Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
CVE-2010-4514 EXPLOITDB text VERIFIED
DotNetNuke 5.05.01 and 5.06.00 - Cross-Site Scripting via __VIEWSTATE Parameter
Cross-site scripting (XSS) vulnerability in Install/InstallWizard.aspx in DotNetNuke 5.05.01 and 5.06.00 allows remote attackers to inject arbitrary web script or HTML via the __VIEWSTATE parameter. NOTE: some of these details are obtained from third party information.
by Richard Brain
CVE-2010-20103 EXPLOITDB CRITICAL text VERIFIED
ProFTPD 1.3.3c - Unauthenticated Remote Code Execution via Hidden FTP Command
A malicious backdoor was embedded in the official ProFTPD 1.3.3c source tarball distributed between November 28 and December 2, 2010. The backdoor implements a hidden FTP command trigger that, when invoked, causes the server to execute arbitrary shell commands with root privileges. This allows remote, unauthenticated attackers to run any OS command on the FTP server host.
by anonymous
CVSS 9.8
CVE-2010-5194 EXPLOITDB ruby
Viscom Image Viewer <8.0 - Buffer Overflow
Stack-based buffer overflow in the Image2PDF function in the SCRIBBLE.ScribbleCtrl.1 ActiveX control (ImageViewer2.ocx) in Viscom Image Viewer CP Pro 8.0, Gold 5.5, Gold 6.0, and earlier allows remote attackers to execute arbitrary code via a long strPDFFile parameter.
by bz1p
CVE-1999-0504 EXPLOITDB ruby VERIFIED
Windows NT and Windows 2000 - Unauthenticated Local Account Access via Default Null Password
A Windows NT local user or administrator account has a default, null, blank, or missing password.
by Metasploit
EIP-2026-117465 EXPLOITDB python VERIFIED
Mediacoder 0.7.5.4797 - '.m3u' Local Buffer Overflow (SEH)
by Oh Yaw Theng
EIP-2026-115303 EXPLOITDB text VERIFIED
FreeTrim MP3 2.2.3 - Denial of Service
by h1ch4m
EIP-2026-108204 EXPLOITDB text VERIFIED
Joomla! Component Annuaire - 'index.php?id' SQL Injection
by Ashiyane Digital Security Team
EIP-2026-106922 EXPLOITDB text VERIFIED
etomite 1.1 - Multiple Vulnerabilities
by High-Tech Bridge SA
EIP-2026-106140 EXPLOITDB text VERIFIED
Contenido CMS 4.8.12 - Multiple Cross-Site Scripting Vulnerabilities
by High-Tech Bridge SA
EIP-2026-106139 EXPLOITDB text
Contenido CMS 4.8.12 - Cross-Site Scripting
by High-Tech Bridge SA
CVE-2010-4221 EXPLOITDB ruby VERIFIED
ProFTPD - Stack-Based Buffer Overflow via TELNET IAC Escape Character
Multiple stack-based buffer overflows in the pr_netio_telnet_gets function in netio.c in ProFTPD before 1.3.3c allow remote attackers to execute arbitrary code via vectors involving a TELNET IAC escape character to a (1) FTP or (2) FTPS server.
by Metasploit
CVE-2010-4782 EXPLOITDB text VERIFIED
Softwebs Nepal Ananda Real Estate 3.4 - SQL Injection
Multiple SQL injection vulnerabilities in list.asp in Softwebs Nepal (aka Ananda Raj Pandey) Ananda Real Estate 3.4 allow remote attackers to execute arbitrary SQL commands via the (1) city, (2) state, (3) country, (4) minprice, (5) maxprice, (6) bed, and (7) bath parameters, different vectors than CVE-2006-6807.
by underground-stockholm.com
CVE-2010-3266 EXPLOITDB text VERIFIED
BugTracker.NET < 3.4.5 - Authenticated Cross-Site Scripting via Multiple Parameters
Multiple cross-site scripting (XSS) vulnerabilities in BugTracker.NET before 3.4.5 allow remote authenticated users to inject arbitrary web script or HTML via (1) the pcd parameter to edit_bug.aspx, (2) the bug_id parameter to edit_comment.aspx, (3) the id parameter to edit_user_permissions2.aspx, or (4) the default_name parameter to edit_customfield.aspx. NOTE: some of these details are obtained from third party information.
