Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-104884 EXPLOITDB text
ab Web CMS 1.35 - Multiple Vulnerabilities
by Dr.0rYX & Cr3W-DZ
CVE-2011-0902 EXPLOITDB text
Sun Microsystems SunScreen Firewall <5.9 - RCE
Multiple untrusted search path vulnerabilities in the Java Service in Sun Microsystems SunScreen Firewall on SunOS 5.9 allow local users to execute arbitrary code via a modified (1) PATH or (2) LD_LIBRARY_PATH environment variable.
by kingcope
EIP-2026-104019 EXPLOITDB perl VERIFIED
Opera Web Browser 11.00 - 'option' HTML Element Integer Overflow
by C4SS!0 G0M3S
CVE-2011-0678 EXPLOITDB text VERIFIED
Lomtec ActiveWeb Professional 3.0 - Unauthenticated Arbitrary File Upload via EasyEdit Module
Unrestricted file upload vulnerability in the EasyEdit module in Lomtec ActiveWeb Professional 3.0 allows remote attackers to execute arbitrary code by uploading an executable file via the UploadDirectory and Accepted Extensions fields in the getImagefile component of EasyEdit.cfm.
by StenoPlasma
CVE-2008-5416 EXPLOITDB ruby VERIFIED
Microsoft SQL Server <9.00.1399.06 - Buffer Overflow
Heap-based buffer overflow in Microsoft SQL Server 2000 SP4, 8.00.2050, 8.00.2039, and earlier; SQL Server 2000 Desktop Engine (MSDE 2000) SP4; SQL Server 2005 SP2 and 9.00.1399.06; SQL Server 2000 Desktop Engine (WMSDE) on Windows Server 2003 SP1 and SP2; and Windows Internal Database (WYukon) SP2 allows remote authenticated users to cause a denial of service (access violation exception) or execute arbitrary code by calling the sp_replwritetovarbin extended stored procedure with a set of invalid parameters that trigger memory overwrite, aka "SQL Server sp_replwritetovarbin Limited Memory Overwrite Vulnerability."
by Metasploit
EIP-2026-117490 EXPLOITDB text VERIFIED
Microsoft Fax - Cover Page Editor 5.2.3790.3959 Double-Free Memory Corruption
by Luigi Auriemma
EIP-2026-115435 EXPLOITDB python VERIFIED
Inetserv 3.23 POP3 - Denial of Service
by dmnt
EIP-2026-114150 EXPLOITDB text VERIFIED
WordPress Plugin Uploader 1.0 - 'num' Cross-Site Scripting
by AutoSec Tools
EIP-2026-113978 EXPLOITDB text VERIFIED
WordPress Plugin Powerhouse Museum Collection Image Grid 0.9.1.1 - 'tbpv_username' Cross-Site Scripting
by AutoSec Tools
EIP-2026-113942 EXPLOITDB text VERIFIED
WordPress Plugin oQey-Gallery 0.2 - 'tbpv_domain' Cross-Site Scripting
by AutoSec Tools
EIP-2026-113740 EXPLOITDB text VERIFIED
WordPress Plugin Feature Slideshow 1.0.6 - 'src' Cross-Site Scripting
by AutoSec Tools
EIP-2026-108273 EXPLOITDB text
Joomla! Component com_b2portfolio 1.0.0 - Multiple SQL Injections
by Salvatore Fresta
EIP-2026-103967 EXPLOITDB php VERIFIED
libxml2 2.6.x - 'XMLWriter::writeAttribute()' Memory Leak Information Disclosure
by Kees Cook
CVE-2006-6576 EXPLOITDB ruby VERIFIED
Golden FTP Server <1.92 - Buffer Overflow
Heap-based buffer overflow in Golden FTP Server (goldenftpd) 1.92 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a long PASS command. NOTE: it was later reported that 4.70 is also affected. NOTE: the USER vector is already covered by CVE-2005-0634.
by cd1zz & iglesiasgg
EIP-2026-115434 EXPLOITDB python VERIFIED
Inetserv 3.23 - SMTP Denial of Service
by G13
EIP-2026-114231 EXPLOITDB text VERIFIED
WordPress Plugin WP Publication Archive 2.0.1 - 'file' Information Disclosure
by AutoSec Tools
EIP-2026-114216 EXPLOITDB text VERIFIED
WordPress Plugin WP Featured Post with Thumbnail 3.0 - 'src' Cross-Site Scripting
by AutoSec Tools
CVE-2011-0740 EXPLOITDB text VERIFIED
RSS Feed Reader 0.1 for WordPress - Cross-Site Scripting via rss_url Parameter
Cross-site scripting (XSS) vulnerability in magpie/scripts/magpie_slashbox.php in RSS Feed Reader 0.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the rss_url parameter.
by AutoSec Tools
EIP-2026-113573 EXPLOITDB text VERIFIED
WordPress Plugin Audio 0.5.1 - 'showfile' Cross-Site Scripting
by AutoSec Tools
CVE-2011-0643 EXPLOITDB html
PHP Link Directory 4.1.0 - Cross-Site Request Forgery via User Configuration
Cross-site request forgery (CSRF) vulnerability in admin/conf_users_edit.php in PHP Link Directory (phpLD) 4.1.0 allows remote attackers to hijack the authentication of administrators for requests that add an administrator via the N action.
by AtT4CKxT3rR0r1ST
EIP-2026-110674 EXPLOITDB text VERIFIED
PHP Coupon Script 6.0 - 'bus' Blind SQL Injection
by h4ck3r
EIP-2026-111012 EXPLOITDB text VERIFIED
phpCMS 9.0 - Blind SQL Injection
by eidelweiss
EIP-2026-106275 EXPLOITDB text
cultbooking 2.0.4 - Multiple Vulnerabilities
by LiquidWorm
CVE-2010-3563 EXPLOITDB ruby VERIFIED
Oracle Java SE/Jav for Bus <6 Update 21 - Info Disclosure
Unspecified vulnerability in the Deployment component in Oracle Java SE and Java for Business 6 Update 21 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the October 2010 CPU. Oracle has not commented on claims from a reliable researcher that this is related to "how Web Start retrieves security policies," BasicServiceImpl, and forged policies that bypass sandbox restrictions.
by Metasploit
CVE-2008-4250 EXPLOITDB CRITICAL ruby VERIFIED
Microsoft Windows Server Service - Remote Code Execution via Crafted RPC Request
The Server service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, and 7 Pre-Beta allows remote attackers to execute arbitrary code via a crafted RPC request that triggers the overflow during path canonicalization, as exploited in the wild by Gimmiv.A in October 2008, aka "Server Service Vulnerability."
by Metasploit
CVSS 9.8