Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-109252 EXPLOITDB python VERIFIED
Maian Gallery 2 - Local File Download
by mr_me
CVE-2010-4928 EXPLOITDB text VERIFIED
Joomla! com_restaurantguide 1.0.0 - XSS
Cross-site scripting (XSS) vulnerability in the Restaurant Guide (com_restaurantguide) component 1.0.0 for Joomla! allows remote attackers to inject arbitrary web script or HTML by placing it after a > (greater than) character.
by Valentin
EIP-2026-106012 EXPLOITDB html VERIFIED
CMSimple - Cross-Site Request Forgery
by Abysssec
EIP-2026-117066 EXPLOITDB python VERIFIED
DJ Studio Pro 8.1.3.2.1 - Local Overflow (SEH)
by Abhishek Lyall
EIP-2026-116692 EXPLOITDB python VERIFIED
A-PDF All to MP3 Converter 1.1.0 - Universal Local (SEH)
by modpr0be
CVE-2010-1214 EXPLOITDB python VERIFIED
Mozilla Firefox <3.5.11 & SeaMonkey <2.0.6 - RCE
Integer overflow in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, and SeaMonkey before 2.0.6, allows remote attackers to execute arbitrary code via plugin content with many parameter elements.
by Abysssec
EIP-2026-115605 EXPLOITDB python
MediaHuman Music Converter 1.0.1 - '.wav' / '.mp3' Denial of Service
by modpr0be
EIP-2026-111158 EXPLOITDB text VERIFIED
phpMyFamily - Multiple Vulnerabilities
by Abysssec
CVE-2010-3489 EXPLOITDB text VERIFIED
CMS Digital Workroom 5.5.0 - Cross-Site Scripting via goback Parameter
Cross-site scripting (XSS) vulnerability in netautor/napro4/home/login2.php in CMS Digital Workroom (formerly Netautor Professional) 5.5.0 allows remote attackers to inject arbitrary web script or HTML via the goback parameter.
by Gjoko Krstic
EIP-2026-106654 EXPLOITDB text VERIFIED
e107 0.7.23 - Multiple SQL Injections
by High-Tech Bridge SA
CVE-2010-3602 EXPLOITDB text VERIFIED
mojoPortal 2.3.4.3 and 2.3.5.1 - Cross-Site Scripting via User ID Parameter
Cross-site scripting (XSS) vulnerability in ProfileView.aspx in mojoPortal 2.3.4.3 and 2.3.5.1 allows remote attackers to inject arbitrary web script or HTML via the User ID parameter. NOTE: some of these details are obtained from third party information.
by Abysssec
EIP-2026-119330 EXPLOITDB text VERIFIED
YelloSoft Pinky 1.0 - Directory Traversal
by John Leitch
EIP-2026-117277 EXPLOITDB python VERIFIED
Honestech VHS to DVD 3.0.30 Deluxe - Local Buffer Overflow (SEH)
by Brennon Thomas
CVE-2010-4740 EXPLOITDB python VERIFIED
SCADA Engine BACnet OPC Client <1.0.25 - Buffer Overflow
Stack-based buffer overflow in WTclient.dll in SCADA Engine BACnet OPC Client before 1.0.25 allows user-assisted remote attackers to execute arbitrary code via a crafted .csv file, related to a status log message.
by Jeremy Brown
CVE-2010-1248 EXPLOITDB text VERIFIED
Microsoft Office Excel <2004 - Buffer Overflow
Buffer overflow in Microsoft Office Excel 2002 SP3 and Office 2004 for Mac allows remote attackers to execute arbitrary code via an Excel file with a malformed HFPicture (0x866) record, aka "Excel HFPicture Memory Corruption Vulnerability."
