter.
by Infoserve Security Team
CVE-2012-1058 EXPLOITDB html
Flyspray 0.9.9.6 - Cross-Site Request Forgery via Admin User Creation
Cross-site request forgery (CSRF) vulnerability in Flyspray 0.9.9.6 allows remote attackers to hijack the authentication of admins for requests that add admin accounts via an admin.newuser action to index.php.
by Vaibhav Gupta
CVE-2012-1048 EXPLOITDB text VERIFIED
eFront Community++ 3.6.10 - Cross-Site Scripting via Administrator Filter Parameter
Cross-site scripting (XSS) vulnerability in communityplusplus/www/administrator.php in eFront Community++ edition 3.6.10, and possibly other editions, allows remote attackers to inject arbitrary web script or HTML via the filter parameter.
by Chokri B.A
CVE-2012-1049 EXPLOITDB text VERIFIED
ManageEngine ADManager Plus <5.2.5210 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in ManageEngine ADManager Plus 5.2 Build 5210 allow remote attackers to inject arbitrary web script or HTML via the (1) domainName parameter to jsp/AddDC.jsp or (2) operation parameter to DomainConfig.do.
by LiquidWorm
CVE-2012-1049 EXPLOITDB text VERIFIED
ManageEngine ADManager Plus <5.2.5210 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in ManageEngine ADManager Plus 5.2 Build 5210 allow remote attackers to inject arbitrary web script or HTML via the (1) domainName parameter to jsp/AddDC.jsp or (2) operation parameter to DomainConfig.do.
by LiquidWorm
EIP-2026-115209 EXPLOITDB text VERIFIED
Edraw Diagram Component 5 - ActiveX Control 'LicenseName()' Method Buffer Overflow
by Senator of Pirates
CVE-2012-1026 EXPLOITDB text VERIFIED
XRay CMS 1.1.1 - SQL Injection via Username or Password Parameter
Multiple SQL injection vulnerabilities in login2.php in XRay CMS 1.1.1 allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password parameters.
by chap0
EIP-2026-113055 EXPLOITDB text VERIFIED
Vespa 0.8.6 - 'getid3.php' Local File Inclusion
by T0x!c
CVE-2012-1029 EXPLOITDB text VERIFIED
Tube Ace 1.6 - SQL Injection via q Parameter
SQL injection vulnerability in mobile/search/index.php in Tube Ace (Adult PHP Tube Script) 1.6 allows remote attackers to execute arbitrary SQL commands via the q parameter. NOTE: some of these details are obtained from third party information.
by Daniel Godoy
CVE-2012-1017 EXPLOITDB text
BASE 1.4.5 - SQL Injection via ip_addr Parameters
Multiple SQL injection vulnerabilities in base_qry_main.php in Basic Analysis and Security Engine (BASE) 1.4.5 allow remote attackers to execute arbitrary SQL commands via the (1) ip_addr[0][1], (2) ip_addr[0][2], or (3) ip_addr[0][9] parameters.
by a.kadir altan
CVE-2011-3639 EXPLOITDB text VERIFIED
Apache HTTP Server <2.0.64, <2.2.18 - SSRF
The mod_proxy module in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x before 2.2.18, when the Revision 1179239 patch is in place, does not properly interact with use of (1) RewriteRule and (2) ProxyPassMatch pattern matches for configuration of a reverse proxy, which allows remote attackers to send requests to intranet servers by using the HTTP/0.9 protocol with a malformed URI containing an initial @ (at sign) character. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-3368.
by Tomas Hoger
EIP-2026-116049 EXPLOITDB html
PDF Viewer Component - ActiveX Denial of Service
by Senator of Pirates
CVE-2012-1220 EXPLOITDB html
GAzie < 5.20 - Cross-Site Request Forgery via Admin User Update Action
Cross-site request forgery (CSRF) vulnerability in modules/config/admin_utente.php in GAzie 5.20 and earlier allows remote attackers to hijack the authentication of administrators for requests that change account information via an update action, as demonstrated by changing the password.
