Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-103423 EXPLOITDB text VERIFIED
Battlefield 2/2142 - Packet Null Pointer Dereference Remote Denial of Service
by Luigi Auriemma
EIP-2026-102208 EXPLOITDB text VERIFIED
iOS SideBooks 1.0 - Directory Traversal
by R3d@l3rt_ Sp@2K_ Sunlight
EIP-2026-102202 EXPLOITDB text VERIFIED
iOS FtpDisc 1.0 - Directory Traversal
by R3d@l3rt_ Sp@2K_ Sunlight
EIP-2026-100248 EXPLOITDB text VERIFIED
DIY Web CMS - Multiple Vulnerabilities
by p0pc0rn
EIP-2026-113461 EXPLOITDB text VERIFIED
Woltlab Burning Board 2.3.6 Addon - 'hilfsmittel.php' SQL Injection
by Crazyball
EIP-2026-105411 EXPLOITDB text VERIFIED
Batavi 1.0 - Multiple Local File Inclusion / Cross-Site Scripting Vulnerabilities
by AutoSec Tools
EIP-2026-103938 EXPLOITDB text VERIFIED
IBM Lotus Sametime - stconf.nsf Cross-Site Scripting
by Dave Daly
CVE-2011-1038 EXPLOITDB text VERIFIED
IBM Lotus Sametime 8.0.1 - Cross-Site Scripting via stconf.nsf Parameters
Multiple cross-site scripting (XSS) vulnerabilities in stconf.nsf in the server in IBM Lotus Sametime 8.0.1 allow remote attackers to inject arbitrary web script or HTML via (1) the messageString parameter in a WebMessage action or (2) the PATH_INFO.
by Dave Daly
EIP-2026-108033 EXPLOITDB python VERIFIED
JAKCMS 2.01 RC1 - Blind SQL Injection
by mr_me
EIP-2026-108032 EXPLOITDB python VERIFIED
JAKCMS 2.01 - Code Execution
by mr_me
EIP-2026-107751 EXPLOITDB text
Icy Phoenix 1.3.0.53a - HTTP Referer Persistent Cross-Site Scripting
by Saif El-Sherei
EIP-2026-114963 EXPLOITDB perl
Avira AntiVir - '.QUA' File 'avcenter.exe' Local Crash (PoC)
by KedAns-Dz
EIP-2026-107825 EXPLOITDB text VERIFIED
Independent Escort CMS - Blind SQL Injection
by NoNameMT
EIP-2026-106938 EXPLOITDB text
eventum issue tracking system 2.3.1 - Persistent Cross-Site Scripting
by Saif El-Sherei
EIP-2026-106906 EXPLOITDB text VERIFIED
Escort Directory CMS - SQL Injection
by NoNameMT
CVE-2010-4323 EXPLOITDB perl VERIFIED
Novell ZENworks Configuration Manager < 11.0 - Remote Code Execution via Long TFTP Request
Heap-based buffer overflow in novell-tftp.exe in Novell ZENworks Configuration Manager (ZCM) 10.3.1, 10.3.2, and 11.0, and earlier versions, allows remote attackers to execute arbitrary code via a long TFTP request.
by Francis Provencher
CVE-2011-0917 EXPLOITDB perl VERIFIED
IBM Lotus Domino - Remote Code Execution via LDAP Bind Operation
Buffer overflow in nLDAP.exe in IBM Lotus Domino allows remote attackers to execute arbitrary code via a long string in an LDAP Bind operation, aka SPR KLYH87LMVX.
by Francis Provencher
CVE-2011-1060 EXPLOITDB text VERIFIED
WSN Guest 1.24 - SQL Injection via wsnuser Cookie
SQL injection vulnerability in the member function in classes/member.php in WSN Guest 1.24 allows remote attackers to execute arbitrary SQL commands via the wsnuser cookie to index.php.
by Aliaksandr Hartsuyeu
CVE-2010-4328 EXPLOITDB perl VERIFIED
Novell iPrint Open Enterprise Server SP2-SP3 - Remote Code Execution via LPR Opcode Buffer Overflow
Multiple stack-based buffer overflows in opt/novell/iprint/bin/ipsmd in Novell iPrint for Linux Open Enterprise Server 2 SP2 and SP3 allow remote attackers to execute arbitrary code via unspecified LPR opcodes.
by Francis Provencher
CVE-2010-2729 EXPLOITDB ruby VERIFIED
Microsoft Windows Print Spooler - Arbitrary File Write and Remote Code Execution via Crafted RPC Print Request
The Print Spooler service in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7, when printer sharing is enabled, does not properly validate spooler access permissions, which allows remote attackers to create files in a system directory, and consequently execute arbitrary code, by sending a crafted print request over RPC, as exploited in the wild in September 2010, aka "Print Spooler Service Impersonation Vulnerability."
by Metasploit
CVE-2006-3439 EXPLOITDB ruby VERIFIED
Microsoft Windows <2003 - Buffer Overflow
Buffer overflow in the Server Service in Microsoft Windows 2000 SP4, XP SP1 and SP2, and Server 2003 SP1 allows remote attackers, including anonymous users, to execute arbitrary code via a crafted RPC message, a different vulnerability than CVE-2006-1314.
by Metasploit
EIP-2026-115018 EXPLOITDB python VERIFIED
BWMeter 5.4.0 - '.csv' Denial of Service
by b0telh0
CVE-2013-1916 EXPLOITDB HIGH text VERIFIED
WordPress User Photo Plugin 0.9.4 - Unrestricted File Upload
In WordPress Plugin User Photo 0.9.4, when a photo is uploaded, it is only partially validated and it is possible to upload a backdoor on the server hosting WordPress. This backdoor can be called (executed) even if the photo has not been yet approved.
by ADVtools
CVSS 8.8
EIP-2026-107354 EXPLOITDB text
GAzie 5.10 - 'Login' Multiple Vulnerabilities
by LiquidWorm
CVE-2011-0420 EXPLOITDB text VERIFIED
PHP 5.3.5 - Denial of Service via Invalid Size Argument in grapheme_extract
The grapheme_extract function in the Internationalization extension (Intl) for ICU for PHP 5.3.5 allows context-dependent attackers to cause a denial of service (crash) via an invalid size argument, which triggers a NULL pointer dereference.
by Maksymilian Arciemowicz