Exploitdb Exploits
50,095 exploits tracked across all sources.
GoAhead Webserver 2.18 - Cross-Site Scripting via Group Parameter or URL Parameter
Multiple cross-site scripting (XSS) vulnerabilities in GoAhead Webserver 2.18 allow remote attackers to inject arbitrary web script or HTML via (1) the group parameter to goform/AddGroup, related to addgroup.asp; (2) the url parameter to goform/AddAccessLimit, related to addlimit.asp; or the (3) user (aka User ID) or (4) group parameter to goform/AddUser, related to adduser.asp.
by Silent Dream
ACDSee FotoSlate 4.0 Build 146 - Stack-Based Buffer Overflow via PLP File Tag
Multiple stack-based buffer overflows in ACDSee FotoSlate 4.0 Build 146 allow remote attackers to execute arbitrary code via a long id parameter in a (1) String or (2) Int tag in a FotoSlate Project (aka PLP) file.
by Metasploit
OPC Systems.NET < 4.0 - Denial of Service via Malformed .NET RPC Packet
Open Automation Software OPC Systems.NET before 5.0 allows remote attackers to cause a denial of service via a malformed .NET RPC packet on TCP port 58723.
by Luigi Auriemma
atvise webMI2ADS < 2.0.2 - Denial of Service via HTTP Request Validation Bypass
The web server in Certec atvise webMI2ADS (aka webMI) before 2.0.2 does not properly validate values in HTTP requests, which allows remote attackers to cause a denial of service (resource consumption) via a crafted request.
by Luigi Auriemma
Roundcube Webmail 0.3.1 - Cross-Site Request Forgery / SQL Injection
by Smith Falcon
openEngine 2.0 - Multiple Blind SQL Injection Vulnerabilities
by Stefan Schurtz
Userbar plugin 2.2 for MyBB Forum - SQL Injection via image2 Parameter
SQL injection vulnerability in userbarsettings.php in the Userbar plugin 2.2 for MyBB Forum allows remote attackers to execute arbitrary SQL commands via the image2 parameter.
by Mario_Vs
Advanced Forum Signatures 2.0.4 - SQL Injection via afs_bar_right Parameter
SQL injection vulnerability in signature.php in Advanced Forum Signatures plugin (aka afsignatures) 2.0.4 for MyBB allows remote attackers to execute arbitrary SQL commands via the afs_bar_right parameter.
by Mario_Vs
6KBBS 8.0 build 20101201 - Cross-Site Scripting / Information Disclosure
by labs insight
myBB 1.6.4 - Unauthenticated Remote Code Execution via Collapsed Cookie Backdoor
myBB version 1.6.4 was distributed with an unauthorized backdoor embedded in the source code. The backdoor allowed remote attackers to execute arbitrary PHP code by injecting payloads into a specially crafted collapsed cookie. This vulnerability was introduced during packaging and was not part of the intended application logic. Exploitation requires no authentication and results in full compromise of the web server under the context of the web application.
by Metasploit
CVSS 9.8
Snort Report < 1.3.2 - Unauthenticated Remote Code Execution via nmap.php and nbtscan.php Target Parameter
Snort Report versions < 1.3.2 contains a remote command execution vulnerability in the nmap.php and nbtscan.php scripts. These scripts fail to properly sanitize user input passed via the target GET parameter, allowing attackers to inject arbitrary shell commands. Exploitation requires no authentication and can result in full compromise of the underlying system.
by Metasploit
AmmSoft ScriptFTP 3.3 - Buffer Overflow
Stack-based buffer overflow in AmmSoft ScriptFTP 3.3 allows remote FTP servers to execute arbitrary code via a long filename in a response to a LIST command, as demonstrated using (1) GETLIST or (2) GETFILE in a ScriptFTP script.
by Metasploit
Joomla! Component com_expedition - 'id' SQL Injection
by BHG Security Center
GotoCode Online Classifieds - Multiple Vulnerabilities
by Nathaniel Carew
NexusPHP 1.5 - SQL Injection via Thanks.php ID Parameter
SQL injection vulnerability in thanks.php in NexusPHP 1.5 allows remote attackers to execute arbitrary SQL commands via the id parameter.
by flyh4t
Time Returns (com_timereturns) 2.0 - SQL Injection via id Parameter
SQL injection vulnerability in the Time Returns (com_timereturns) component 2.0 and possibly earlier versions for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a timereturns action to index.php.
by kaMtiEz
Linux PolicyKit Race Condition Privilege Escalation
Race condition in the pkexec utility and polkitd daemon in PolicyKit (aka polkit) 0.96 allows local users to gain privileges by executing a setuid program from pkexec, related to the use of the effective user ID instead of the real user ID.
by xi4oyu
Spreecommerce < 0.60.2 - Unauthenticated Remote Code Execution via Search Parameter
Spreecommerce versions prior to 0.60.2 contains a remote command execution vulnerability in its search functionality. The application fails to properly sanitize input passed via the search[send][] parameter, which is dynamically invoked using Ruby’s send method. This allows attackers to execute arbitrary shell commands on the server without authentication.
by Metasploit
CVSS 9.8
By Source