Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
CVE-2009-0450 EXPLOITDB python
BlazeVideo HDTV Player <3.5 - Buffer Overflow
Stack-based buffer overflow in BlazeVideo HDTV Player 3.5 and earlier allows remote attackers to execute arbitrary code via a long string in a playlist (aka .plf) file.
by modpr0be
EIP-2026-112920 EXPLOITDB text
URL Shortener Script 1.0 - SQL Injection
by M.Jock3R
EIP-2026-106791 EXPLOITDB text
EFront 3.6.9 Community Edition - Multiple Vulnerabilities
by IHTeam
EIP-2026-105665 EXPLOITDB text VERIFIED
BuzzyWall 1.3.2 - 'resolute.php' Information Disclosure
by cr4wl3r
CVE-2011-2628 EXPLOITDB ruby VERIFIED
Opera < 11.11 - Remote Code Execution via FRAMESET Element Handling
Opera before 11.11 does not properly implement FRAMESET elements, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via vectors related to page unload.
by Jose A. Vazquez
EIP-2026-112802 EXPLOITDB text VERIFIED
Tsmim Lessons Library - 'show.php' SQL Injection
by M.Jock3R
CVE-2011-4564 EXPLOITDB text VERIFIED
Active CMS 1.2 - Cross-Site Scripting via Admin Script Mod Parameter
Cross-site scripting (XSS) vulnerability in the admin script in Active CMS 1.2 allows remote attackers to inject arbitrary web script or HTML via the mod parameter in a module action.
by Stefan Schurtz
CVE-2011-1398 EXPLOITDB text VERIFIED
PHP < 5.3.11 and 5.4.x < 5.4.0RC2 - HTTP Response Splitting via Carriage Return Bypass
The sapi_header_op function in main/SAPI.c in PHP before 5.3.11 and 5.4.x before 5.4.0RC2 does not check for %0D sequences (aka carriage return characters), which allows remote attackers to bypass an HTTP response-splitting protection mechanism via a crafted URL, related to improper interaction between the PHP header function and certain browsers, as demonstrated by Internet Explorer and Google Chrome.
by Mr. Tokumaru
EIP-2026-115154 EXPLOITDB html VERIFIED
DivX Plus Web Player - 'file://' Buffer Overflow (PoC)
by Snake
CVE-2011-1485 EXPLOITDB c
Linux PolicyKit Race Condition Privilege Escalation
Race condition in the pkexec utility and polkitd daemon in PolicyKit (aka polkit) 0.96 allows local users to gain privileges by executing a setuid program from pkexec, related to the use of the effective user ID instead of the real user ID.
by zx2c4
CVE-2011-10015 EXPLOITDB CRITICAL text VERIFIED
Cytel Studio <9.0 - Buffer Overflow
Cytel Studio version 9.0 and earlier is vulnerable to a stack-based buffer overflow triggered by parsing a malformed .CY3 file. The vulnerability occurs when the application copies user-controlled strings into a fixed-size stack buffer (256 bytes) without proper bounds checking. Exploitation allows arbitrary code execution when the crafted file is opened.
by Luigi Auriemma
CVE-2011-2841 EXPLOITDB text VERIFIED
Google Chrome < 14.0.835.163 - Denial of Service via PDF Garbage Collection
Google Chrome before 14.0.835.163 does not properly perform garbage collection during the processing of PDF documents, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted document.
by Mario Gomes
EIP-2026-115322 EXPLOITDB text VERIFIED
GenStat 14.1.0.5943 - Multiple Vulnerabilities
by Luigi Auriemma
EIP-2026-114935 EXPLOITDB perl
Ashampoo Burning Studio Elements 10.0.9 - '.ashprj' Heap Overflow
by LiquidWorm
CVE-2011-4670 EXPLOITDB text VERIFIED
vtiger CRM < 5.2.1 - Cross-Site Scripting via Multiple Parameters
Multiple cross-site scripting (XSS) vulnerabilities in vTiger CRM 5.2.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) viewname parameter in a CalendarAjax action, (2) activity_mode parameter in a DetailView action, (3) contact_id and (4) parent_id parameters in an EditView action, (5) day, (6) month, (7) subtab, (8) view, and (9) viewOption parameters in the index action, and (10) start parameter in the ListView action to the Calendar module; (11) return_action and (12) return_module parameters in the EditView action, and (13) query parameter in an index action to the Campaigns module; (14) return_url and (15) workflow_id parameters in an editworkflow action to the com_vtiger_workflow module; (16) display_view parameter in an index action to the Dashboard module; (17) closingdate_end, (18) closingdate_start, (19) date_closed, (20) owner, (21) leadsource, (22) sales_stage, and (23) type parameters in a ListView action to the Potentials module; (24) folderid parameter in a SaveandRun action to the Reports module; (25) returnaction and (26) groupId parameters in a createnewgroup action, (27) mode and (28) parent parameters in a createrole action, (29) src_module in a ModuleManager action, (30) mode and (31) profile_id parameters in a profilePrivileges action, and (32) roleid parameter in a RoleDetailView to the Settings module; and (33) action parameter to the Home module and (34) module parameter to phprint.php.
