Exploitdb Exploits
50,095 exploits tracked across all sources.
S-CMS 2.5 - SQL Injection via viewforum.php id Parameter
SQL injection vulnerability to viewforum.php in S-CMS 2.5 allows remote attackers to execute arbitrary SQL commands via the id parameter.
by LordTittiS
Native Instruments Service Center 2.2.5 - Local Privilege Escalation
by LiquidWorm
Microsoft Windows - Privilege Escalation
Unspecified vulnerability in Microsoft Windows on 32-bit platforms allows local users to gain privileges via unknown vectors, as exploited in the wild in July 2010 by the Stuxnet worm, and identified by Kaspersky Lab researchers and other researchers.
by webDEViL
Native Instruments Traktor Pro 1.2.6 - Stack Buffer Overflow (PoC)
by LiquidWorm
Native Instruments Reaktor 5 Player 5.5.1 - Heap Memory Corruption
by LiquidWorm
Native Instruments Massive 1.1.4 - KSD File Handling Use-After-Free
by LiquidWorm
Native Instruments Kontakt 4 Player - '.NKI' File Syntactic Analysis Buffer Overflow (PoC)
by LiquidWorm
vBulletin 4.0.8 PL1 - Cross-Site Scripting Filter Bypass within Profile Customization
by MaXe
S-CMS 2.5 - Cross-Site Scripting via id Parameter
Cross-site scripting (XSS) vulnerability in blocks/lang.php in S-CMS 2.5 allows remote attackers to inject arbitrary web script or HTML via the id parameter to viewforum.php.
by LordTittiS
Joomla! com_jimtawl 1.0.2 - Path Traversal
Directory traversal vulnerability in the Jimtawl (com_jimtawl) component 1.0.2 Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the task parameter to index.php.
by Mask_magicianz
Native Instruments (Multiple Products) - DLL Loading Arbitrary Code Execution
by Gjoko Krstic
MiniShare 1.5.5 - 'users.txt' Local Buffer Overflow (Egghunter)
by 0v3r
Plogger Gallery 1.0 - Cross-Site Request Forgery (Change Admin Password)
by Or4nG.M4N
CommodityRentals DVD Rentals Script - SQL Injection
SQL injection vulnerability in index.php in CommodityRentals DVD Rentals Script allows remote attackers to execute arbitrary SQL commands via the cat_id parameter in a catalog action.
by JaMbA
Apple Safari < 5.0.3 - Weak Random Number Generation in JavaScript Implementation
The JavaScript implementation in WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4, uses a weak algorithm for generating values of random numbers, which makes it easier for remote attackers to track a user by predicting a value, a related issue to CVE-2008-5913 and CVE-2010-3171.
by Amit Klein
Apple Safari < 5.0.3 - Weak Random Number Generation in JavaScript Implementation
The JavaScript implementation in WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4, uses a weak algorithm for generating values of random numbers, which makes it easier for remote attackers to track a user by predicting a value, a related issue to CVE-2008-5913 and CVE-2010-3171.
by Amit Klein
mp3-nator 2.0 - Stack-Based Buffer Overflow via Long String in .plf or listdata.dat File
Stack-based buffer overflow in Mp3-Nator 2.0 allows remote attackers to execute arbitrary code via (1) a long string in a .plf file and (2) a long string in the listdata.dat file, possibly related to a track entry.
by Muhamad Fadzil Ramli
By Source