Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
CVE-2011-1524 EXPLOITDB text
Symantec LiveUpdate Administrator <2.3 - XSS
Cross-site scripting (XSS) vulnerability in the management login GUI page in Symantec LiveUpdate Administrator (LUA) before 2.3 allows remote attackers to inject arbitrary web script or HTML via the username field, as demonstrated by injecting an IFRAME element into the event log, a different vulnerability than CVE-2011-0545.
by Nikolas Sotiriu
CVE-2011-2963 EXPLOITDB python VERIFIED
Progea Movicon 11.2 - Unauthenticated Remote Code Execution and Denial of Service via TCP Port 10651
TCPUploadServer.exe in Progea Movicon 11.2 before Build 1084 does not require authentication for critical functions, which allows remote attackers to obtain sensitive information, delete files, execute arbitrary programs, or cause a denial of service (crash) via a crafted packet to TCP port 10651.
by Jeremy Brown
CVE-2011-0266 EXPLOITDB ruby VERIFIED
HP OpenView Network Node Manager 7.51 and 7.53 - Buffer Overflow via Long nameParams Parameter
Buffer overflow in nnmRptConfig.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long nameParams parameter, a different vulnerability than CVE-2011-0267.2.
by Metasploit
CVE-2010-1552 EXPLOITDB ruby VERIFIED
HP OpenView Network Node Manager <7.53 - Buffer Overflow
Stack-based buffer overflow in the doLoad function in snmpviewer.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via the act and app parameters.
by Metasploit
CVE-2010-1960 EXPLOITDB ruby VERIFIED
HP OpenView Network Node Manager 7.51 and 7.53 - Remote Code Execution via Long Invalid Option to jovgraph.exe
Buffer overflow in the error handling functionality in ovwebsnmpsrv.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long, invalid option to jovgraph.exe.
by Metasploit
CVE-2010-1961 EXPLOITDB ruby VERIFIED
HP OpenView Network Node Manager ovwebsnmpsrv.exe main Buffer Overflow
Buffer overflow in ovutil.dll in ovwebsnmpsrv.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via unspecified variables to jovgraph.exe, which are not properly handled in a call to the sprintf function.
by Metasploit
CVE-2010-1964 EXPLOITDB ruby VERIFIED
HP OpenView Network Node Manager ovwebsnmpsrv.exe ovutil Buffer Overflow
Buffer overflow in ovwebsnmpsrv.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via unspecified parameters to jovgraph.exe, aka ZDI-CAN-683.
by Metasploit
CVE-2010-2709 EXPLOITDB ruby VERIFIED
HP OpenView Network Node Manager <7.53 - Buffer Overflow
Stack-based buffer overflow in webappmon.exe in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53 allows remote attackers to execute arbitrary code via a long OvJavaLocale value in a cookie.
by Metasploit
CVE-2010-2703 EXPLOITDB ruby VERIFIED
HP OpenView Network Node Manager <7.53 - Buffer Overflow
Stack-based buffer overflow in the execvp_nc function in the ov.dll module in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53, when running on Windows, allows remote attackers to execute arbitrary code via a long HTTP request to webappmon.exe.
by Metasploit
CVE-2011-0609 EXPLOITDB HIGH ruby VERIFIED
Adobe Flash Player AVM Bytecode Verification Vulnerability
Unspecified vulnerability in Adobe Flash Player 10.2.154.13 and earlier on Windows, Mac OS X, Linux, and Solaris; 10.1.106.16 and earlier on Android; Adobe AIR 2.5.1 and earlier; and Authplay.dll (aka AuthPlayLib.bundle) in Adobe Reader and Acrobat 9.x through 9.4.2 and 10.x through 10.0.1 on Windows and Mac OS X, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted Flash content, as demonstrated by a .swf file embedded in an Excel spreadsheet, and as exploited in the wild in March 2011.
by Metasploit
CVSS 7.8
EIP-2026-116504 EXPLOITDB text VERIFIED
VMCPlayer 1.0 - Denial of Service
by BraniX
EIP-2026-115427 EXPLOITDB python VERIFIED
IGSS 8 ODBC Server - Multiple Remote Uninitialized Pointer Free Denial of Service Vulnerabilities
by Jeremy Brown
EIP-2026-106135 EXPLOITDB perl
Constructr CMS 3.03 - Arbitrary File Upload
by plucky
CVE-2011-4041 EXPLOITDB text VERIFIED
Advantech/BroadWin WebAccess - Remote Code Execution via Long String in RPC Request
webvrpcs.exe in Advantech/BroadWin WebAccess allows remote attackers to execute arbitrary code or obtain a security-code value via a long string in an RPC request to TCP port 4592.
