Exploitdb Exploits
50,095 exploits tracked across all sources.
Linux Kernel < 2.6.34 (Ubuntu 10.10 x86) - 'CAP_SYS_ADMIN' Local Privilege Escalation (1)
by Dan Rosenberg
Openfire 3.6.4 - Multiple Cross-Site Scripting Vulnerabilities
by Walikar Riyaz Ahemed Dawalmalik
BlogEngine.NET 1.6 - Directory Traversal / Information Disclosure
by Deniz Cevik
Music Animation Machine MIDI Player 2006aug19 Release 035 - Stack-Based Buffer Overflow via Long Line in .mamx File
Stack-based buffer overflow in Music Animation Machine MIDI Player 2006aug19 Release 035 and possibly other versions allows user-assisted remote attackers to execute arbitrary code via a long line in a .mamx file.
by Acidgen
Xynph FTP Server 1.0 - USER Denial of Service
by freak_out
WonderCMS 0.3.3 - 'editText.php' Cross-Site Scripting
by High-Tech Bridge SA
S40 CMS 0.4.1 - Cross-Site Request Forgery (Change Admin Password)
by pentesters.ir
Ace Video Workshop 1.2.0.0 - 'ir50_lcs.dll' DLL Loading Arbitrary Code Execution
by d3c0der
Music Animation Machine MIDI Player 2006aug19 Release 035 - Denial of Service via Long Line in MIDI File
Music Animation Machine MIDI Player 2006aug19 Release 035 and possibly other versions allows user-assisted remote attackers to cause a denial of service (crash) and possibly have other unspecified impact via a long line in a MIDI (.mid) file.
by c0d3R'Z
PHP 5.2-5.2.16 and 5.3-5.3.4 - Denial of Service via Floating-Point Parsing
strtod.c, as used in the zend_strtod function in PHP 5.2 before 5.2.17 and 5.3 before 5.3.5, and other products, allows context-dependent attackers to cause a denial of service (infinite loop) via a certain floating-point value in scientific notation, which is not properly handled in x87 FPU registers, as demonstrated using 2.2250738585072011e-308.
by Rick Regan
Wireshark - Buffer Overflow in ENTTEC DMX Packet Dissector
Buffer overflow in the sect_enttec_dmx_da function in epan/dissectors/packet-enttec.c in Wireshark 1.4.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted ENTTEC DMX packet with Run Length Encoding (RLE) compression.
by non-customers crew
OpenLDAP 2.4.x < 2.4.24 - Denial of Service via Empty OldDN in MODRDN Operation
modrdn.c in slapd in OpenLDAP 2.4.x before 2.4.24 allows remote attackers to cause a denial of service (daemon crash) via a relative Distinguished Name (DN) modification request (aka MODRDN operation) that contains an empty value for the OldDN field.
by Serge Dubrouski
CoolPlayer 2.18 - Stack-Based Buffer Overflow via Crafted m3u File
Stack-based buffer overflow in CoolPlayer 2.18, and possibly other versions, allows user-assisted remote attackers to execute arbitrary code via a crafted m3u file.
by blake
Microsoft Windows XP SP2-7 - Privilege Escalation
The kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 do not properly manage a window class, which allows local users to gain privileges by creating a window, then using (1) the SetWindowLongPtr function to modify the popup menu structure, or (2) the SwitchWndProc function with a switch window information pointer, which is not re-initialized when a WM_NCCREATE message is processed, aka "Win32k Window Class Vulnerability."
by Tarjei Mandt
YourTube 1.0 - Cross-Site Request Forgery (Add User)
by AtT4CKxT3rR0r1ST
Gallarific PHP Photo Gallery script 2.1 - SQL Injection via gallery.php id Parameter
SQL injection vulnerability in gallery.php in Gallarific PHP Photo Gallery script 2.1 and possibly other versions allows remote attackers to execute arbitrary SQL commands via the id parameter.
by AtT4CKxT3rR0r1ST
HP Photo Creative 2.x audio.Record.1 - ActiveX Control Remote Stack Buffer Overflow
by rgod
ImgBurn - Untrusted Search Path and DLL Hijacking via Trojan Horse dwmapi.dll
Untrusted search path vulnerability in ImgBurn.exe in ImgBurn 2.4.0.0, 2.5.4.0, and other versions allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a CUE file.
by d3c0der
phpb2b < 4.1 - Cross-Site Scripting via list.php q Parameter
Cross-site scripting (XSS) vulnerability in list.php in PHPB2B 4.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the q parameter in a search action.
by H4ckCity Security Team
By Source