Exploitdb Exploits
50,095 exploits tracked across all sources.
DreamBox DM800 Firmware < 1.6 - Path Traversal via File Parameter
Directory traversal vulnerability in file in DreamBox DM800 1.6rc3, 1.5rc1, and earlier allows remote attackers to read arbitrary files via the file parameter.
by Todor Donev
DreamBox DM800 Firmware < 1.6 - Path Traversal via File Parameter
Directory traversal vulnerability in file in DreamBox DM800 1.6rc3, 1.5rc1, and earlier allows remote attackers to read arbitrary files via the file parameter.
by Todor Donev
Web File Browser 0.4b14 - Authenticated Path Traversal via File Parameter
Directory traversal vulnerability in webFileBrowser.php in Web File Browser 0.4b14 allows remote authenticated users to read arbitrary files via a ..%2f (encoded dot dot) in the file parameter in a download action.
by Sangyun YOO
Serendipity < 1.6 - Cross-Site Scripting in Karma Plugin
Serendipity before 1.6 has an XSS issue in the karma plugin which may allow privilege escalation.
by Stefan Schurtz
CVSS 6.1
Jara 1.6 - Cross-Site Scripting
Jara 1.6 has an XSS vulnerability
by Or4nG.M4N
CVSS 6.1
Calibre E-Book Reader - Race Condition Privilege Escalation
by zx2c4
Calibre E-Book Reader - Local Privilege Escalation (2)
by zx2c4
CmyDocument - Multiple Cross-Site Scripting Vulnerabilities
by demonalex
Android < 2.3.6 - Information Exposure via PowerVR SGX Driver Request
The PowerVR SGX driver in Android before 2.3.6 allows attackers to obtain potentially sensitive information from kernel stack memory via an application that uses a crafted length parameter in a request to the pvrsrvkm device.
by Geremy Condra
BestShopPro - SQL Injection via pokaz_podkat.php str Parameter
SQL injection vulnerability in pokaz_podkat.php in BestShopPro allows remote attackers to execute arbitrary SQL commands via the str parameter.
by CoBRa_21
Oracle Hyperion Financial Management TList6 - ActiveX Control Remote Code Execution
by rgod
Microsoft Excel 2007 SP2 - Buffer Overwrite (MS11-021)
by Abysssec
SetSeed CMS < 5.11.2 - SQL Injection via loggedInUser Cookie
SQL injection vulnerability in setseed-hub in SetSeed CMS 5.8.20, 5.11.2, and earlier allows remote attackers to execute arbitrary SQL commands via the loggedInUser cookie.
by LiquidWorm
eFront 3.6.x - Multiple Cross-Site Scripting / SQL Injections
by High-Tech Bridge SA
CaupoShop Pro < 3.70 and Classic 3.01 - Path Traversal via Template Parameter
Directory traversal vulnerability in CaupoShop Pro 2.x, CaupoShop Classic 3.01, and CaupoShop Pro 3.70 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the template parameter in a template action.
by Rami Salama
BestShopPro - Cross-Site Scripting via nowosci.php str Parameter
Cross-site scripting (XSS) vulnerability in nowosci.php in BestShopPro allows remote attackers to inject arbitrary web script or HTML via the str parameter.
by CoBRa_21
Calibre E-Book Reader - Local Privilege Escalation (1)
by zx2c4
Apache HTTP Server 2.0.x-2.0.64 and 2.2.x-2.2.21 - Denial of Service via mod_setenvif SetEnvIf Directive
The ap_pregsub function in server/util.c in the Apache HTTP Server 2.0.x through 2.0.64 and 2.2.x through 2.2.21, when the mod_setenvif module is enabled, does not restrict the size of values of environment variables, which allows local users to cause a denial of service (memory consumption or NULL pointer dereference) via a .htaccess file with a crafted SetEnvIf directive, in conjunction with a crafted HTTP request header, related to (1) the "len +=" statement and (2) the apr_pcalloc function call, a different vulnerability than CVE-2011-3607.
by halfdog
vBulletin 4.1.7 - Multiple Remote File Inclusions
by indoushka
Symphony CMS < 2.2.4 - Authenticated Cross-Site Scripting via Profile or Filter Parameter
Multiple cross-site scripting (XSS) vulnerabilities in Symphony CMS 2.2.3 and possibly other versions before 2.2.4 allow remote authenticated users with Author privileges to inject arbitrary web script or HTML via (1) the profile parameter to extensions/profiledevkit/content/content.profile.php, as demonstrated via requests to (a) the default URI, (b) about/, or (c) drafts/; or (2) the filter parameter in symphony/lib/core/class.symphony.php, as demonstrated via requests to (d) symphony/publish/comments or (e) symphony/publish/images. NOTE: some of these details are obtained from third party information.
by Mesut Timur
Symphony CMS <2.2.4 - SQL Injection
Multiple SQL injection vulnerabilities in symphony/content/content.publish.php in Symphony CMS 2.2.3 and possibly other versions before 2.2.4 allow remote authenticated users with Author permissions to execute arbitrary SQL commands via the filter parameter to (1) symphony/publish/comments or (2) symphony/publish/images. NOTE: this issue can be leveraged to perform cross-site scripting (XSS) attacks via error messages. NOTE: some of these details are obtained from third party information.
by Mesut Timur
eFront 3.6.10 Build 11944 - Multiple Cross-Site Scripting Vulnerabilities
by Netsparker Advisories
Domain Shop - 'index.php' Cross-Site Scripting
by Mr.PaPaRoSSe
Hyperic HQ Enterprise 4.5.1 - Cross-Site Scripting / Multiple Security Vulnerabilities
by Benjamin Kunz Mejri
By Source