Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
CVE-2011-0443 EXPLOITDB text VERIFIED
tinybb 1.2 - SQL Injection via id Parameter in Profile Action
SQL injection vulnerability in inc/tinybb-settings.php in tinyBB 1.2, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the id parameter in a profile action to index.php. NOTE: some of these details are obtained from third party information.
by Aodrulez
EIP-2026-109361 EXPLOITDB text
Maximus CMS 1.1.2 - 'FCKeditor' Arbitrary File Upload
by eidelweiss
CVE-2011-0518 EXPLOITDB python VERIFIED
LotusCMS Fraise 3.0 - Path Traversal and Arbitrary Local File Inclusion via System Parameter
Directory traversal vulnerability in core/lib/router.php in LotusCMS Fraise 3.0, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via the system parameter to index.php.
by mr_me
CVE-2010-0738 EXPLOITDB MEDIUM ruby VERIFIED
JBoss JMX Console Deployer Upload and Execute
The JMX-Console web application in JBossAs in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.2 before 4.2.0.CP09 and 4.3 before 4.3.0.CP08 performs access control only for the GET and POST methods, which allows remote attackers to send requests to this application's GET handler by using a different method.
by Metasploit
CVSS 5.3
CVE-2011-0406 EXPLOITDB python VERIFIED
WellinTech KingView 6.53 - Remote Code Execution via Long TCP Request to Port 777
Heap-based buffer overflow in HistorySvr.exe in WellinTech KingView 6.53 allows remote attackers to execute arbitrary code via a long request to TCP port 777.
by Dillon Beresford
EIP-2026-115465 EXPLOITDB python VERIFIED
IrfanView 4.28 - Multiple Denial of Service Vulnerabilities
by BraniX
EIP-2026-108914 EXPLOITDB text VERIFIED
Joomla! Plugin Captcha 4.5.1 - Local File Disclosure
by dun
CVE-2010-4221 EXPLOITDB ruby VERIFIED
ProFTPD - Stack-Based Buffer Overflow via TELNET IAC Escape Character
Multiple stack-based buffer overflows in the pr_netio_telnet_gets function in netio.c in ProFTPD before 1.3.3c allow remote attackers to execute arbitrary code via vectors involving a TELNET IAC escape character to a (1) FTP or (2) FTPS server.
by Metasploit
CVE-2006-5815 EXPLOITDB ruby VERIFIED
ProFTPD < 1.3.0 - Stack-based Buffer Overflow in sreplace Function
Stack-based buffer overflow in the sreplace function in ProFTPD 1.3.0 and earlier allows remote attackers, probably authenticated, to cause a denial of service and execute arbitrary code, as demonstrated by vd_proftpd.pm, a "ProFTPD remote exploit."
by Metasploit
CVE-2010-3552 EXPLOITDB ruby VERIFIED
Oracle Java SE/Jav for Bus 6 - Info Disclosure
Unspecified vulnerability in the New Java Plug-in component in Oracle Java SE and Java for Business 6 Update 21 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.
by Metasploit
CVE-2001-0333 EXPLOITDB ruby VERIFIED
Internet Information Server < 5.0 - Directory Traversal via Double-Encoded Dot-Dot Sequences
Directory traversal vulnerability in IIS 5.0 and earlier allows remote attackers to execute arbitrary commands by encoding .. (dot dot) and "\" characters twice.
by Metasploit
CVE-2010-1799 EXPLOITDB ruby VERIFIED
Apple QuickTime - Stack-based Buffer Overflow via Crafted Movie File
Stack-based buffer overflow in the error-logging functionality in Apple QuickTime before 7.6.7 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file.
by Metasploit
EIP-2026-118105 EXPLOITDB python VERIFIED
Winamp 5.5.8 (in_mod plugin) - Local Stack Overflow (SEH)
by fdiskyou
CVE-2011-0500 EXPLOITDB python VERIFIED
VideoSpirit Lite and Pro <= 1.68 - Buffer Overflow via Project File valitem Attribute
Buffer overflow in VideoSpirit Pro 1.6.8.1, 1.68, and earlier; and VideoSpirit Lite 1.4.0.1 and possibly other versions; allows user-assisted remote attackers to execute arbitrary code via a VideoSpirit project (.visprj) file containing a valitem element with a long "value" attribute, as demonstrated using a valitem with the mp3 name.
by xsploitedsec
EIP-2026-117710 EXPLOITDB ruby VERIFIED
Nuance PDF Reader 6.0 - Launch Stack Buffer Overflow (Metasploit)
by Metasploit
CVE-2010-1818 EXPLOITDB ruby VERIFIED
Apple QuickTime - Remote Code Execution via Untrusted Pointer Unmarshalling
The IPersistPropertyBag2::Read function in QTPlugin.ocx in Apple QuickTime 6.x, 7.x before 7.6.8, and other versions allows remote attackers to execute arbitrary code via the _Marshaled_pUnk attribute, which triggers unmarshalling of an untrusted pointer.
by Metasploit
CVE-2011-0514 EXPLOITDB perl VERIFIED
HP Data Protector Manager 6.11 - Denial of Service via Large Data Packet to RDS Service
The RDS service (rds.exe) in HP Data Protector Manager 6.11 allows remote attackers to cause a denial of service (crash) via a packet with a large data size to TCP port 1530.
by Pepelux
CVE-2011-0505 EXPLOITDB text
Zwii 2.1.1 - Remote File Inclusion via set[template][value] Parameter
Directory traversal vulnerability in system/system.php in Zwii 2.1.1, when magic_quotes_gpc is disabled and register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the set[template][value] parameter.
by Abdi Mohamed
EIP-2026-113893 EXPLOITDB text VERIFIED
WordPress Plugin mingle forum 1.0.26 - Multiple Vulnerabilities
by Charles Hooper
EIP-2026-111873 EXPLOITDB text VERIFIED
sahana agasti 0.6.5 - Multiple Vulnerabilities
by dun
EIP-2026-108921 EXPLOITDB text VERIFIED
Joostina 1.3 - 'index.php' Cross-Site Scripting
by MustLive
CVE-2008-6825 EXPLOITDB ruby VERIFIED
trixbox < 2.6.1 - Remote File Inclusion via langChoice Parameter
Directory traversal vulnerability in user/index.php in Fonality trixbox CE 2.6.1 and earlier allows remote attackers to include and execute arbitrary files via a .. (dot dot) in the langChoice parameter.
by Metasploit
EIP-2026-106847 EXPLOITDB text
Elxis CMS 2009.2 - Remote File Inclusion
by n0n0x
CVE-2011-0506 EXPLOITDB text VERIFIED
Tsixm Axdcms - Path Traversal
Directory traversal vulnerability in modules/profile/user.php in Ax Developer CMS (AxDCMS) 0.1.1 allows remote attackers to execute arbitrary code via a .. (dot dot) in the aXconf[default_language] parameter.
by n0n0x
CVE-2007-2386 EXPLOITDB ruby VERIFIED
Apple Mac OS X <10.4.9 - Buffer Overflow
Buffer overflow in mDNSResponder in Apple Mac OS X 10.4 up to 10.4.9 allows remote attackers to cause a denial of service (application termination) or execute arbitrary code via a crafted UPnP Internet Gateway Device (IGD) packet.
by Metasploit