Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
CVE-2011-4273 EXPLOITDB text VERIFIED
GoAhead Webserver 2.18 - Cross-Site Scripting via Group Parameter or URL Parameter
Multiple cross-site scripting (XSS) vulnerabilities in GoAhead Webserver 2.18 allow remote attackers to inject arbitrary web script or HTML via (1) the group parameter to goform/AddGroup, related to addgroup.asp; (2) the url parameter to goform/AddAccessLimit, related to addlimit.asp; or the (3) user (aka User ID) or (4) group parameter to goform/AddUser, related to adduser.asp.
by Silent Dream
CVE-2011-2595 EXPLOITDB ruby VERIFIED
ACDSee FotoSlate 4.0 Build 146 - Stack-Based Buffer Overflow via PLP File Tag
Multiple stack-based buffer overflows in ACDSee FotoSlate 4.0 Build 146 allow remote attackers to execute arbitrary code via a long id parameter in a (1) String or (2) Int tag in a FotoSlate Project (aka PLP) file.
by Metasploit
CVE-2011-4871 EXPLOITDB text VERIFIED
OPC Systems.NET < 4.0 - Denial of Service via Malformed .NET RPC Packet
Open Automation Software OPC Systems.NET before 5.0 allows remote attackers to cause a denial of service via a malformed .NET RPC packet on TCP port 58723.
by Luigi Auriemma
CVE-2011-4883 EXPLOITDB text VERIFIED
atvise webMI2ADS < 2.0.2 - Denial of Service via HTTP Request Validation Bypass
The web server in Certec atvise webMI2ADS (aka webMI) before 2.0.2 does not properly validate values in HTTP requests, which allows remote attackers to cause a denial of service (resource consumption) via a crafted request.
by Luigi Auriemma
EIP-2026-111802 EXPLOITDB text
Roundcube Webmail 0.3.1 - Cross-Site Request Forgery / SQL Injection
by Smith Falcon
EIP-2026-111420 EXPLOITDB text
POSH - Multiple Vulnerabilities
by Crashfr
EIP-2026-110302 EXPLOITDB text
openEngine 2.0 - Multiple Blind SQL Injection Vulnerabilities
by Stefan Schurtz
CVE-2011-4569 EXPLOITDB text VERIFIED
Userbar plugin 2.2 for MyBB Forum - SQL Injection via image2 Parameter
SQL injection vulnerability in userbarsettings.php in the Userbar plugin 2.2 for MyBB Forum allows remote attackers to execute arbitrary SQL commands via the image2 parameter.
by Mario_Vs
CVE-2011-5278 EXPLOITDB text VERIFIED
Advanced Forum Signatures 2.0.4 - SQL Injection via afs_bar_right Parameter
SQL injection vulnerability in signature.php in Advanced Forum Signatures plugin (aka afsignatures) 2.0.4 for MyBB allows remote attackers to execute arbitrary SQL commands via the afs_bar_right parameter.
by Mario_Vs
EIP-2026-108959 EXPLOITDB text
KaiBB 2.0.1 - SQL Injection
by Stefan Schurtz
EIP-2026-108049 EXPLOITDB text VERIFIED
Jaws 0.8.14 - Multiple Remote File Inclusions
by indoushka
EIP-2026-107097 EXPLOITDB text
Filmis 0.2 Beta - Multiple Vulnerabilities
by M.Jock3R
EIP-2026-106178 EXPLOITDB text
cotonti CMS 0.9.4 - Multiple Vulnerabilities
by LiquidWorm
EIP-2026-104866 EXPLOITDB text VERIFIED
6KBBS 8.0 build 20101201 - Cross-Site Scripting / Information Disclosure
by labs insight
EIP-2026-104865 EXPLOITDB text
6kbbs - Multiple Vulnerabilities
by labs insight
CVE-2011-10018 EXPLOITDB CRITICAL ruby VERIFIED
myBB 1.6.4 - Unauthenticated Remote Code Execution via Collapsed Cookie Backdoor
myBB version 1.6.4 was distributed with an unauthorized backdoor embedded in the source code. The backdoor allowed remote attackers to execute arbitrary PHP code by injecting payloads into a specially crafted collapsed cookie. This vulnerability was introduced during packaging and was not part of the intended application logic. Exploitation requires no authentication and results in full compromise of the web server under the context of the web application.
by Metasploit
CVSS 9.8
CVE-2011-10017 EXPLOITDB CRITICAL ruby VERIFIED
Snort Report < 1.3.2 - Unauthenticated Remote Code Execution via nmap.php and nbtscan.php Target Parameter
Snort Report versions < 1.3.2 contains a remote command execution vulnerability in the nmap.php and nbtscan.php scripts. These scripts fail to properly sanitize user input passed via the target GET parameter, allowing attackers to inject arbitrary shell commands. Exploitation requires no authentication and can result in full compromise of the underlying system.
by Metasploit
CVE-2011-3976 EXPLOITDB ruby VERIFIED
AmmSoft ScriptFTP 3.3 - Buffer Overflow
Stack-based buffer overflow in AmmSoft ScriptFTP 3.3 allows remote FTP servers to execute arbitrary code via a long filename in a response to a LIST command, as demonstrated using (1) GETLIST or (2) GETFILE in a ScriptFTP script.
by Metasploit
EIP-2026-108342 EXPLOITDB text VERIFIED
Joomla! Component com_expedition - 'id' SQL Injection
by BHG Security Center
EIP-2026-107463 EXPLOITDB text
GotoCode Online Classifieds - Multiple Vulnerabilities
by Nathaniel Carew
CVE-2011-4026 EXPLOITDB text
NexusPHP 1.5 - SQL Injection via Thanks.php ID Parameter
SQL injection vulnerability in thanks.php in NexusPHP 1.5 allows remote attackers to execute arbitrary SQL commands via the id parameter.
by flyh4t
CVE-2011-4570 EXPLOITDB text VERIFIED
Time Returns (com_timereturns) 2.0 - SQL Injection via id Parameter
SQL injection vulnerability in the Time Returns (com_timereturns) component 2.0 and possibly earlier versions for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a timereturns action to index.php.
by kaMtiEz
EIP-2026-105592 EXPLOITDB text
BOOKSolved 1.2.2 - Remote File Disclosure
by bd0rk
CVE-2011-1485 EXPLOITDB c
Linux PolicyKit Race Condition Privilege Escalation
Race condition in the pkexec utility and polkitd daemon in PolicyKit (aka polkit) 0.96 allows local users to gain privileges by executing a setuid program from pkexec, related to the use of the effective user ID instead of the real user ID.
by xi4oyu
CVE-2011-10019 EXPLOITDB CRITICAL ruby VERIFIED
Spreecommerce < 0.60.2 - Unauthenticated Remote Code Execution via Search Parameter
Spreecommerce versions prior to 0.60.2 contains a remote command execution vulnerability in its search functionality. The application fails to properly sanitize input passed via the search[send][] parameter, which is dynamically invoked using Ruby’s send method. This allows attackers to execute arbitrary shell commands on the server without authentication.
by Metasploit
CVSS 9.8