Exploitdb Exploits
50,095 exploits tracked across all sources.
RealNetworks RealPlayer <14.0.2 - RCE
Heap-based buffer overflow in rvrender.dll in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.2, and RealPlayer SP 1.0 through 1.1.5, allows remote attackers to execute arbitrary code via a crafted frame in an Internet Video Recording (IVR) file.
by Luigi Auriemma
PluggedOut Blog 1.9.9 - 'year' Cross-Site Scripting
by kurdish hackers team
Online store PHP script - Multiple Cross-Site Scripting / SQL Injections
by kurdish hackers team
Newsportal 0.37 - 'post.php' Cross-Site Scripting
by kurdish hackers team
Apple Mac OS X <10.6.7 - Info Disclosure
Integer overflow in HFS in Apple Mac OS X before 10.6.7 allows local users to read arbitrary (1) HFS, (2) HFS+, or (3) HFS+J files via a crafted F_READBOOTSTRAP ioctl call.
by Dan Rosenberg
Novell NetWare - Stack-based Buffer Overflow via DELE Command
Stack-based buffer overflow in NWFTPD.NLM before 5.10.02 in the FTP server in Novell NetWare allows remote authenticated users to execute arbitrary code or cause a denial of service (abend) via a long DELE command, a different vulnerability than CVE-2010-0625.4.
by Francis Provencher
Element-IT PowUpload 1.3 - Arbitrary File Upload
by Daniel Godoy
MPlayer Lite r33064 - Buffer Overflow
A stack-based buffer overflow vulnerability exists in MPlayer Lite r33064 due to improper bounds checking when handling M3U playlist files containing long http:// URL entries. An attacker can craft a malicious .m3u file with a specially formatted URL that triggers a stack overflow when processed by the player, particularly via drag-and-drop interaction. This flaw allows for control of the execution flow through SEH overwrite and a DEP bypass using a ROP chain that leverages known gadgets in loaded DLLs. Successful exploitation may result in arbitrary code execution with the privileges of the current user.
by C4SS!0 & h1ch4m
Mediacoder 2011 RC3 - '.m3u' Local Buffer Overflow
by Oh Yaw Theng
Douran Portal 3.9.7.8 - Info Disclosure
download.aspx in Douran Portal 3.9.7.8 allows remote attackers to obtain source code of arbitrary files under the web root via (1) a trailing ".", (2) a trailing space, or (3) mixed case in the FileNameAttach parameter.
by AJAX Security Team
CORE MultiMedia Suite 2011 CORE Player 2.4 - '.m3u' Local Buffer Overflow
by Rh0
XOOPS 2.x - Multiple Cross-Site Scripting Vulnerabilities
by Aung Khant
By Source