by Giuseppe D'Inverno
EIP-2026-115208 EXPLOITDB html
Edraw Diagram Component 5 - ActiveX Buffer Overflow (Denial of Service) (PoC)
by Senator of Pirates
CVE-2012-0830 EXPLOITDB php VERIFIED
PHP 5.3.9 - Remote Code Execution via Large Number of Variables
The php_register_variable_ex function in php_variables.c in PHP 5.3.9 allows remote attackers to execute arbitrary code via a request containing a large number of variables, related to improper handling of array variables. NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-4885.
by Stefan Esser
CVE-2012-1027 EXPLOITDB text VERIFIED
]project-open[ 3.4.x-3.5.0.1-2 - Cross-Site Scripting via Message Parameter
Cross-site scripting (XSS) vulnerability in account-closed.tcl in ]project-open[ (aka ]po[) 3.4.x, 3.5.0.1-2, and possibly other versions allows remote attackers to inject arbitrary web script or HTML via the message parameter to register/account-closed.
by Michail Poultsakis
EIP-2026-110810 EXPLOITDB text VERIFIED
PHP-Fusion 7.2.4 - 'weblink_id' SQL Injection
by Am!r
EIP-2026-104665 EXPLOITDB text VERIFIED
PHP 5.4SVN-2012-02-03 - htmlspecialchars/entities Buffer Overflow
by cataphract
EIP-2026-102748 EXPLOITDB python
torrent-stats - 'httpd.c' Denial of Service
by otr
CVE-2011-10032 EXPLOITDB CRITICAL ruby VERIFIED
Sunway ForceControl <6.1 SP3 - Buffer Overflow
Sunway ForceControl version 6.1 SP3 and earlier contains a stack-based buffer overflow vulnerability in the SNMP NetDBServer service, which listens on TCP port 2001. The flaw is triggered when the service receives a specially crafted packet using opcode 0x57 with an overly long payload. Due to improper bounds checking during packet parsing, attacker-controlled data overwrites the Structured Exception Handler (SEH), allowing arbitrary code execution in the context of the service. This vulnerability can be exploited remotely without authentication and may lead to full system compromise on affected Windows hosts.
by Metasploit
CVE-2012-1005 EXPLOITDB text VERIFIED
Sphinx Software Mobile Web Server 3.1.2.47 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in Sphinx Software Mobile Web Server 3.1.2.47 allow remote attackers to inject arbitrary web script or HTML via the comment parameter to a blog, as demonstrated using (1) Blog/MyFirstBlog.txt or (2) Blog/AboutSomething.txt.
by SecPod Research
CVE-2008-2551 EXPLOITDB ruby VERIFIED
Icona Instant Messenger 1.0.0.1 - Remote Code Execution via DownloaderActiveX Control
The DownloaderActiveX Control (DownloaderActiveX.ocx) in Icona SpA C6 Messenger 1.0.0.1 allows remote attackers to force the download and execution of arbitrary files via a URL in the propDownloadUrl parameter with the propPostDownloadAction parameter set to "run."
by Metasploit
CVE-2012-1008 EXPLOITDB text VERIFIED
OfficeSIP Server 3.1 - Denial of Service via Crafted SIP INVITE To Header
OfficeSIP Server 3.1 allows remote attackers to cause a denial of service (daemon crash) via a crafted To header in a SIP INVITE message.
by SecPod Research
CVE-2012-1009 EXPLOITDB text
NetSarang Xlpd and Xmanager Enterprise - Denial of Service via Malformed LPD Request
NetSarang Xlpd 4 Build 0100 and NetSarang Xmanager Enterprise 4 Build 0186 allow remote attackers to cause a denial of service (daemon crash) via a malformed LPD request.
by SecPod Research
CVE-2012-1059 EXPLOITDB text VERIFIED
OSCommerce Online Merchant 3.0.2 - XSS
Cross-site scripting (XSS) vulnerability in osCommerce/OM/Core/Site/Shop/Application/Cart/pages/main.php in OSCommerce Online Merchant 3.0.2 allows remote attackers to inject arbitrary web script or HTML via the value_title parameter, as demonstrated using the "Front" field in the shirt module.
by Vulnerability-Lab