Exploitdb Exploits
50,095 exploits tracked across all sources.
HOMEPIMA Design - 'filedown.php' Local File Disclosure
by KnocKout
Gelsheet 1.02 - 'index.php' Cross-Site Scripting
by AutoSec Tools
Exponent CMS 2.0.0 Beta 1.1 - Local File Inclusion / Arbitrary File Upload
by AutoSec Tools
encoder 0.4.10 - 'edit.php' Cross-Site Scripting
by AutoSec Tools
Ampache 3.5.4 - 'login.php' Cross-Site Scripting
by AutoSec Tools
Imperva SecureSphere - SQL Query Filter Security Bypass
by @drk1wi
Keyfax Customer Response Management 3.2.2.6 - Multiple Cross-Site Scripting Vulnerabilities
by Richard Brain
FestOS 2.3c - 'upload.php' Arbitrary File Upload
by KedAns-Dz
Getsimple CMS 3.0 - 'set' Local File Inclusion
by AutoSec Tools
VCalendar 1.1.5 - Cross-Site Request Forgery
by High-Tech Bridge SA
PHPDug 2.0.0 - Multiple Vulnerabilities
by High-Tech Bridge SA
WordPress Plugin WP Ajax Calendar 1.0 - 'example.php' Cross-Site Scripting
by High-Tech Bridge SA
PHPDug 2.0 - Multiple Cross-Site Scripting Vulnerabilities
by High-Tech Bridge SA
PHP Directory Listing Script 3.1 - 'index.php' Cross-Site Scripting
by High-Tech Bridge SA
BMC Remedy Knowledge Management 7.5.00 - Default Account / Multiple Cross-Site Scripting Vulnerabilities
by Richard Brain
BMC Dashboards 7.6.01 - Cross-Site Scripting / Information Disclosure
by Richard Brain
SPlayer < 3.7 (Build 2055) - Stack-Based Buffer Overflow via HTTP Content-Type Header
SPlayer version 3.7 and earlier is vulnerable to a stack-based buffer overflow when processing HTTP responses containing an overly long Content-Type header. The vulnerability occurs due to improper bounds checking on the header value, allowing an attacker to overwrite the Structured Exception Handler (SEH) and execute arbitrary code. Exploitation requires the victim to open a media file that triggers an HTTP request to a malicious server, which responds with a crafted Content-Type header.
by xsploitedsec
sipdroid 2.2 - SIP INVITE Response User Enumeration
by Anibal Vaz Marques
ZyWALL USG Appliance - Multiple Vulnerabilities
by RedTeam Pentesting
ICONICS BizViz <9.22, GENESIS32 <9.22 - RCE
Stack-based buffer overflow in the SetActiveXGUID method in the VersionInfo ActiveX control in GenVersion.dll 8.0.138.0 in the WebHMI subsystem in ICONICS BizViz 9.x before 9.22 and GENESIS32 9.x before 9.22 allows remote attackers to execute arbitrary code via a long string in the argument. NOTE: some of these details are obtained from third party information.
by sgb & bls
By Source