Exploitdb Exploits
50,095 exploits tracked across all sources.
CMS Source - Multiple Input Validation Vulnerabilities
by High-Tech Bridge SA
Microsoft Windows 2000 SP4 through Vista - Remote Code Execution via Animated Cursor RIFF File
Stack-based buffer overflow in the animated cursor code in Microsoft Windows 2000 SP4 through Vista allows remote attackers to execute arbitrary code or cause a denial of service (persistent reboot) via a large length value in the second (or later) anih block of a RIFF .ANI, cur, or .ico file, which results in memory corruption when processing cursors, animated cursors, and icons, a variant of CVE-2005-0416, as originally demonstrated using Internet Explorer 6 and 7. NOTE: this might be a duplicate of CVE-2007-1765; if so, then CVE-2007-0038 should be preferred.
by Metasploit
Mediacoder 0.7.5.4710 - 'Universal' Local Buffer Overflow (SEH)
by Dr_IDE
Sonique 2.0 - '.xpl' Remote Stack Buffer Overflow
by Hamza_hack_dz & Black-liondz1
CombiWave Lite 4.0.1.4 - Denial of Service
by Oh Yaw Theng
Dave Robinson Rockbandcms - SQL Injection
Multiple SQL injection vulnerabilities in news.php in Rock Band CMS 0.10 allow remote attackers to execute arbitrary SQL commands via the (1) year and (2) id parameters.
by Affix
Kleeja Upload - Cross-Site Request Forgery (Change Admin Password)
by KOLTN S
ServletExec - Directory Traversal / Authentication Bypass
by Stefano Di Paola
Computer Associates Oneview Monitor 6.0 - 'doSave.jsp' Remote Code Execution
by Giorgio Fedon
Portable Document Format - Specification Signature Collision
by Florian Zumbiehl
EasyFTP Server 1.7.0.11 - (Authenticated) Multiple Commands Remote Buffer Overflows
by Glafkos Charalambous
Mediacoder 0.7.5.4710 - Local Buffer Overflow
by anonymous
RightMark Audio Analyzer 6.2.3 - Denial of Service
by Oh Yaw Theng
Microsoft Windows Live Messenger 14.0.8117 - Animation Remote Denial of Service
by TheLeader
Saurus CMS 4.7.0 - Remote Code Execution via Class Path Parameter
Multiple PHP remote file inclusion vulnerabilities in Saurus CMS 4.7.0 allow remote attackers to execute arbitrary PHP code via a URL in the class_path parameter to (1) file.php or (2) com_del.php.
by LoSt.HaCkEr
MybbCentral TagCloud 2.0 - 'Topic' HTML Injection
by 3ethicalhackers.com
KnowledgeTree 3.5.2 Community Edition - Persistent Cross-Site Scripting
by fdiskyou
clearBudget 0.9.8 - Remote Code Execution via actionPath Parameter
PHP remote file inclusion vulnerability in logic/controller.class.php in clearBudget 0.9.8 allows remote attackers to execute arbitrary PHP code via a URL in the actionPath parameter. NOTE: this issue has been disputed by a reliable third party
by Offensive
RSP MP3 Player - OCX ActiveX Buffer Overflow HeapSpray
by Madjix
By Source