Exploitdb Exploits
50,095 exploits tracked across all sources.
LeadTools Imaging LEADSmtp - ActiveX Control 'SaveMessage()' Insecure Method
by High-Tech Bridge SA
IBM Web Application Firewall - Bypass
by Trustwave's SpiderLabs
FreeAmp 2.0.7 - '.fat' Local Buffer Overflow
by Iván García Ferreira
Sitemagic CMS - 'SMTpl' Directory Traversal
by Andrea Bocchetti
Nodesforum - '_nodesforum_node' SQL Injection
by Andrea Bocchetti
BrewBlogger 2.3.2 - Multiple Vulnerabilities
by Brendan Coles
2Point Solutions - 'cmspages.php' SQL Injection
by Newbie Campuz
ManageEngine ServiceDesk Plus <= 8.0.0.12 - Path Traversal via FileDownload.jsp FILENAME Parameter
Directory traversal vulnerability in FileDownload.jsp in ManageEngine ServiceDesk Plus 8.0.0.12 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the FILENAME parameter. NOTE: this might overlap the US-CERT VU#543310 issue.
by xistence
ManageEngine ServiceDesk Plus <= 8.0.0.12 - Path Traversal via FileDownload.jsp FILENAME Parameter
Directory traversal vulnerability in FileDownload.jsp in ManageEngine ServiceDesk Plus 8.0.0.12 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the FILENAME parameter. NOTE: this might overlap the US-CERT VU#543310 issue.
by Keith Lee
RealWin SCADA Server - DATAC Login Buffer Overflow (Metasploit)
by Metasploit
Easewe FTP OCX ActiveX Control 4.5.0.9 - 'EaseWeFtp.ocx' Multiple Insecure Method Vulnerabilities
by High-Tech Bridge SA
FanUpdate 3.0 - 'pageTitle' Cross-Site Scripting
by High-Tech Bridge SA
Cachelogic Expired Domains Script 1.0 - Multiple Vulnerabilities
by Brendan Coles
Sielco Sistemi Winlog Pro < 2.07.00 - Remote Code Execution via Crafted 0x02 Opcode
Stack-based buffer overflow in Sielco Sistemi Winlog Pro 2.07.00 and earlier, when Run TCP/IP server is enabled, allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a crafted 0x02 opcode to TCP port 46823.
by Metasploit
FactoryLink - 'vrn.exe' Opcode 9 Buffer Overflow (Metasploit)
by Metasploit
Black Ice Barcode SDK - Arbitrary File Write via BIDIB.BIDIBCtrl.1 DownloadImageFileURL Method
The BIDIB.BIDIBCtrl.1 ActiveX control in BIDIB.ocx 10.9.3.0 in Black Ice Barcode SDK 5.01 allows remote attackers to force the download and storage of arbitrary files by specifying the origin URL in the first argument to the DownloadImageFileURL method, and the local filename in the second argument. NOTE: some of these details are obtained from third party information.
by Metasploit
Sitemagic CMS 2010.04.17 - 'SMExt' Cross-Site Scripting
by Gjoko Krstic
By Source