Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-103351 EXPLOITDB c VERIFIED
Linux Kernel < 2.6.34 (Ubuntu 10.10 x86) - 'CAP_SYS_ADMIN' Local Privilege Escalation (1)
by Dan Rosenberg
EIP-2026-102523 EXPLOITDB text VERIFIED
Openfire 3.6.4 - Multiple Cross-Site Scripting Vulnerabilities
by Walikar Riyaz Ahemed Dawalmalik
EIP-2026-100171 EXPLOITDB text VERIFIED
BlogEngine.NET 1.6 - Directory Traversal / Information Disclosure
by Deniz Cevik
CVE-2011-0501 EXPLOITDB python VERIFIED
Music Animation Machine MIDI Player 2006aug19 Release 035 - Stack-Based Buffer Overflow via Long Line in .mamx File
Stack-based buffer overflow in Music Animation Machine MIDI Player 2006aug19 Release 035 and possibly other versions allows user-assisted remote attackers to execute arbitrary code via a long line in a .mamx file.
by Acidgen
EIP-2026-116630 EXPLOITDB python VERIFIED
Xynph FTP Server 1.0 - USER Denial of Service
by freak_out
EIP-2026-113469 EXPLOITDB text VERIFIED
WonderCMS 0.3.3 - 'editText.php' Cross-Site Scripting
by High-Tech Bridge SA
EIP-2026-111856 EXPLOITDB html
S40 CMS 0.4.1 - Cross-Site Request Forgery (Change Admin Password)
by pentesters.ir
EIP-2026-118224 EXPLOITDB c VERIFIED
Ace Video Workshop 1.2.0.0 - 'ir50_lcs.dll' DLL Loading Arbitrary Code Execution
by d3c0der
CVE-2011-0502 EXPLOITDB python VERIFIED
Music Animation Machine MIDI Player 2006aug19 Release 035 - Denial of Service via Long Line in MIDI File
Music Animation Machine MIDI Player 2006aug19 Release 035 and possibly other versions allows user-assisted remote attackers to cause a denial of service (crash) and possibly have other unspecified impact via a long line in a MIDI (.mid) file.
by c0d3R'Z
EIP-2026-111871 EXPLOITDB text
Sahana Agasti 0.6.4 - Multiple Remote File Inclusions
by n0n0x
CVE-2010-4645 EXPLOITDB php VERIFIED
PHP 5.2-5.2.16 and 5.3-5.3.4 - Denial of Service via Floating-Point Parsing
strtod.c, as used in the zend_strtod function in PHP 5.2 before 5.2.17 and 5.3 before 5.3.5, and other products, allows context-dependent attackers to cause a denial of service (infinite loop) via a certain floating-point value in scientific notation, which is not properly handled in x87 FPU registers, as demonstrated using 2.2250738585072011e-308.
by Rick Regan
CVE-2010-4538 EXPLOITDB python VERIFIED
Wireshark - Buffer Overflow in ENTTEC DMX Packet Dissector
Buffer overflow in the sect_enttec_dmx_da function in epan/dissectors/packet-enttec.c in Wireshark 1.4.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted ENTTEC DMX packet with Run Length Encoding (RLE) compression.
by non-customers crew
CVE-2011-1081 EXPLOITDB text VERIFIED
OpenLDAP 2.4.x < 2.4.24 - Denial of Service via Empty OldDN in MODRDN Operation
modrdn.c in slapd in OpenLDAP 2.4.x before 2.4.24 allows remote attackers to cause a denial of service (daemon crash) via a relative Distinguished Name (DN) modification request (aka MODRDN operation) that contains an empty value for the OldDN field.
by Serge Dubrouski
CVE-2008-3408 EXPLOITDB python VERIFIED
CoolPlayer 2.18 - Stack-Based Buffer Overflow via Crafted m3u File
Stack-based buffer overflow in CoolPlayer 2.18, and possibly other versions, allows user-assisted remote attackers to execute arbitrary code via a crafted m3u file.
by blake
CVE-2010-2744 EXPLOITDB c VERIFIED
Microsoft Windows XP SP2-7 - Privilege Escalation
The kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 do not properly manage a window class, which allows local users to gain privileges by creating a window, then using (1) the SetWindowLongPtr function to modify the popup menu structure, or (2) the SwitchWndProc function with a switch window information pointer, which is not re-initialized when a WM_NCCREATE message is processed, aka "Win32k Window Class Vulnerability."
by Tarjei Mandt
EIP-2026-114548 EXPLOITDB html
YourTube 1.0 - Cross-Site Request Forgery (Add User)
by AtT4CKxT3rR0r1ST
CVE-2011-0519 EXPLOITDB text VERIFIED
Gallarific PHP Photo Gallery script 2.1 - SQL Injection via gallery.php id Parameter
SQL injection vulnerability in gallery.php in Gallarific PHP Photo Gallery script 2.1 and possibly other versions allows remote attackers to execute arbitrary SQL commands via the id parameter.
by AtT4CKxT3rR0r1ST
EIP-2026-105164 EXPLOITDB python VERIFIED
amoeba CMS 1.01 - Multiple Vulnerabilities
by mr_me
EIP-2026-118648 EXPLOITDB html VERIFIED
HP Photo Creative 2.x audio.Record.1 - ActiveX Control Remote Stack Buffer Overflow
by rgod
EIP-2026-116933 EXPLOITDB c
Bywifi 2.8.1 - Local Stack Buffer Overflow
by anonymous
CVE-2011-0403 EXPLOITDB c VERIFIED
ImgBurn - Untrusted Search Path and DLL Hijacking via Trojan Horse dwmapi.dll
Untrusted search path vulnerability in ImgBurn.exe in ImgBurn 2.4.0.0, 2.5.4.0, and other versions allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a CUE file.
by d3c0der
EIP-2026-112582 EXPLOITDB text
Tech Shop Technote 7 - SQL Injection
by MaJ3stY
EIP-2026-111872 EXPLOITDB text VERIFIED
Sahana Agasti 0.6.4 - SQL Injection
by dun
CVE-2012-5099 EXPLOITDB text VERIFIED
phpb2b < 4.1 - Cross-Site Scripting via list.php q Parameter
Cross-site scripting (XSS) vulnerability in list.php in PHPB2B 4.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the q parameter in a search action.
by H4ckCity Security Team
EIP-2026-109022 EXPLOITDB text VERIFIED
KLINK - SQL Injection
by Mauro Rossi & Andres Gomez