Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
CVE-2010-2618 EXPLOITDB ruby VERIFIED
Insanevisions Adapcms - Code Injection
PHP remote file inclusion vulnerability in inc/smarty/libs/init.php in AdaptCMS 2.0.0 Beta, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the sitepath parameter. NOTE: it was later reported that 2.0.1 is also affected.
by v3n0m
CVE-2010-3581 EXPLOITDB text VERIFIED
Oracle Fusion Middleware <11.1.1.2.0 - Info Disclosure
Unspecified vulnerability in the BPEL Console component in Oracle Fusion Middleware 11.1.1.1.0 and 11.1.1.2.0 allows remote authenticated users to affect integrity via unknown vectors.
by Alexander Polyakov
EIP-2026-119194 EXPLOITDB python VERIFIED
Sync Breeze Server 2.2.30 - Remote Buffer Overflow
by xsploited security
EIP-2026-118263 EXPLOITDB html VERIFIED
AoA Audio Extractor 2.x - ActiveX ROP
by mr_me
CVE-2010-4798 EXPLOITDB text VERIFIED
OrangeHRM 2.6.0.1 - Path Traversal via URI Parameter
Directory traversal vulnerability in index.php in OrangeHRM 2.6.0.1 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the uri parameter.
by ZonTa
EIP-2026-108158 EXPLOITDB text VERIFIED
Joomla! / Mambo Component com_trade - 'PID' Cross-Site Scripting
by FL0RiX
CVE-2010-4800 EXPLOITDB text VERIFIED
baconmap 1.0 - SQL Injection via doadd.php type Parameter
SQL injection vulnerability in doadd.php in BaconMap 1.0 allows remote attackers to execute arbitrary SQL commands via the type parameter.
by John Leitch
CVE-2010-4801 EXPLOITDB text VERIFIED
baconmap 1.0 - Path Traversal via filepath Parameter
Directory traversal vulnerability in admin/updatelist.php in BaconMap 1.0 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the filepath parameter.
by John Leitch
EIP-2026-118957 EXPLOITDB c VERIFIED
NetStumbler 0.4 - 'mfc71esn.dll' DLL Loading Arbitrary Code Execution
by Pepelux
EIP-2026-118870 EXPLOITDB c VERIFIED
Microsoft Visio 2007 - 'mfc80esn.dll' DLL Loading Arbitrary Code Execution
by Pepelux
EIP-2026-118701 EXPLOITDB c VERIFIED
IsoBuster 2.7 - 'wnaspi32.dll' DLL Loading Arbitrary Code Execution
by Pepelux
EIP-2026-118238 EXPLOITDB c VERIFIED
Adobe Dreamweaver CS4 - 'mfc80esn.dll' DLL Loading Arbitrary Code Execution
by Pepelux
EIP-2026-115288 EXPLOITDB perl VERIFIED
FoxPlayer 2.3.0 - '.m3u' Buffer Overflow
by Anastasios Monachos
CVE-2010-4791 EXPLOITDB text VERIFIED
MG User-Fotoalbum 1.0.1 - SQL Injection
SQL injection vulnerability in infusions/mg_user_fotoalbum_panel/mg_user_fotoalbum.php in the MG User-Fotoalbum (mg_user_fotoalbum_panel) module 1.0.1 for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the album_id parameter.
by Easy Laster
CVE-2010-4793 EXPLOITDB text VERIFIED
Site2Nite Auto e-Manager - SQL Injection
SQL injection vulnerability in detail.asp in Site2Nite Auto e-Manager allows remote attackers to execute arbitrary SQL commands via the ID parameter.
by KnocKout
CVE-2009-10006 EXPLOITDB CRITICAL ruby VERIFIED
UFO: Alien Invasion <= 2.2.1 - Stack-based Buffer Overflow in IRC Client via Crafted 001 Message
UFO: Alien Invasion versions up to and including 2.2.1 contain a buffer overflow vulnerability in its built-in IRC client component. When the client connects to an IRC server and receives a crafted numeric reply (specifically a 001 message), the application fails to properly validate the length of the response string. This results in a stack-based buffer overflow, which may corrupt control flow structures and allow arbitrary code execution. The vulnerability is triggered during automatic IRC connection handling and does not require user interaction beyond launching the game.
by Metasploit
CVE-2009-10005 EXPLOITDB HIGH ruby VERIFIED
ContentKeeper Web Appliance <125.10 - Path Traversal
ContentKeeper Web Appliance (now maintained by Impero Software) versions prior to 125.10 expose the mimencode binary via a CGI endpoint, allowing unauthenticated attackers to retrieve arbitrary files from the filesystem. By crafting a POST request to /cgi-bin/ck/mimencode with traversal and output parameters, attackers can read sensitive files such as /etc/passwd outside the webroot.
by Metasploit
CVE-2010-4794 EXPLOITDB text VERIFIED
JoomlaSeller JS Calendar 1.5.1-1.5.4 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in the JoomlaSeller JS Calendar (com_jscalendar) component 1.5.1 and 1.5.4 for Joomla! allow remote attackers to inject arbitrary web script or HTML via the (1) month and (2) year parameters in a jscalendar action to index.php. NOTE: some of these details are obtained from third party information.
by Salvatore Fresta
EIP-2026-119232 EXPLOITDB ruby VERIFIED
UFO: Alien Invasion IRC Client (Windows) - Remote Buffer Overflow (Metasploit)
by Metasploit
EIP-2026-113087 EXPLOITDB text VERIFIED
VideoDB 3.0.3 - Multiple Vulnerabilities
by Valentin
CVE-2010-4795 EXPLOITDB text VERIFIED
JS Calendar (com_jscalendar) 1.5.1-1.5.4 - SQL Injection
SQL injection vulnerability in the JS Calendar (com_jscalendar) component 1.5.1 and 1.5.4 for Joomla! allows remote attackers to execute arbitrary SQL commands via the ev_id parameter in a details action to index.php. NOTE: some of these details are obtained from third party information.
by Salvatore Fresta
CVE-2010-5280 EXPLOITDB text VERIFIED
Joomla! com_cbe <1.4.10 - Path Traversal
Directory traversal vulnerability in the Community Builder Enhanced (CBE) (com_cbe) component 1.4.8, 1.4.9, and 1.4.10 for Joomla! allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the tabname parameter in a userProfile action to index.php. NOTE: this can be leveraged to execute arbitrary code by using the file upload feature.
by Delf Tonder
CVE-2010-4799 EXPLOITDB text VERIFIED
Chipmunk Pwngame 1.0 - SQL Injection
Multiple SQL injection vulnerabilities in Chipmunk Pwngame 1.0, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters to authenticate.php and the (3) ID parameter to pwn.php. NOTE: some of these details are obtained from third party information.
by KnocKout
CVE-2010-2309 EXPLOITDB ruby VERIFIED
EvoLogical EvoCam 3.6.6-3.6.7 - Remote Code Execution via Long GET Request
Buffer overflow in the web server for EvoLogical EvoCam 3.6.6 and 3.6.7 allows remote attackers to execute arbitrary code via a long GET request.
by Metasploit
CVE-2007-6166 EXPLOITDB ruby VERIFIED
Apple QuickTime <7.3.1 - Buffer Overflow
Stack-based buffer overflow in Apple QuickTime before 7.3.1, as used in QuickTime Player on Windows XP and Safari on Mac OS X, allows remote Real Time Streaming Protocol (RTSP) servers to execute arbitrary code via an RTSP response with a long Content-Type header.
by Metasploit