Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-104216 EXPLOITDB text
CS-Cart 1.3.3 - 'install.php' Cross-Site Scripting
by crmpays
EIP-2026-100562 EXPLOITDB text VERIFIED
SmarterTools SmarterStats 5.3.3819 - 'frmHelp.aspx' Cross-Site Scripting
by David Hoyt
EIP-2026-100109 EXPLOITDB text VERIFIED
aradblog - Multiple Vulnerabilities
by Abysssec
CVE-2010-1681 EXPLOITDB python VERIFIED
Microsoft Visio - Buffer Overflow via Crafted DXF File
Buffer overflow in VISIODWG.DLL before 10.0.6880.4 in Microsoft Office Visio allows user-assisted remote attackers to execute arbitrary code via a crafted DXF file, a different vulnerability than CVE-2010-0254 and CVE-2010-0256.
by Abysssec
EIP-2026-100672 EXPLOITDB text
FreeBSD 8.1/7.3 - 'vm.pmap' Local Race Condition
by Maksymilian Arciemowicz
EIP-2026-100547 EXPLOITDB text VERIFIED
sirang web-based d-control - Multiple Vulnerabilities
by Abysssec
CVE-2010-4913 EXPLOITDB python VERIFIED
ColdGen ColdUserGroup 1.06 - Cross-Site Scripting via Search Keywords Parameter
Cross-site scripting (XSS) vulnerability in the search feature in ColdGen ColdUserGroup 1.06 allows remote attackers to inject arbitrary web script or HTML via the Keywords parameter. NOTE: some of these details are obtained from third party information.
by mr_me
CVE-2010-5333 EXPLOITDB CRITICAL ruby VERIFIED
Integard Pro/Home <2.0.0.9037 & 2.2.x <2.2.0.9037 - RCE
The web server in Integard Pro and Home before 2.0.0.9037 and 2.2.x before 2.2.0.9037 has a buffer overflow via a long password in an administration login POST request, leading to arbitrary code execution. An SEH-overwrite buffer overflow already existed for the vulnerable software. This CVE is to track an alternate exploitation method, utilizing an EIP-overwrite buffer overflow.
by Lincoln_ Nullthreat_ rick2600
CVSS 9.8
CVE-2010-4916 EXPLOITDB python VERIFIED
ColdGen ColdUserGroup 1.06 - SQL Injection
Multiple SQL injection vulnerabilities in index.cfm in ColdGen ColdUserGroup 1.06 allow remote attackers to execute arbitrary SQL commands via the (1) ArticleID or (2) LibraryID parameter.
by mr_me
EIP-2026-119354 EXPLOITDB text VERIFIED
ColdOfficeView 2.04 - Multiple Blind SQL Injections
by mr_me
CVE-2010-4910 EXPLOITDB python VERIFIED
ColdGen ColdCalendar <2.06 - SQL Injection
SQL injection vulnerability in index.cfm in ColdGen ColdCalendar 2.06 allows remote attackers to execute arbitrary SQL commands via the EventID parameter in a ViewEventDetails action.
by mr_me
CVE-2010-4915 EXPLOITDB text VERIFIED
ColdGen ColdBookmarks 1.22 - SQL Injection
SQL injection vulnerability in index.cfm in ColdGen ColdBookmarks 1.22 allows remote attackers to execute arbitrary SQL commands via the BookmarkID parameter in an EditBookmark action.
by mr_me
EIP-2026-117532 EXPLOITDB c VERIFIED
Microsoft Windows - Local Procedure Call (LPC) Privilege Escalation
by yuange
EIP-2026-116120 EXPLOITDB python VERIFIED
QQPlayer 2.3.696.400p1 - '.wav' Denial of Service
by s-dz
CVE-2007-3162 EXPLOITDB text VERIFIED
Internet Download Accelerator 5.2 - Buffer Overflow via idaiehlp ActiveX Control
Buffer overflow in the NotSafe function in the idaiehlp ActiveX control in idaiehlp.dll 1.9.1.74 in Internet Download Accelerator (ida) 5.2 allows remote attackers to cause a denial of service (Internet Explorer crash) via a long argument.
by eidelweiss
CVE-2010-4906 EXPLOITDB text VERIFIED
Zenphoto 1.3 and 1.3.1.2 - SQL Injection via a Parameter
SQL injection vulnerability in zp-core/full-image.php in Zenphoto 1.3 and 1.3.1.2 allows remote attackers to execute arbitrary SQL commands via the a parameter. NOTE: some of these details are obtained from third party information.
by Bogdan Calin
CVE-2010-4907 EXPLOITDB text VERIFIED
Zenphoto 1.3 - Cross-Site Scripting via User Parameter
Cross-site scripting (XSS) vulnerability in zp-core/admin.php in Zenphoto 1.3 allows remote attackers to inject arbitrary web script or HTML via the user parameter. NOTE: the from parameter is already covered by CVE-2009-4562.
by Bogdan Calin
EIP-2026-108046 EXPLOITDB php
java Bridge 5.5 - Directory Traversal
by Saxtor
EIP-2026-106609 EXPLOITDB text VERIFIED
dynpage 1.0 - Multiple Vulnerabilities
by Abysssec
CVE-2010-1093 EXPLOITDB text VERIFIED
1024 CMS 2.1.1 - SQL Injection via RSS.php id Parameter
SQL injection vulnerability in rss.php in 1024 CMS 2.1.1, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the id parameter in a vp action.
by Stephan Sattler
EIP-2026-104528 EXPLOITDB python VERIFIED
Novell Netware - NWFTPD RMD/RNFR/DELE Argument Parsing Buffer Overflow
by Abysssec
CVE-2010-3306 EXPLOITDB text VERIFIED
Weborf < 0.12.3 - Path Traversal via URI ..%2f Sequences
Directory traversal vulnerability in the modURL function in instance.c in Weborf before 0.12.3 allows remote attackers to read arbitrary files via ..%2f sequences in a URI.
by Rew
CVE-2010-3325 EXPLOITDB html VERIFIED
Microsoft Internet Explorer 6-8 - Info Disclosure
Microsoft Internet Explorer 6 through 8 does not properly handle unspecified special characters in Cascading Style Sheets (CSS) documents, which allows remote attackers to obtain sensitive information from a different (1) domain or (2) zone via a crafted web site, aka "CSS Special Character Information Disclosure Vulnerability."
by Chris Evans
CVE-2010-2703 EXPLOITDB python VERIFIED
HP OpenView Network Node Manager <7.53 - Buffer Overflow
Stack-based buffer overflow in the execvp_nc function in the ov.dll module in HP OpenView Network Node Manager (OV NNM) 7.51 and 7.53, when running on Windows, allows remote attackers to execute arbitrary code via a long HTTP request to webappmon.exe.
by Abysssec
EIP-2026-114860 EXPLOITDB python VERIFIED
Adobe Acrobat and Reader 9.3.4 - 'acroform_PlugInMain' Memory Corruption
by ITSecTeam