Exploitdb Exploits
50,095 exploits tracked across all sources.
CA BrightStor ARCserve Message Engine 0x72 - Remote Buffer Overflow (Metasploit)
by Metasploit
SquirrelMail Virtual Keyboard Plugin - 'vkeyboard.php' Cross-Site Scripting
by Moritz Naumann
CAG CMS 0.2 Beta - SQL Injection via click.php itemid Parameter
SQL injection vulnerability in click.php in CAG CMS 0.2 Beta allows remote attackers to execute arbitrary SQL commands via the itemid parameter.
by Shamus
Alcatel OmniPCX Enterprise < 7.1 - Remote Command Execution via Unified Maintenance Tool
masterCGI in the Unified Maintenance Tool in Alcatel OmniPCX Enterprise Communication Server R7.1 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the user parameter during a ping action.
by Metasploit
CVSS 9.8
Savant Web Server < 3.1 - Remote Code Execution via Long HTTP GET Request
Buffer overflow in Savant Web Server 3.1 and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request.
by Metasploit
SnackAmp 3.1.3B - SMP Buffer Overflow (SEH) (DEP Bypass)
by Muhamad Fadzil Ramli
NetWin SurgeMail < 4.3g - Cross-Site Scripting via Username Parameter
Cross-site scripting (XSS) vulnerability in NetWin Surgemail before 4.3g allows remote attackers to inject arbitrary web script or HTML via the username_ex parameter to the surgeweb program.
by Kerem Kocaer
Portili Personal and Team Wiki 1.14 - Multiple Vulnerabilities (2)
by Abysssec
Docebo 3.6 - 'description' Cross-Site Scripting
by High-Tech Bridge SA
DNET Live-Stats <0.8 - Path Traversal
Directory traversal vulnerability in team.rc5-72.php in DNET Live-Stats 0.8 allows remote attackers to read arbitrary files via a .. (dot dot) in the showlang parameter.
by blake
Research In Motion BlackBerry Device Software 4.7.1 - Cross Domain Information Disclosure
by 599eme Man
FreeBSD 7.x < 7.3-RELEASE and 8.x < 8.0-RC1 - DoS and Memory Overwrite via pfs_getextattr
The pfs_getextattr function in FreeBSD 7.x before 7.3-RELEASE and 8.x before 8.0-RC1 unlocks a mutex that was not previously locked, which allows local users to cause a denial of service (kernel panic), overwrite arbitrary memory locations, and possibly execute arbitrary code via vectors related to opening a file on a file system that uses pseudofs.
by Babcia Padlina
CVSS 7.8
Hanso Player 1.3.0 - '.m3u' Denial of Service
by xsploited security
TinyMCE MCFileManager 2.1.2 - Arbitrary File Upload
by Hackeri-AL
Aprox CMS Engine 6.0 - Multiple Vulnerabilities
by Stephan Sattler
By Source