by Ruben Santamarta
CVE-2010-4777 EXPLOITDB perl VERIFIED
Perl - Denial of Service via Crafted Regular Expression Input
The Perl_reg_numbered_buff_fetch function in Perl 5.10.0, 5.12.0, 5.14.0, and other versions, when running with debugging enabled, allows context-dependent attackers to cause a denial of service (assertion failure and application exit) via crafted input that is not properly handled when using certain regular expressions, as demonstrated by causing SpamAssassin and OCSInventory to crash.
by Vladimir Perepelitsa
EIP-2026-100622 EXPLOITDB text VERIFIED
Web Wiz Forums 9.5 - Multiple SQL Injections
by eXeSoul
EIP-2026-100616 EXPLOITDB text VERIFIED
Web Wiz Forum - Injection
by eXeSoul
CVE-2011-1567 EXPLOITDB text
IGSSdataServer.exe <9.00.00.11063 - Buffer Overflow
Multiple stack-based buffer overflows in IGSSdataServer.exe 9.00.00.11063 and earlier in 7-Technologies Interactive Graphical SCADA System (IGSS) allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted (1) ListAll, (2) Write File, (3) ReadFile, (4) Delete, (5) RenameFile, and (6) FileInfo commands in an 0xd opcode; (7) the Add, (8) ReadFile, (9) Write File, (10) Rename, (11) Delete, and (12) Add commands in an RMS report templates (0x7) opcode; and (13) 0x4 command in an STDREP request (0x8) opcode to TCP port 12401.
by Luigi Auriemma
CVE-2011-1566 EXPLOITDB text
7-Technologies IGSS <9.00.00.11059 - Path Traversal
Directory traversal vulnerability in dc.exe 9.00.00.11059 and earlier in 7-Technologies Interactive Graphical SCADA System (IGSS) allows remote attackers to execute arbitrary programs via ..\ (dot dot backslash) sequences in opcodes (1) 0xa and (2) 0x17 to TCP port 12397.
by Luigi Auriemma
CVE-2011-1565 EXPLOITDB text
7-Technologies IGSS <9.00.00.11063 - Path Traversal
Directory traversal vulnerability in IGSSdataServer.exe 9.00.00.11063 and earlier in 7-Technologies Interactive Graphical SCADA System (IGSS) allows remote attackers to (1) read (opcode 0x3) or (2) create or write (opcode 0x2) arbitrary files via ..\ (dot dot backslash) sequences to TCP port 12401.
by Luigi Auriemma
CVE-2011-1563 EXPLOITDB text
DATAC RealFlex RealWin <2.1 Build 6.1.10.10 - Buffer Overflow
Multiple stack-based buffer overflows in the HMI application in DATAC RealFlex RealWin 2.1 (Build 6.1.10.10) and earlier allow remote attackers to execute arbitrary code via (1) a long username in an On_FC_CONNECT_FCS_LOGIN packet, and crafted (2) On_FC_CTAGLIST_FCS_CADDTAG, (3) On_FC_CTAGLIST_FCS_CDELTAG, (4) On_FC_CTAGLIST_FCS_ADDTAGMS, (5) On_FC_RFUSER_FCS_LOGIN, (6) unspecified "On_FC_BINFILE_FCS_*FILE", (7) On_FC_CGETTAG_FCS_GETTELEMETRY, (8) On_FC_CGETTAG_FCS_GETCHANNELTELEMETRY, (9) On_FC_CGETTAG_FCS_SETTELEMETRY, (10) On_FC_CGETTAG_FCS_SETCHANNELTELEMETRY, and (11) On_FC_SCRIPT_FCS_STARTPROG packets to port 910.
by Luigi Auriemma
EIP-2026-119134 EXPLOITDB text VERIFIED
siemens tecnomatix factorylink 8.0.1.1473 - Multiple Vulnerabilities
by Luigi Auriemma
CVE-2011-1568 EXPLOITDB text
7-Technologies IGSS <9.00.00.11074 - RCE
Format string vulnerability in the logText function in shmemmgr9.dll in IGSSdataServer.exe 9.00.00.11074, and 9.00.00.11063 and earlier, in 7-Technologies Interactive Graphical SCADA System (IGSS) allows remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated using the RMS Reports Delete command, related to the logging of messages to GSST.LOG. NOTE: some of these details are obtained from third party information.
by Luigi Auriemma
EIP-2026-115423 EXPLOITDB text
iconics genesis32 and genesis64 - Multiple Vulnerabilities
by Luigi Auriemma
CVE-2011-1564 EXPLOITDB text
DATAC RealFlex RealWin <2.1 Build 6.1.10.10 - RCE
Multiple integer overflows in the HMI application in DATAC RealFlex RealWin 2.1 (Build 6.1.10.10) and earlier allow remote attackers to execute arbitrary code via crafted (1) On_FC_MISC_FCS_MSGBROADCAST and (2) On_FC_MISC_FCS_MSGSEND packets, which trigger a heap-based buffer overflow.
by Luigi Auriemma