by Core Security
EIP-2026-118703 EXPLOITDB html VERIFIED
J-Integra 2.11 - Remote Code Execution
by bz1p
EIP-2026-118702 EXPLOITDB html VERIFIED
J-Integra 2.11 - ActiveX SetIdentity() Buffer Overflow
by Dr_IDE
CVE-2008-4830 EXPLOITDB ruby VERIFIED
SAP GUI 6.40 Patch 29 and 7.10 Patch 5 - Arbitrary File Write and Read via KWEdit ActiveX Control
Insecure method vulnerability in the KWEdit ActiveX control in SAP GUI 6.40 Patch 29 (KWEDIT.DLL 6400.1.1.41) and 7.10 Patch 5 (KWEDIT.DLL 7100.1.1.43) allows remote attackers to (1) overwrite arbitrary files via the SaveDocumentAs method or (2) read or execute arbitrary files via the OpenDocument method.
by Metasploit
EIP-2026-115393 EXPLOITDB perl VERIFIED
HP Data Protector Manager A.06.11 MMD - Null Pointer Dereference Denial of Service
by Pepelux
EIP-2026-110388 EXPLOITDB text
OsCSS 1.2 - Arbitrary File Upload
by Shichemt Alen
CVE-2010-4406 EXPLOITDB text VERIFIED
Brunetton LittlePhpGallery 1.0.2 - Path Traversal via Repertoire Parameter
Directory traversal vulnerability in gallery.php in Brunetton LittlePhpGallery 1.0.2, when magic_quotes_gpc is disabled, allows remote attackers to list, include, and execute arbitrary local files via a ..// (dot dot slash slash) in the repertoire parameter.
by kire bozorge khavarmian
EIP-2026-106454 EXPLOITDB text
Digitalus 1.10.0 Alpha2 - Arbitrary File Upload
by eidelweiss
CVE-2010-4849 EXPLOITDB text VERIFIED
Alibaba Clone B2B 3.4 - SQL Injection
SQL injection vulnerability in countrydetails.php in Alibaba Clone B2B 3.4 allows remote attackers to execute arbitrary SQL commands via the es_id parameter.
by Dr.0rYX & Cr3W-DZ
CVE-2010-3267 EXPLOITDB text VERIFIED
BugTracker.NET <3.4.5 - SQL Injection
Multiple SQL injection vulnerabilities in BugTracker.NET before 3.4.5 allow remote authenticated users to execute arbitrary SQL commands via (1) the qu_id parameter to bugs.aspx, (2) the row_id parameter to delete_query.aspx, the (3) new_project or (4) us_id parameter to edit_bug.aspx, or (5) the bug_list parameter to massedit.aspx. NOTE: some of these details are obtained from third party information.
by Core Security
CVE-2010-4282 EXPLOITDB text
Pandora FMS < 3.1 - Remote File Inclusion and Arbitrary File Manipulation via Page Parameter
Multiple directory traversal vulnerabilities in Pandora FMS before 3.1.1 allow remote attackers to include and execute arbitrary local files via (1) the page parameter to ajax.php or (2) the id parameter to general/pandora_help.php, and allow remote attackers to include and execute, create, modify, or delete arbitrary local files via (3) the layout parameter to operation/agentes/networkmap.php.
by Juan Galiana Lara
CVE-2010-4281 EXPLOITDB text
Pandora FMS < 3.1 - Remote Code Execution via UNC Share Pathname Bypass
Incomplete blacklist vulnerability in the safe_url_extraclean function in ajax.php in Pandora FMS before 3.1.1 allows remote attackers to execute arbitrary PHP code by using a page parameter containing a UNC share pathname, which bypasses the check for the : (colon) character.
by Juan Galiana Lara
CVE-2010-4851 EXPLOITDB text VERIFIED
Eclime 1.1.2b - SQL Injection via ref poll_id or country Parameter
Multiple SQL injection vulnerabilities in Eclime 1.1.2b allow remote attackers to execute arbitrary SQL commands via the (1) ref or (2) poll_id parameter to index.php, or the (3) country parameter to create_account.php.
by High-Tech Bridge SA