Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-116291 EXPLOITDB python VERIFIED
SpoonFTP 1.2 - RETR Denial of Service
by C4SS!0 G0M3S
CVE-2011-1525 EXPLOITDB text
RealNetworks RealPlayer <14.0.2 - RCE
Heap-based buffer overflow in rvrender.dll in RealNetworks RealPlayer 11.0 through 11.1 and 14.0.0 through 14.0.2, and RealPlayer SP 1.0 through 1.1.5, allows remote attackers to execute arbitrary code via a crafted frame in an Internet Video Recording (IVR) file.
by Luigi Auriemma
EIP-2026-112019 EXPLOITDB text VERIFIED
Shimbi CMS - Multiple SQL Injections
by p0pc0rn
EIP-2026-111362 EXPLOITDB text VERIFIED
PluggedOut Blog 1.9.9 - 'year' Cross-Site Scripting
by kurdish hackers team
EIP-2026-110183 EXPLOITDB text VERIFIED
Online store PHP script - Multiple Cross-Site Scripting / SQL Injections
by kurdish hackers team
EIP-2026-109928 EXPLOITDB text VERIFIED
Newsportal 0.37 - 'post.php' Cross-Site Scripting
by kurdish hackers team
EIP-2026-105978 EXPLOITDB text
CMS Lokomedia 1.5 - Arbitrary File Upload
by eidelweiss
CVE-2011-0180 EXPLOITDB c VERIFIED
Apple Mac OS X <10.6.7 - Info Disclosure
Integer overflow in HFS in Apple Mac OS X before 10.6.7 allows local users to read arbitrary (1) HFS, (2) HFS+, or (3) HFS+J files via a crafted F_READBOOTSTRAP ioctl call.
by Dan Rosenberg
CVE-2010-4228 EXPLOITDB python VERIFIED
Novell NetWare - Stack-based Buffer Overflow via DELE Command
Stack-based buffer overflow in NWFTPD.NLM before 5.10.02 in the FTP server in Novell NetWare allows remote authenticated users to execute arbitrary code or cause a denial of service (abend) via a long DELE command, a different vulnerability than CVE-2010-0625.4.
by Francis Provencher
EIP-2026-100307 EXPLOITDB text VERIFIED
Element-IT PowUpload 1.3 - Arbitrary File Upload
by Daniel Godoy
EIP-2026-100295 EXPLOITDB text VERIFIED
EAFlashUpload 2.5 - Arbitrary File Upload
by Daniel Godoy
CVE-2011-10008 EXPLOITDB HIGH perl VERIFIED
MPlayer Lite r33064 - Buffer Overflow
A stack-based buffer overflow vulnerability exists in MPlayer Lite r33064 due to improper bounds checking when handling M3U playlist files containing long http:// URL entries. An attacker can craft a malicious .m3u file with a specially formatted URL that triggers a stack overflow when processed by the player, particularly via drag-and-drop interaction. This flaw allows for control of the execution flow through SEH overwrite and a DEP bypass using a ROP chain that leverages known gadgets in loaded DLLs. Successful exploitation may result in arbitrary code execution with the privileges of the current user.
by C4SS!0 & h1ch4m
EIP-2026-117469 EXPLOITDB python VERIFIED
Mediacoder 2011 RC3 - '.m3u' Local Buffer Overflow
by Oh Yaw Theng
CVE-2011-1569 EXPLOITDB text VERIFIED
Douran Portal 3.9.7.8 - Info Disclosure
download.aspx in Douran Portal 3.9.7.8 allows remote attackers to obtain source code of arbitrary files under the web root via (1) a trailing ".", (2) a trailing space, or (3) mixed case in the FileNameAttach parameter.
by AJAX Security Team
EIP-2026-113221 EXPLOITDB text VERIFIED
Web Poll Pro 1.0.3 - 'error' HTML Injection
by Hector.x90
EIP-2026-110998 EXPLOITDB text
Phpbuddies - Arbitrary File Upload
by Xr0b0t
EIP-2026-109019 EXPLOITDB text
Kleophatra 0.1.4 - Arbitrary File Upload
by Xr0b0t
EIP-2026-105960 EXPLOITDB text VERIFIED
CMS Balitbang 3.3 - Arbitrary File Upload
by eidelweiss
EIP-2026-105382 EXPLOITDB text VERIFIED
Balitbang CMS 3.3 - Multiple Vulnerabilities
by Xr0b0t
EIP-2026-117785 EXPLOITDB ruby
POP Peeper 3.7 - Local Overflow (SEH)
by Anastasios Monachos
EIP-2026-117002 EXPLOITDB perl VERIFIED
CORE MultiMedia Suite 2011 CORE Player 2.4 - '.m3u' Local Buffer Overflow
by Rh0
EIP-2026-114468 EXPLOITDB text VERIFIED
XOOPS 2.x - Multiple Cross-Site Scripting Vulnerabilities
by Aung Khant
EIP-2026-112805 EXPLOITDB text VERIFIED
Tugux CMS - 'nid' Blind SQL Injection
by eidelweiss
EIP-2026-107741 EXPLOITDB python VERIFIED
iCMS 1.1 - Admin SQL Injection / Brute Force
by TecR0c
EIP-2026-105976 EXPLOITDB text
CMS Loko Media - Local File Download
by Xr0b0t