Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-118474 EXPLOITDB python VERIFIED
Easy FTP 1.7.0.11 - 'NLST' / 'NLST -al' / 'APPE' / 'RETR' / 'SIZE' / 'XCWD' Remote Buffer Overflow
by Rabih Mohsen
EIP-2026-118262 EXPLOITDB text VERIFIED
AoA Audio Extractor - Remote ActiveX SEH JIT Spray (ASLR + DEP Bypass)
by Dr_IDE
CVE-2010-2554 EXPLOITDB HIGH text VERIFIED
Microsoft Windows Vista/Server 2008/7 Privilege Escalation via Registry Key ACL Misconfiguration
The Tracing Feature for Services in Microsoft Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 has incorrect ACLs on its registry keys, which allows local users to gain privileges via vectors involving a named pipe and impersonation, aka "Tracing Registry Key ACL Vulnerability."
by Cesar Cerrudo
CVSS 7.8
EIP-2026-116197 EXPLOITDB python VERIFIED
Rosoft Media Player 4.4.4 - Buffer Overflow (SEH) (PoC)
by anonymous
EIP-2026-115879 EXPLOITDB python VERIFIED
Mthree Development MP3 to WAV Decoder - Denial of Service
by Oh Yaw Theng
CVE-2010-1897 EXPLOITDB text VERIFIED
Windows Kernel win32k.sys - Privilege Escalation via Pseudo-Handle Validation Bypass
The Windows kernel-mode drivers in win32k.sys in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 do not properly validate pseudo-handle values in callback parameters during window creation, which allows local users to gain privileges via a crafted application, aka "Win32k Window Creation Vulnerability."
by Core Security
CVE-2010-1894 EXPLOITDB c
Windows XP SP2-SP3 and Windows Server 2003 SP2 - Privilege Escalation via Win32k Exception Handling
The Windows kernel-mode drivers in win32k.sys in Microsoft Windows XP SP2 and SP3, and Windows Server 2003 SP2, do not properly handle unspecified exceptions, which allows local users to gain privileges via a crafted application, aka "Win32k Exception Handling Vulnerability."
by MJ0011
CVE-2010-2561 EXPLOITDB python VERIFIED
Microsoft XML Core Services 3.0 - Remote Code Execution via Crafted HTTP Response
Microsoft XML Core Services (aka MSXML) 3.0 does not properly handle HTTP responses, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted response, aka "Msxml2.XMLHTTP.3.0 Response Handling Memory Corruption Vulnerability."
by Skylined
CVE-2010-2550 EXPLOITDB python VERIFIED
Microsoft Windows SMB Server - Remote Code Execution via Crafted SMB Packet
The SMB Server in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 does not properly validate fields in an SMB request, which allows remote attackers to execute arbitrary code via a crafted SMB packet, aka "SMB Pool Overflow Vulnerability."
by laurent gaffie
EIP-2026-112535 EXPLOITDB text VERIFIED
SyntaxCMS - 'rows_per_page' SQL Injection
by High-Tech Bridge SA
EIP-2026-110209 EXPLOITDB html VERIFIED
Onyx - Multiple Cross-Site Scripting Vulnerabilities
by High-Tech Bridge SA
CVE-2009-4869 EXPLOITDB text VERIFIED
Nasim Guest Book 1.2 - Cross-Site Scripting via Page Parameter
Cross-site scripting (XSS) vulnerability in index.php in Nasim Guest Book 1.2 allows remote attackers to inject arbitrary web script or HTML via the page parameter.
by Moudi
EIP-2026-109806 EXPLOITDB html VERIFIED
Mystic 0.1.4 - Multiple Cross-Site Scripting Vulnerabilities
by High-Tech Bridge SA
CVE-2010-4941 EXPLOITDB text VERIFIED
com_teams 1_1028_100809_1711 - SQL Injection via PlayerID Parameter
SQL injection vulnerability in the Teams (com_teams) component 1_1028_100809_1711 for Joomla! allows remote attackers to execute arbitrary SQL commands via the PlayerID parameter in a player save action to index.php.
by Salvatore Fresta
CVE-2010-4937 EXPLOITDB text VERIFIED
Amblog 1.0 for Joomla! - SQL Injection via articleid or catid Parameter
Multiple SQL injection vulnerabilities in the Amblog (com_amblog) component 1.0 for Joomla! allow remote attackers to execute arbitrary SQL commands via the (1) articleid or (2) catid parameter to index.php.
by Salvatore Fresta
EIP-2026-104513 EXPLOITDB html
Zendesk - Multiple Vulnerabilities
by Luis Santana
EIP-2026-104050 EXPLOITDB text VERIFIED
Play! Framework 1.0.3.1 - Directory Traversal
by kripthor
EIP-2026-118400 EXPLOITDB html VERIFIED
dBpowerAMP Audio Player 2 - 'FileExists' ActiveX Buffer Overflow
by s-dz
CVE-2009-4962 EXPLOITDB python VERIFIED
Fat Player 0.6b - Remote Code Execution via Long String in WAV File
Stack-based buffer overflow in Fat Player 0.6b allows remote attackers to execute arbitrary code via a long string in a .wav file. NOTE: some of these details are obtained from third party information.
by Praveen Darshanam
EIP-2026-116501 EXPLOITDB python VERIFIED
Visual MP3 Splitter & Joiner 6.1 - Denial of Service
by Oh Yaw Theng
EIP-2026-116139 EXPLOITDB python VERIFIED
Quintessential Media Player 5.0.121 - '.m3u' Buffer Overflow
by Abhishek Lyall
EIP-2026-116119 EXPLOITDB python VERIFIED
QQ Computer Manager - 'TSKsp.sys' Local Denial of Service
by Lufeng Li
EIP-2026-114907 EXPLOITDB html VERIFIED
AoAAudioExtractor 2.0.0.0 - ActiveX (PoC) (SEH)
by s-dz
EIP-2026-113448 EXPLOITDB html VERIFIED
wizmall 6.4 - Cross-Site Request Forgery
by pyw1414
EIP-2026-111482 EXPLOITDB text VERIFIED
Preation Eden Platform 27.7.2010 - Multiple HTML Injection Vulnerabilities
by High-Tech Bridge SA