Exploitdb Exploits
50,095 exploits tracked across all sources.
Joomla! Component Content - 'year' SQL Injection
by E.Shahmohamadi
Support Incident Tracker 3.65 - Authenticated Sensitive Information Exposure via FTP Upload Filename
ftp_upload_file.php in Support Incident Tracker (aka SiT!) 3.65 allows remote authenticated users to obtain sensitive information via the file name, which reveals the installation path in an error message.
by Metasploit
Aviosoft Digital TV Player Professional 1.0 - Local Stack Buffer Overflow (Metasploit)
by Metasploit
WordPress Plugin Zingiri 2.2.3 - 'ajax_save_name.php' Remote Code Execution
by EgiX
Support Incident Tracker Remote Command Execution
Unrestricted file upload vulnerability in ftp_upload_file.php in Support Incident Tracker (aka SiT!) 3.65 allows remote authenticated users to execute arbitrary PHP code by uploading a PHP file, then accessing it via a direct request to the file in an unspecified directory.
by Metasploit
Hotaru CMS Search Plugin 1.3 - Cross-Site Scripting via SITE_NAME, return, or search Parameters
Multiple cross-site scripting (XSS) vulnerabilities in Hotaru.php in the Search plugin 1.3 for Hotaru CMS allow remote attackers to inject arbitrary web script or HTML via the (1) SITE_NAME parameter to admin_index.php, or the (2) return and (3) search parameters to index.php. NOTE: some of these details are obtained from third party information.
by Gjoko Krstic
Mambo < 4.6.5 - SQL Injection via zorder Parameter
SQL injection vulnerability in administrator/index2.php in Mambo CMS 4.6.5 and earlier allows remote attackers to execute arbitrary SQL commands via the zorder parameter.
by KraL BeNiM
Soda PDF Professional 1.2.155 - '.pdf' / '.WWF' File Handling Denial of Service
by LiquidWorm
Kool Media Converter 2.6.0 - '.ogg' File Buffer Overflow
by swami
Infoblox NetMRI 6.2.1 - Admin Login Page Multiple Cross-Site Scripting Vulnerabilities
by Jose Carlos de Arriba
Joomla! Component com_alfcontact 1.9.3 - Multiple Cross-Site Scripting Vulnerabilities
by Jose Carlos de Arriba
glibc < 2.11.3 and 2.12.x < 2.12.2 - Privilege Escalation via LD_AUDIT Environment Variable
ld.so in the GNU C Library (aka glibc or libc6) before 2.11.3, and 2.12.x before 2.12.2, does not properly restrict use of the LD_AUDIT environment variable to reference dynamic shared objects (DSOs) as audit objects, which allows local users to gain privileges by leveraging an unsafe DSO located in a trusted library directory, as demonstrated by libpcprofile.so.
by zx2c4
AbsoluteFTP 1.9.6-2.2.10 - Remote Code Execution via LIST Command Response
Stack-based buffer overflow in VanDyke Software AbsoluteFTP 1.9.6 through 2.2.10 allows remote FTP servers to execute arbitrary code via a crafted file name in a LIST command response.
by Node
Aviosoft Digital TV Player Professional 1.x - Local Stack Buffer Overflow
by modpr0be
osCSS2 <= 2.1.0 - Path Traversal via _ID Parameter
Directory traversal vulnerability in catalog/content.php in osCSS2 2.1.0 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the _ID parameter to (1) catalog/shopping_cart.php or (2) catalog/content.php.
by Stefan Schurtz
LabWiki < 1.1 - Authenticated Arbitrary PHP File Upload via .gif Extension
edit.php in LabWiki 1.1 and earlier does not properly verify uploaded user files, which allows remote authenticated users to upload arbitrary PHP files via a PHP file with a .gif extension in the userfile parameter.
by muuratsalo
CVSS 8.8
AShop - Open Redirection / Cross-Site Scripting
by Infoserve Security Team
COMTREND CT-5624 Router - Root/Support Password Disclosure/Change
by Todor Donev
OpenPAM <r478 - Privilege Escalation
Directory traversal vulnerability in openpam_configure.c in OpenPAM before r478 on FreeBSD 8.1 allows local users to load arbitrary DSOs and gain privileges via a .. (dot dot) in the service_name argument to the pam_start function, as demonstrated by a .. in the -c option to kcheckpass.
by IKCE
Microsoft Windows - Buffer Overflow
Integer overflow in the TCP/IP implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote attackers to execute arbitrary code by sending a sequence of crafted UDP packets to a closed port, aka "Reference Counter Overflow Vulnerability."
by anonymous
CVSS 9.8
PBCS Technology - 'articlenav.php' SQL Injection
by Kalashinkov3
XAMPP 1.7.7 - 'PHP_SELF' Multiple Cross-Site Scripting Vulnerabilities
by Gjoko Krstic
By Source