Exploitdb Exploits
50,095 exploits tracked across all sources.
Distributed Ruby <1.8 - Code Injection
Distributed Ruby (aka DRuby) 1.8 mishandles instance_eval.
by Metasploit
CVSS 9.8
FLVPlayer4Free 2.9 - '.fp4f' Remote Buffer Overflow
by KedAns-Dz
eXPert PDF Batch Creator 7.0.880.0 - Denial of Service
by KedAns-Dz
DivX Player 7 - Multiple Remote Buffer Overflow Vulnerabilities
by KedAns-Dz
webEdition CMS 6.1.0.2 - Multiple Vulnerabilities
by AutoSec Tools
OrangeHRM 2.6.2 - 'jobVacancy.php' Cross-Site Scripting
by AutoSec Tools
Cetera eCommerce - Multiple Cross-Site Scripting / SQL Injections
by MustLive
VideoLAN VLC Media Player <1.1.8 - RCE
libdirectx_plugin.dll in VideoLAN VLC Media Player before 1.1.8 allows remote attackers to execute arbitrary code via a crafted width in an AMV file, related to a "dangling pointer vulnerability."
by Metasploit
Family Connections CMS 2.3.2 - Persistent Cross-Site Scripting / XML Injection
by LiquidWorm
HP OpenView Network Node Manager <7.53 - Buffer Overflow
Stack-based buffer overflow in getnnmdata.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via an invalid Hostname parameter.
by Metasploit
Family Connections 2.3.2 - 'subject' HTML Injection
by Zero Science Lab
HP OpenView Network Node Manager 7.51, 7.53 - Remote Code Execution via Long schdParams or nameParams
Multiple buffer overflows in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allow remote attackers to execute arbitrary code via a long (1) schdParams or (2) nameParams parameter, a different vulnerability than CVE-2011-0266.
by Metasploit
HP OpenView Network Node Manager <7.53 - Buffer Overflow
Stack-based buffer overflow in getnnmdata.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via an invalid MaxAge parameter.
by Metasploit
HP OpenView Network Node Manager <7.53 - Buffer Overflow
Stack-based buffer overflow in getnnmdata.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via an invalid iCount parameter.
by Metasploit
Avaya IP Office Manager 8.1 TFTP - Denial of Service
by Craig Freyman
SyndeoCMS 2.8.02 - Multiple Vulnerabilities (2)
by High-Tech Bridge SA
Ripe Website Manager 1.1 - Cross-Site Scripting / Multiple SQL Injections
by High-Tech Bridge SA
netjukebox 4.01B/5.25 - 'skin' Cross-Site Scripting
by AutoSec Tools
MC Content Manager 10.1.1 - Multiple Cross-Site Scripting Vulnerabilities
by MustLive
GrapeCity Data Dynamics Reports 1.6.2084.14 - Multiple Cross-Site Scripting Vulnerabilities
by Dionach
Distributed Ruby <1.8 - Buffer Overflow
Distributed Ruby (aka DRuby) 1.8 mishandles the sending of syscalls.
by Metasploit
CVSS 9.8
Symantec LiveUpdate Administrator < 2.3 - Cross-Site Request Forgery via adduser.do
Cross-site request forgery (CSRF) vulnerability in adduser.do in Symantec LiveUpdate Administrator (LUA) before 2.3 allows remote attackers to hijack the authentication of administrators for requests that create new administrative accounts, and possibly have unspecified other impact, via the userRole parameter.
by Nikolas Sotiriu
By Source