Exploitdb Exploits
50,095 exploits tracked across all sources.
KaiBB 2.0.1 - SQL Injection / Arbitrary File Upload
by KedAns-Dz
NetSaro Enterprise Messenger 2.0 - Multiple Vulnerabilities
by Narendra Shinde
DVD X Player 4.1 Professional - Stack-Based Buffer Overflow via PLF Playlist Filename
Stack-based buffer overflow in DVD X Player 4.1 Professional allows remote attackers to execute arbitrary code via a PLF playlist containing a long filename.
by Metasploit
WordPress Plugin SearchAutocomplete 1.0.8 - SQL Injection
by Miroslav Stampar
WordPress Plugin Donation 1.0 - SQL Injection
by Miroslav Stampar
WordPress Plugin Bannerize 2.8.6 - SQL Injection
by Miroslav Stampar
Linux Kernel < 3.1 - Denial of Service via Performance Events Subsystem
The Performance Events subsystem in the Linux kernel before 3.1 does not properly handle event overflows associated with PERF_COUNT_SW_CPU_CLOCK events, which allows local users to cause a denial of service (system hang) via a crafted application.
by Vince Weaver
CVSS 5.5
Citrix Access Gateway Enterprise Edition 8.1-67.7 9.0-70.5 9.1-96.4 - Remote Code Execution via Crafted HTTP Header Data
Stack-based buffer overflow in the NSEPA.NsepaCtrl.1 ActiveX control in nsepa.ocx in Citrix Access Gateway Enterprise Edition 8.1 before 8.1-67.7, 9.0 before 9.0-70.5, and 9.1 before 9.1-96.4 allows remote attackers to execute arbitrary code via crafted HTTP header data.
by Metasploit
WordPress Plugin image Gallery with Slideshow 1.5 - Multiple Vulnerabilities
by Hrvoje Spoljar
WordPress Plugin grapefile 1.1 - Arbitrary File Upload
by Hrvoje Spoljar
Web Professional - 'default.php' SQL Injection
by The_Exploited
TinyWebGallery 1.8.4 - Local File Inclusion / SQL Injection
by KedAns-Dz
S9Y Serendipity 1.5.1 - 'research_display.php' SQL Injection
by The_Exploited
DVD X Player 5.5.0 Professional / Standard - '.plf' File Universal (ASLR + DEP Bypass)
by sickness
MapServer < 6.0.1 - Use-After-Free in msAddImageSymbol
Double free vulnerability in the msAddImageSymbol function in mapsymbol.c in MapServer before 6.0.1 might allow remote attackers to cause a denial of service (application crash) or have unspecified other impact via crafted mapfile data.
by rouault
WordPress Plugin yolink Search 1.1.4 - SQL Injection
by Miroslav Stampar
WordPress Plugin PureHTML 1.0.0 - SQL Injection
by Miroslav Stampar
WordPress Plugin Event Registration 5.4.3 - SQL Injection
by Miroslav Stampar
WordPress Plugin Crawl Rate Tracker 2.0.2 - SQL Injection
by Miroslav Stampar
WordPress Plugin Couponer 1.2 - SQL Injection
by Miroslav Stampar
By Source