Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
CVE-2008-5353 EXPLOITDB ruby VERIFIED
Sun Java Calendar Deserialization Privilege Escalation
The Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and JRE 1.4.2_18 and earlier does not properly enforce context of ZoneInfo objects during deserialization, which allows remote attackers to run untrusted applets and applications in a privileged context, as demonstrated by "deserializing Calendar objects".
by Metasploit
CVE-2011-0404 EXPLOITDB perl VERIFIED
NetSupport Manager Agent <=11.00 Remote Code Execution via Long Control Hostname
Stack-based buffer overflow in NetSupport Manager Agent for Linux 11.00, for Solaris 9.50, and for Mac OS X 11.00 allows remote attackers to execute arbitrary code via a long control hostname to TCP port 5405, probably a different vulnerability than CVE-2007-5252.
by ikki
EIP-2026-103316 EXPLOITDB ruby VERIFIED
Redmine SCM Repository 0.9.x/1.0.x - Arbitrary Command Execution (Metasploit)
by Metasploit
EIP-2026-103167 EXPLOITDB ruby VERIFIED
Mitel Audio and Web Conferencing - Command Injection (Metasploit)
by Metasploit
EIP-2026-102911 EXPLOITDB c
Linux Kernel < 2.6.34 (Ubuntu 10.10 x86/x64) - 'CAP_SYS_ADMIN' Local Privilege Escalation (2)
by Joe Sylve
CVE-2010-4052 EXPLOITDB c
glibc 2.11.3/2.12.x-2.12.2 DoS via Adjacent Repetition in Regex
Stack consumption vulnerability in the regcomp implementation in the GNU C Library (aka glibc or libc6) through 2.11.3, and 2.12.x through 2.12.2, allows context-dependent attackers to cause a denial of service (resource exhaustion) via a regular expression containing adjacent repetition operators, as demonstrated by a {10,}{10,}{10,}{10,} sequence in the proftpd.gnu.c exploit for ProFTPD.
by Maksymilian Arciemowicz
CVE-2010-10016 EXPLOITDB CRITICAL python VERIFIED
BS.Player Free and Pro Editions < 2.57 (build 1051) - Buffer Overflow via M3U Playlist Import
BS.Player version 2.57 (build 1051) contains a vulnerability in its playlist import functionality. When processing .m3u files, the application fails to properly validate the length of playlist entries, resulting in a buffer overflow condition. This flaw occurs during parsing of long URLs embedded in the playlist, allowing overwrite of Structured Exception Handler (SEH) records. The vulnerability is triggered upon opening a crafted playlist file and affects the Unicode parsing logic in the Windows client.
by C4SS!0 G0M3S
EIP-2026-116331 EXPLOITDB text VERIFIED
StageTracker 2.5 - Denial of Service
by freak_out
EIP-2026-110322 EXPLOITDB text
openSite 0.2.2 Beta - Local File Inclusion
by n0n0x
CVE-2010-4051 EXPLOITDB c
glibc through 2.11.3 and 2.12.x through 2.12.2 - Denial of Service via RE_DUP_MAX Overflow in regcomp
The regcomp implementation in the GNU C Library (aka glibc or libc6) through 2.11.3, and 2.12.x through 2.12.2, allows context-dependent attackers to cause a denial of service (application crash) via a regular expression containing adjacent bounded repetitions that bypass the intended RE_DUP_MAX limitation, as demonstrated by a {10,}{10,}{10,}{10,}{10,} sequence in the proftpd.gnu.c exploit for ProFTPD, related to a "RE_DUP_MAX overflow."
by Maksymilian Arciemowicz
EIP-2026-117131 EXPLOITDB perl VERIFIED
Enzip 3.00 - Local Buffer Overflow
by C4SS!0 G0M3S
EIP-2026-111172 EXPLOITDB text VERIFIED
phpMySport 1.4 - SQL Injection / Authentication Bypass / Full Path Disclosure
by High-Tech Bridge SA
EIP-2026-110732 EXPLOITDB text
PHP MicroCMS 1.0.1 - Cross-Site Request Forgery / Cross-Site Scripting
by High-Tech Bridge SA
EIP-2026-110731 EXPLOITDB text VERIFIED
PHP MicroCMS 1.0.1 - 'page_text' Cross-Site Scripting
by High-Tech Bridge SA
CVE-2011-0407 EXPLOITDB text
Phenotype CMS 3.0 - SQL Injection via Crafted URI
SQL injection vulnerability in the store function in _phenotype/system/class/PhenoTypeDataObject.class.php in Phenotype CMS 3.0 allows remote attackers to execute arbitrary SQL commands via a crafted URI, as demonstrated by Gallery/gal_id/1/image1,1.html. NOTE: some of these details are obtained from third party information.
by High-Tech Bridge SA
CVE-2011-0005 EXPLOITDB text VERIFIED
Joomla com_search 1.0.x-1.0.15 - Cross-Site Scripting via Ordering Parameter
Cross-site scripting (XSS) vulnerability in the com_search module for Joomla! 1.0.x through 1.0.15 allows remote attackers to inject arbitrary web script or HTML via the ordering parameter to index.php.
by Aung Khant
EIP-2026-107775 EXPLOITDB text VERIFIED
Ignition 1.3 - 'comment.php' Local File Inclusion
by n0n0x
EIP-2026-107020 EXPLOITDB text VERIFIED
F3Site 2011 alfa 1 - Cross-Site Scripting / Cross-Site Request Forgery
by High-Tech Bridge SA
EIP-2026-102522 EXPLOITDB text VERIFIED
Openfire 3.6.4 - Multiple Cross-Site Request Forgery Vulnerabilities
by Riyaz Ahemed Walikar
EIP-2026-101343 EXPLOITDB text VERIFIED
Lexmark X651de - Printer Ready Message Value HTML Injection
by dave b
EIP-2026-119066 EXPLOITDB c VERIFIED
Quick Notes Plus 5.0 47 - Multiple DLL Loading Arbitrary Code Executions
by d3c0der
EIP-2026-113435 EXPLOITDB text VERIFIED
WikLink 0.1.3 - 'getURL.php' SQL Injection
by Aliaksandr Hartsuyeu
CVE-2011-0405 EXPLOITDB perl VERIFIED
phpgedview 4.2.3 - Path Traversal via pgvaction Parameter
Directory traversal vulnerability in module.php in PhpGedView 4.2.3 and possibly other versions, when magic_quotes_gpc is disabled, allows remote attackers to read arbitrary files via directory traversal sequences in the pgvaction parameter.
by dun
EIP-2026-109977 EXPLOITDB text
Nucleus 3.61 - Multiple Remote File Inclusions
by n0n0x
EIP-2026-106121 EXPLOITDB python VERIFIED
Concrete CMS 5.4.1.1 - Cross-Site Scripting / Remote Code Execution
by mr_me