by Abysssec
EIP-2026-115040 EXPLOITDB python VERIFIED
Chalk Creek Media Player 1.0.7 - '.mp3' / '.wma' Denial of Service
by Carlos Mario Penagos Hollmann
CVE-2010-3301 EXPLOITDB c VERIFIED
Linux kernel <2.6.36-rc4-git2 - Privilege Escalation
The IA32 system call emulation functionality in arch/x86/ia32/ia32entry.S in the Linux kernel before 2.6.36-rc4-git2 on the x86_64 platform does not zero extend the %eax register after the 32-bit entry path to ptrace is used, which allows local users to gain privileges by triggering an out-of-bounds access to the system call table using the %rax register. NOTE: this vulnerability exists because of a CVE-2007-4573 regression.
by ben hawkes
CVE-2010-3081 EXPLOITDB HIGH c VERIFIED
Linux kernel <2.6.36-rc4-git2 - Privilege Escalation
The compat_alloc_user_space functions in include/asm/compat.h files in the Linux kernel before 2.6.36-rc4-git2 on 64-bit platforms do not properly allocate the userspace memory required for the 32-bit compatibility layer, which allows local users to gain privileges by leveraging the ability of the compat_mc_getsockopt function (aka the MCAST_MSFILTER getsockopt support) to control a certain length value, related to a "stack pointer underflow" issue, as exploited in the wild in September 2010.
by Ac1dB1tCh3z
CVSS 7.8
CVE-2010-3603 EXPLOITDB text VERIFIED
mojoPortal 2.3.4.3 and 2.3.5.1 - Cross-Site Request Forgery in File Manager Service
Cross-site request forgery (CSRF) vulnerability in the file manager service (Services/FileService.ashx) in mojoPortal 2.3.4.3 and 2.3.5.1 allows remote attackers to hijack the authentication of administrators for requests that rename arbitrary files, as demonstrated by causing the user.config file to be moved, leading to a denial of service (service stop) and possibly the exposure of sensitive information.
by Abysssec
CVE-2010-3480 EXPLOITDB text VERIFIED
ApPHP PHP MicroCMS 1.0.1 - Path Traversal
Directory traversal vulnerability in index.php in ApPHP PHP MicroCMS 1.0.1, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the page parameter.
by Abysssec
CVE-2010-5333 EXPLOITDB CRITICAL ruby
Integard Pro/Home <2.0.0.9037 & 2.2.x <2.2.0.9037 - RCE
The web server in Integard Pro and Home before 2.0.0.9037 and 2.2.x before 2.2.0.9037 has a buffer overflow via a long password in an administration login POST request, leading to arbitrary code execution. An SEH-overwrite buffer overflow already existed for the vulnerable software. This CVE is to track an alternate exploitation method, utilizing an EIP-overwrite buffer overflow.
by Node
CVSS 9.8
CVE-2010-3305 EXPLOITDB HIGH text VERIFIED
pixelpost 1.7.3 - Cross-Site Request Forgery
Cross-site request forgery (CSRF) vulnerability in pixelpost 1.7.3 could allow remote attackers to change the admin password.
by Sweet
CVSS 8.8
CVE-2010-3460 EXPLOITDB text VERIFIED
AXIGEN Mail Server 7.4.1 - Path Traversal
Directory traversal vulnerability in the HTTP interface in AXIGEN Mail Server 7.4.1 for Windows allows remote attackers to read arbitrary files via a %5C (encoded backslash) in the URL.
by Bogdan Calin
CVE-2009-0476 EXPLOITDB perl VERIFIED
MultiMedia Soft AdjMmsEng.dll <7.11.2.7 - Buffer Overflow
Stack-based buffer overflow in MultiMedia Soft AdjMmsEng.dll 7.11.1.0 and 7.11.2.7, as distributed in multiple MultiMedia Soft audio components for .NET, allows remote attackers to execute arbitrary code via a long string in a playlist (.pls) file, as originally reported for Euphonics Audio Player 1.0. NOTE: some of these details are obtained from third party information.
by sanjeev gupta
EIP-2026-115455 EXPLOITDB python VERIFIED
Ipswitch Imail Server - List Mailer Reply-To Address Memory Corruption
by Abysssec