Exploitdb Exploits
50,095 exploits tracked across all sources.
Cisco Linksys WAG120N - Cross-Site Request Forgery
by Khashayar Fereidani
Edraw Office Viewer Component 7.4 - ActiveX Stack Buffer Overflow
by Alexander Gavrun
Pragyan CMS 3.0 - Multiple Vulnerabilities
by Villy & Abhishek Lyall
Joomla! Component com_xcloner-backupandrestore - Remote Command Execution
by mr_me
GNU C Library < 2.12.2 and Embedded GLIBC - Remote Code Execution via Long UTF8 String in fnmatch
The GNU C Library (aka glibc or libc6) before 2.12.2 and Embedded GLIBC (EGLIBC) allow context-dependent attackers to execute arbitrary code or cause a denial of service (memory consumption) via a long UTF8 string that is used in an fnmatch call, aka a "stack extension attack," a related issue to CVE-2010-2898, CVE-2010-1917, and CVE-2007-4782, as originally reported for use of this library by Google Chrome.
by Simon Berry-Byrne
Victory FTP Server 5.0 - Denial of Service
by C4SS!0 G0M3S
Elecard MPEG Player 5.7 - Local Buffer Overflow (PoC) (SEH)
by badc0re
WordPress Plugin Relevanssi 2.7.2 - Persistent Cross-Site Scripting
by Saif El-Sherei
WordPress Plugin IWantOneButton 3.0.1 - Multiple Vulnerabilities
by High-Tech Bridge SA
WordPress Plugin GigPress 2.1.10 - Persistent Cross-Site Scripting
by Saif El-Sherei
VastHTML Forum Server 1.6.1 and 1.6.5 - SQL Injection via Search Max Parameter
Multiple SQL injection vulnerabilities in VastHTML Forum Server (aka ForumPress) plugin 1.6.1 and 1.6.5 for WordPress allow remote attackers to execute arbitrary SQL commands via the (1) search_max parameter in a search action to index.php, which is not properly handled by wpf.class.php, (2) id parameter in an editpost action to index.php, which is not properly handled by wpf-post.php, or (3) topic parameter to feed.php.
by High-Tech Bridge SA
Novell Netware < 6.5 SP8 - Remote Code Execution via Crafted NFS RPC Request
The xdrDecodeString function in XNFS.NLM in Novell Netware 6.5 before SP8 allows remote attackers to cause a denial of service (abend) or execute arbitrary code via a crafted, signed value in a NFS RPC request to port UDP 1234, leading to a stack-based buffer overflow.
by Francis Provencher
Logwatch 7.3.6 - Remote Code Execution via Shell Metacharacters in Log File Name
logwatch.pl in Logwatch 7.3.6 allows remote attackers to execute arbitrary commands via shell metacharacters in a log file name, as demonstrated via a crafted username to a Samba server.
by Dominik George
iOS Share 1.0 - Directory Traversal
by R3d@l3rt_ Sp@2K_ Sunlight
iOS myDBLite 1.1.10 - Directory Traversal
by R3d@l3rt_ Sp@2K_ Sunlight
iOS iDocManager 1.0.0 - Directory Traversal
by R3d@l3rt_ Sp@2K_ Sunlight
iSO Filer Lite 2.1.0 - Directory Traversal
by R3d@l3rt_ Sp@2K_ Sunlight
iphone pdf reader pro 2.3 - Directory Traversal
by Khashayar Fereidani
By Source