by Aung Khant
CVE-2011-4670 EXPLOITDB text VERIFIED
vtiger CRM < 5.2.1 - Cross-Site Scripting via Multiple Parameters
Multiple cross-site scripting (XSS) vulnerabilities in vTiger CRM 5.2.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) viewname parameter in a CalendarAjax action, (2) activity_mode parameter in a DetailView action, (3) contact_id and (4) parent_id parameters in an EditView action, (5) day, (6) month, (7) subtab, (8) view, and (9) viewOption parameters in the index action, and (10) start parameter in the ListView action to the Calendar module; (11) return_action and (12) return_module parameters in the EditView action, and (13) query parameter in an index action to the Campaigns module; (14) return_url and (15) workflow_id parameters in an editworkflow action to the com_vtiger_workflow module; (16) display_view parameter in an index action to the Dashboard module; (17) closingdate_end, (18) closingdate_start, (19) date_closed, (20) owner, (21) leadsource, (22) sales_stage, and (23) type parameters in a ListView action to the Potentials module; (24) folderid parameter in a SaveandRun action to the Reports module; (25) returnaction and (26) groupId parameters in a createnewgroup action, (27) mode and (28) parent parameters in a createrole action, (29) src_module in a ModuleManager action, (30) mode and (31) profile_id parameters in a profilePrivileges action, and (32) roleid parameter in a RoleDetailView to the Settings module; and (33) action parameter to the Home module and (34) module parameter to phprint.php.
by Aung Khant
EIP-2026-106696 EXPLOITDB text
Easy Hosting Control Panel - Admin Authentication Bypass
by Jasman
EIP-2026-106128 EXPLOITDB text VERIFIED
Concrete5 CMS < 5.4.2.1 - Multiple Vulnerabilities
by Ryan Dewhurst
CVE-2011-4572 EXPLOITDB python
CF Image Hosting Script 1.3.82, 1.4.1 - Cross-Site Scripting via q Parameter
Cross-site scripting (XSS) vulnerability in inc/tesmodrewite.php in CF Image Hosting Script 1.3.82, 1.4.1, and probably other versions before 1.4.2 allows remote attackers to inject arbitrary web script or HTML via the q parameter. NOTE: this was originally reported as a file disclosure vulnerability, but this is likely inaccurate.
by bd0rk
EIP-2026-101456 EXPLOITDB text VERIFIED
SonicWALL - 'SessId' Cookie Brute Force / Admin Session Hijacking
by Hugo Vazquez
CVE-2011-4561 EXPLOITDB text VERIFIED
Phorum 5.2.18 - Cross-Site Scripting via PATH_INFO to admin/index.php
Cross-site scripting (XSS) vulnerability in admin.php in Phorum 5.2.18 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to admin/index.php. NOTE: some of these details are obtained from third party information.
by Stefan Schurtz
CVE-2011-3340 EXPLOITDB text VERIFIED
ATCOM Netvolution 2.5.8 - SQL Injection via Referer HTTP Header
SQL injection vulnerability in ATCOM Netvolution 2.5.8 ASP allows remote attackers to execute arbitrary SQL commands via the Referer HTTP header.
by Patroklos Argyroudis
CVE-2010-0738 EXPLOITDB MEDIUM perl
JBoss JMX Console Deployer Upload and Execute
The JMX-Console web application in JBossAs in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.2 before 4.2.0.CP09 and 4.3 before 4.3.0.CP08 performs access control only for the GET and POST methods, which allows remote attackers to send requests to this application's GET handler by using a different method.
by y0ug
CVSS 5.3
EIP-2026-100342 EXPLOITDB text
GotoCode Online Bookstore - Multiple Vulnerabilities
by Nathaniel Carew
CVE-2011-2443 EXPLOITDB text
Adobe Photoshop Elements <= 8.0 - Buffer Overflow via Crafted .grd or .abr File
Multiple buffer overflows in Adobe Photoshop Elements 8.0 and earlier allow remote attackers to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted (1) .grd or (2) .abr file, a related issue to CVE-2010-1296.
by LiquidWorm