Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
CVE-2010-4944 EXPLOITDB text
Mambo/Joomla! - com_elite_experts - SQL Injection
SQL injection vulnerability in the Elite Experts (com_elite_experts) component for Mambo and Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a showExpertProfileDetailed action to index.php.
by **RoAd_KiLlEr**
EIP-2026-119266 EXPLOITDB ruby VERIFIED
WebDAV - Application DLL Hijacker (Metasploit)
by Metasploit
EIP-2026-117915 EXPLOITDB ruby VERIFIED
SnackAmp 3.1.3B - SMP Buffer Overflow (SEH)
by James Fitts
CVE-2010-0822 EXPLOITDB python VERIFIED
MS11-038 Microsoft Office Excel Malformed OBJ Record Handling Overflow
Stack-based buffer overflow in Microsoft Office Excel 2002 SP3, Office 2004 for Mac, Office 2008 for Mac, and Open XML File Format Converter for Mac allows remote attackers to execute arbitrary code via an Excel file with a crafted OBJ (0x5D) record, aka "Excel Object Stack Overflow Vulnerability."
by Abysssec
CVE-2010-0480 EXPLOITDB python VERIFIED
Microsoft Windows MPEG Layer-3 Audio Codecs - Remote Code Execution via Crafted AVI File
Multiple stack-based buffer overflows in the MPEG Layer-3 audio codecs in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allow remote attackers to execute arbitrary code via a crafted AVI file, aka "MPEG Layer-3 Audio Decoder Stack Overflow Vulnerability."
by Abysssec
CVE-2010-3490 EXPLOITDB text VERIFIED
FreePBX < 2.8.0 - Authenticated Path Traversal and Arbitrary File Write via System Recordings Component
Directory traversal vulnerability in page.recordings.php in the System Recordings component in the configuration interface in FreePBX 2.8.0 and earlier allows remote authenticated administrators to create arbitrary files via a .. (dot dot) in the usersnum parameter to admin/config.php, as demonstrated by creating a .php file under the web root.
by Trustwave's SpiderLabs
EIP-2026-106056 EXPLOITDB text
Collaborative Passwords Manager 1.07 - Multiple Local File Inclusions
by sh00t0ut
CVE-2005-2799 EXPLOITDB ruby VERIFIED
Linksys WRT54G <4.20.7 - Buffer Overflow
Buffer overflow in apply.cgi in Linksys WRT54G 3.01.03, 3.03.6, and possibly other versions before 4.20.7, allows remote attackers to execute arbitrary code via a long HTTP POST request.
by Metasploit
EIP-2026-115651 EXPLOITDB text VERIFIED
Microsoft Excel 2002 - Memory Corruption
by Abysssec
EIP-2026-115650 EXPLOITDB text VERIFIED
Microsoft Excel - HFPicture Record Parsing Memory Corruption
by Abysssec
CVE-2010-4940 EXPLOITDB text VERIFIED
WAnewsletter 2.1.2 - SQL Injection via id Parameter
SQL injection vulnerability in index.php in WAnewsletter 2.1.2 allows remote attackers to execute arbitrary SQL commands via the id parameter.
by BrOx-Dz
EIP-2026-110414 EXPLOITDB text VERIFIED
OvBB 0.16a - Multiple Local File Inclusions
by cOndemned
EIP-2026-110328 EXPLOITDB text VERIFIED
OpenText LiveLink 9.7.1 - Multiple Cross-Site Scripting Vulnerabilities
by Alejandro Ramos
EIP-2026-108560 EXPLOITDB perl VERIFIED
Joomla! Component com_tax - 'eid' SQL Injection
by FL0RiX
CVE-2010-4933 EXPLOITDB text
Geeklog 1.3.8 - SQL Injection via lid Parameter
SQL injection vulnerability in filemgmt/singlefile.php in Geeklog 1.3.8 allows remote attackers to execute arbitrary SQL commands via the lid parameter.
by Gamoscu
CVE-2010-2168 EXPLOITDB python VERIFIED
Adobe Acrobat and Reader 9.x < 9.3.3 and 8.x < 8.2.3 - Remote Code Execution via Crafted Flash Content in PDF
Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows and Mac OS X, allow attackers to execute arbitrary code via a PDF file with crafted Flash content, involving the newfunction (0x44) operator and an "invalid pointer vulnerability" that triggers memory corruption, a different vulnerability than CVE-2010-1285 and CVE-2010-2201.
by Abysssec
EIP-2026-119163 EXPLOITDB c VERIFIED
Sothink SWF Decompiler - 'dwmapi.dll' DLL Loading Arbitrary Code Execution
by anT!-Tr0J4n
EIP-2026-118624 EXPLOITDB c VERIFIED
GreenBrowser - 'RSRC32.dll' DLL Loading Arbitrary Code Execution
by anT!-Tr0J4n
EIP-2026-118476 EXPLOITDB c VERIFIED
Easy Office Recovery - 'dwmapi.dll' DLL Loading Arbitrary Code Execution
by anT!-Tr0J4n
EIP-2026-117643 EXPLOITDB ruby VERIFIED
MP3 Workstation 9.2.1.1.2 - Local Overflow (SEH) (Metasploit)
by Madjix
CVE-2010-2866 EXPLOITDB python VERIFIED
Adobe Shockwave Player <11.5.8.612 - Memory Corruption
Integer signedness error in the DIRAPI module in Adobe Shockwave Player before 11.5.8.612 allows remote attackers to cause a denial of service (memory corruption) or execute arbitrary code via a count value associated with an "undocumented structure" and the tSAC chunk in a Director movie.
by Abysssec
EIP-2026-112205 EXPLOITDB text VERIFIED
Skybluecanvas 1.1-r248 - Cross-Site Request Forgery
by Sweet
CVE-2010-4926 EXPLOITDB text VERIFIED
com_timetrack 1.2.4 - SQL Injection via ct_id Parameter
SQL injection vulnerability in the TimeTrack (com_timetrack) component 1.2.4 for Joomla! allows remote attackers to execute arbitrary SQL commands via the ct_id parameter in a timetrack action to index.php.
by Salvatore Fresta
CVE-2010-4929 EXPLOITDB text VERIFIED
Joostina (com_ezautos) - SQL Injection
SQL injection vulnerability in the Joostina (com_ezautos) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the firstCode parameter in a helpers action to index.php.
by Gamoscu
EIP-2026-105633 EXPLOITDB text
BSI Hotel Booking System Admin 1.4/2.0 - Authentication Bypass
by K-159