Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-108613 EXPLOITDB text VERIFIED
Joomla! Component Content - 'year' SQL Injection
by E.Shahmohamadi
EIP-2026-103575 EXPLOITDB html VERIFIED
Mozilla Firefox 8.0 - Null Pointer Dereference (PoC)
by 0in
CVE-2011-3829 EXPLOITDB ruby VERIFIED
Support Incident Tracker 3.65 - Authenticated Sensitive Information Exposure via FTP Upload Filename
ftp_upload_file.php in Support Incident Tracker (aka SiT!) 3.65 allows remote authenticated users to obtain sensitive information via the file name, which reveals the installation path in an error message.
by Metasploit
EIP-2026-116859 EXPLOITDB ruby VERIFIED
Aviosoft Digital TV Player Professional 1.0 - Local Stack Buffer Overflow (Metasploit)
by Metasploit
EIP-2026-114292 EXPLOITDB php VERIFIED
WordPress Plugin Zingiri 2.2.3 - 'ajax_save_name.php' Remote Code Execution
by EgiX
CVE-2011-3833 EXPLOITDB ruby VERIFIED
Support Incident Tracker Remote Command Execution
Unrestricted file upload vulnerability in ftp_upload_file.php in Support Incident Tracker (aka SiT!) 3.65 allows remote authenticated users to execute arbitrary PHP code by uploading a PHP file, then accessing it via a direct request to the file in an unspecified directory.
by Metasploit
CVE-2011-4709 EXPLOITDB html VERIFIED
Hotaru CMS Search Plugin 1.3 - Cross-Site Scripting via SITE_NAME, return, or search Parameters
Multiple cross-site scripting (XSS) vulnerabilities in Hotaru.php in the Search plugin 1.3 for Hotaru CMS allow remote attackers to inject arbitrary web script or HTML via the (1) SITE_NAME parameter to admin_index.php, or the (2) return and (3) search parameters to index.php. NOTE: some of these details are obtained from third party information.
by Gjoko Krstic
CVE-2011-2917 EXPLOITDB text
Mambo < 4.6.5 - SQL Injection via zorder Parameter
SQL injection vulnerability in administrator/index2.php in Mambo CMS 4.6.5 and earlier allows remote attackers to execute arbitrary SQL commands via the zorder parameter.
by KraL BeNiM
EIP-2026-116261 EXPLOITDB perl VERIFIED
Soda PDF Professional 1.2.155 - '.pdf' / '.WWF' File Handling Denial of Service
by LiquidWorm
EIP-2026-115530 EXPLOITDB python VERIFIED
Kool Media Converter 2.6.0 - Denial of Service
by swami
EIP-2026-115529 EXPLOITDB python VERIFIED
Kool Media Converter 2.6.0 - '.ogg' File Buffer Overflow
by swami
EIP-2026-102378 EXPLOITDB text VERIFIED
Infoblox NetMRI 6.2.1 - Admin Login Page Multiple Cross-Site Scripting Vulnerabilities
by Jose Carlos de Arriba
EIP-2026-108261 EXPLOITDB text VERIFIED
Joomla! Component com_alfcontact 1.9.3 - Multiple Cross-Site Scripting Vulnerabilities
by Jose Carlos de Arriba
CVE-2010-3856 EXPLOITDB bash VERIFIED
glibc < 2.11.3 and 2.12.x < 2.12.2 - Privilege Escalation via LD_AUDIT Environment Variable
ld.so in the GNU C Library (aka glibc or libc6) before 2.11.3, and 2.12.x before 2.12.2, does not properly restrict use of the LD_AUDIT environment variable to reference dynamic shared objects (DSOs) as audit objects, which allows local users to gain privileges by leveraging an unsafe DSO located in a trusted library directory, as demonstrated by libpcprofile.so.
by zx2c4
CVE-2011-5164 EXPLOITDB ruby VERIFIED
AbsoluteFTP 1.9.6-2.2.10 - Remote Code Execution via LIST Command Response
Stack-based buffer overflow in VanDyke Software AbsoluteFTP 1.9.6 through 2.2.10 allows remote FTP servers to execute arbitrary code via a crafted file name in a LIST command response.
by Node
EIP-2026-116861 EXPLOITDB python VERIFIED
Aviosoft Digital TV Player Professional 1.x - Local Stack Buffer Overflow
by modpr0be
CVE-2011-4713 EXPLOITDB text VERIFIED
osCSS2 <= 2.1.0 - Path Traversal via _ID Parameter
Directory traversal vulnerability in catalog/content.php in osCSS2 2.1.0 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the _ID parameter to (1) catalog/shopping_cart.php or (2) catalog/content.php.
by Stefan Schurtz
CVE-2011-4334 EXPLOITDB HIGH text VERIFIED
LabWiki < 1.1 - Authenticated Arbitrary PHP File Upload via .gif Extension
edit.php in LabWiki 1.1 and earlier does not properly verify uploaded user files, which allows remote authenticated users to upload arbitrary PHP files via a PHP file with a .gif extension in the userfile parameter.
by muuratsalo
CVSS 8.8
EIP-2026-105264 EXPLOITDB text VERIFIED
AShop - Open Redirection / Cross-Site Scripting
by Infoserve Security Team
EIP-2026-101605 EXPLOITDB perl
COMTREND CT-5624 Router - Root/Support Password Disclosure/Change
by Todor Donev
CVE-2011-4122 EXPLOITDB perl VERIFIED
OpenPAM <r478 - Privilege Escalation
Directory traversal vulnerability in openpam_configure.c in OpenPAM before r478 on FreeBSD 8.1 allows local users to load arbitrary DSOs and gain privileges via a .. (dot dot) in the service_name argument to the pam_start function, as demonstrated by a .. in the -c option to kcheckpass.
by IKCE
CVE-2011-2013 EXPLOITDB CRITICAL c VERIFIED
Microsoft Windows - Buffer Overflow
Integer overflow in the TCP/IP implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote attackers to execute arbitrary code by sending a sequence of crafted UDP packets to a closed port, aka "Reference Counter Overflow Vulnerability."
by anonymous
CVSS 9.8
EIP-2026-110513 EXPLOITDB text VERIFIED
PBCS Technology - 'articlenav.php' SQL Injection
by Kalashinkov3
EIP-2026-104807 EXPLOITDB text VERIFIED
11in1 CMS 1.0.1 - 'do.php' CRLF Injection
by LiquidWorm
EIP-2026-119304 EXPLOITDB text VERIFIED
XAMPP 1.7.7 - 'PHP_SELF' Multiple Cross-Site Scripting Vulnerabilities
by Gjoko Krstic