Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
CVE-2011-4716 EXPLOITDB text VERIFIED
DreamBox DM800 Firmware < 1.6 - Path Traversal via File Parameter
Directory traversal vulnerability in file in DreamBox DM800 1.6rc3, 1.5rc1, and earlier allows remote attackers to read arbitrary files via the file parameter.
by Todor Donev
CVE-2011-4716 EXPLOITDB perl
DreamBox DM800 Firmware < 1.6 - Path Traversal via File Parameter
Directory traversal vulnerability in file in DreamBox DM800 1.6rc3, 1.5rc1, and earlier allows remote attackers to read arbitrary files via the file parameter.
by Todor Donev
CVE-2011-4831 EXPLOITDB text VERIFIED
Web File Browser 0.4b14 - Authenticated Path Traversal via File Parameter
Directory traversal vulnerability in webFileBrowser.php in Web File Browser 0.4b14 allows remote authenticated users to read arbitrary files via a ..%2f (encoded dot dot) in the file parameter in a download action.
by Sangyun YOO
CVE-2011-4090 EXPLOITDB MEDIUM text VERIFIED
Serendipity < 1.6 - Cross-Site Scripting in Karma Plugin
Serendipity before 1.6 has an XSS issue in the karma plugin which may allow privilege escalation.
by Stefan Schurtz
CVSS 6.1
CVE-2011-4095 EXPLOITDB MEDIUM text VERIFIED
Jara 1.6 - Cross-Site Scripting
Jara 1.6 has an XSS vulnerability
by Or4nG.M4N
CVSS 6.1
EIP-2026-102797 EXPLOITDB bash VERIFIED
Calibre E-Book Reader - Race Condition Privilege Escalation
by zx2c4
EIP-2026-102795 EXPLOITDB bash VERIFIED
Calibre E-Book Reader - Local Privilege Escalation (2)
by zx2c4
EIP-2026-100210 EXPLOITDB text VERIFIED
CmyDocument - Multiple Cross-Site Scripting Vulnerabilities
by demonalex
CVE-2011-1350 EXPLOITDB c VERIFIED
Android < 2.3.6 - Information Exposure via PowerVR SGX Driver Request
The PowerVR SGX driver in Android before 2.3.6 allows attackers to obtain potentially sensitive information from kernel stack memory via an application that uses a crafted length parameter in a request to the pvrsrvkm device.
by Geremy Condra
CVE-2011-4811 EXPLOITDB text VERIFIED
BestShopPro - SQL Injection via pokaz_podkat.php str Parameter
SQL injection vulnerability in pokaz_podkat.php in BestShopPro allows remote attackers to execute arbitrary SQL commands via the str parameter.
by CoBRa_21
EIP-2026-119010 EXPLOITDB text VERIFIED
Oracle Hyperion Financial Management TList6 - ActiveX Control Remote Code Execution
by rgod
EIP-2026-117485 EXPLOITDB text VERIFIED
Microsoft Excel 2007 SP2 - Buffer Overwrite (MS11-021)
by Abysssec
CVE-2011-5116 EXPLOITDB text
SetSeed CMS < 5.11.2 - SQL Injection via loggedInUser Cookie
SQL injection vulnerability in setseed-hub in SetSeed CMS 5.8.20, 5.11.2, and earlier allows remote attackers to execute arbitrary SQL commands via the loggedInUser cookie.
by LiquidWorm
EIP-2026-106792 EXPLOITDB text VERIFIED
eFront 3.6.x - Multiple Cross-Site Scripting / SQL Injections
by High-Tech Bridge SA
CVE-2011-4832 EXPLOITDB text
CaupoShop Pro < 3.70 and Classic 3.01 - Path Traversal via Template Parameter
Directory traversal vulnerability in CaupoShop Pro 2.x, CaupoShop Classic 3.01, and CaupoShop Pro 3.70 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the template parameter in a template action.
by Rami Salama
CVE-2011-4812 EXPLOITDB text VERIFIED
BestShopPro - Cross-Site Scripting via nowosci.php str Parameter
Cross-site scripting (XSS) vulnerability in nowosci.php in BestShopPro allows remote attackers to inject arbitrary web script or HTML via the str parameter.
by CoBRa_21
EIP-2026-102794 EXPLOITDB bash VERIFIED
Calibre E-Book Reader - Local Privilege Escalation (1)
by zx2c4
CVE-2011-4415 EXPLOITDB text
Apache HTTP Server 2.0.x-2.0.64 and 2.2.x-2.2.21 - Denial of Service via mod_setenvif SetEnvIf Directive
The ap_pregsub function in server/util.c in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x through 2.2.21, when the mod_setenvif module is enabled, does not restrict the size of values of environment variables, which allows local users to cause a denial of service (memory consumption or NULL pointer dereference) via a .htaccess file with a crafted SetEnvIf directive, in conjunction with a crafted HTTP request header, related to (1) the "len +=" statement and (2) the apr_pcalloc function call, a different vulnerability than CVE-2011-3607.
by halfdog
EIP-2026-113006 EXPLOITDB text VERIFIED
vBulletin 4.1.7 - Multiple Remote File Inclusions
by indoushka
CVE-2011-4340 EXPLOITDB text VERIFIED
Symphony CMS < 2.2.4 - Authenticated Cross-Site Scripting via Profile or Filter Parameter
Multiple cross-site scripting (XSS) vulnerabilities in Symphony CMS 2.2.3 and possibly other versions before 2.2.4 allow remote authenticated users with Author privileges to inject arbitrary web script or HTML via (1) the profile parameter to extensions/profiledevkit/content/content.profile.php, as demonstrated via requests to (a) the default URI, (b) about/, or (c) drafts/; or (2) the filter parameter in symphony/lib/core/class.symphony.php, as demonstrated via requests to (d) symphony/publish/comments or (e) symphony/publish/images. NOTE: some of these details are obtained from third party information.
by Mesut Timur
CVE-2011-4341 EXPLOITDB text VERIFIED
Symphony CMS <2.2.4 - SQL Injection
Multiple SQL injection vulnerabilities in symphony/content/content.publish.php in Symphony CMS 2.2.3 and possibly other versions before 2.2.4 allow remote authenticated users with Author permissions to execute arbitrary SQL commands via the filter parameter to (1) symphony/publish/comments or (2) symphony/publish/images. NOTE: this issue can be leveraged to perform cross-site scripting (XSS) attacks via error messages. NOTE: some of these details are obtained from third party information.
by Mesut Timur
EIP-2026-107714 EXPLOITDB text VERIFIED
IBSng B1.34(T96) - 'str' Cross-Site Scripting
by Isfahan
EIP-2026-106785 EXPLOITDB text VERIFIED
eFront 3.6.10 Build 11944 - Multiple Cross-Site Scripting Vulnerabilities
by Netsparker Advisories
EIP-2026-106533 EXPLOITDB text VERIFIED
Domain Shop - 'index.php' Cross-Site Scripting
by Mr.PaPaRoSSe
EIP-2026-102483 EXPLOITDB text VERIFIED
Hyperic HQ Enterprise 4.5.1 - Cross-Site Scripting / Multiple Security Vulnerabilities
by Benjamin Kunz Mejri