Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
CVE-2010-5083 EXPLOITDB text
PHP-Nuke Web_Links Module - SQL Injection via URL Parameter
SQL injection vulnerability in the Web_Links module for PHP-Nuke 8.0 allows remote attackers to execute arbitrary SQL commands via the url parameter in an Add action to modules.php.
by ITSecTeam
EIP-2026-109018 EXPLOITDB php
kleeja 1.0.0RC6 - Database Disclosure
by indoushka
EIP-2026-108607 EXPLOITDB text VERIFIED
Joomla! Component com_yellowpages - SQL Injection
by al bayraqim
CVE-2010-1173 EXPLOITDB python VERIFIED
Linux Kernel < 2.6.33.3 - Denial of Service via SCTPChunkInit Packet with Invalid Parameters
The sctp_process_unk_param function in net/sctp/sm_make_chunk.c in the Linux kernel 2.6.33.3 and earlier, when SCTP is enabled, allows remote attackers to cause a denial of service (system crash) via an SCTPChunkInit packet containing multiple invalid parameters that require a large amount of error data.
by Jon Oberheide
CVE-2010-4922 EXPLOITDB text VERIFIED
Allinta CMS 22.07.2010 - SQL Injection
Multiple SQL injection vulnerabilities in Allinta CMS 22.07.2010 allow remote attackers to execute arbitrary SQL commands via the i parameter in an edit action to (1) contentAE.asp or (2) templatesAE.asp.
by High-Tech Bridge SA
CVE-2010-20123 EXPLOITDB HIGH python VERIFIED
Steinberg MyMP3Player <3.0.0.67 - Buffer Overflow
Steinberg MyMP3Player version 3.0 (build 3.0.0.67) is vulnerable to a stack-based buffer overflow when parsing .m3u playlist files. The application fails to properly validate the length of input data within the playlist, allowing a specially crafted file to overwrite critical memory structures and execute arbitrary code. This vulnerability can be exploited locally by convincing a user to open a malicious .m3u file.
by Oh Yaw Theng
EIP-2026-118241 EXPLOITDB html VERIFIED
Advanced File Vault - 'eSellerateControl350.dll' ActiveX HeapSpray
by ThE g0bL!N
EIP-2026-115243 EXPLOITDB perl
ffdshow Video Codec - Denial of Service
by Nishant Das Patnaik
CVE-2010-3029 EXPLOITDB php VERIFIED
phpkick 0.8 - SQL Injection via Gameday Parameter
SQL injection vulnerability in statistics.php in PHPKick 0.8 allows remote attackers to execute arbitrary SQL commands via the gameday parameter in an overview action.
by garwga
EIP-2026-117610 EXPLOITDB c VERIFIED
Mini-stream Ripper 3.1.2.1 - Local Buffer Overflow (DEP Bypass)
by fl0 fl0w
CVE-2004-0397 EXPLOITDB ruby VERIFIED
Subversion <= 1.0.2 - Remote Code Execution via DAV2 REPORT Query or get-dated-rev Command
Stack-based buffer overflow during the apr_time_t data conversion in Subversion 1.0.2 and earlier allows remote attackers to execute arbitrary code via a (1) DAV2 REPORT query or (2) get-dated-rev svn-protocol command.
by Metasploit
CVE-2010-3027 EXPLOITDB text VERIFIED
Tycoon Baseball Script 1.0.9 - SQL Injection
SQL injection vulnerability in index.php in Tycoon Baseball Script 1.0.9 allows remote attackers to execute arbitrary SQL commands via the game_id parameter in a game_player action.
by Silic0n
EIP-2026-108810 EXPLOITDB text
Joomla! Component NeoRecruit 1.4 - SQL Injection
by v3n0m
CVE-2010-0361 EXPLOITDB ruby VERIFIED
Sun Java System Web Server 7.0 Update 7 - Stack-Based Buffer Overflow via WebDAV OPTIONS Request
Stack-based buffer overflow in the WebDAV implementation in webservd in Sun Java System Web Server (aka SJWS) 7.0 Update 7 allows remote attackers to cause a denial of service (daemon crash) and possibly have unspecified other impact via a long URI in an HTTP OPTIONS request.
by Metasploit
CVE-2002-1643 EXPLOITDB ruby VERIFIED
RealNetworks Helix Universal Server 9.0.2.768 - Remote Code Execution via RTSP/HTTP Request Buffer Overflow
Multiple buffer overflows in RealNetworks Helix Universal Server 9.0 (9.0.2.768) allow remote attackers to execute arbitrary code via (1) a long Transport field in a SETUP RTSP request, (2) a DESCRIBE RTSP request with a long URL argument, or (3) two simultaneous HTTP GET requests with long arguments.
by Metasploit
EIP-2026-103173 EXPLOITDB html VERIFIED
Nagios XI - Multiple Cross-Site Request Forgery Vulnerabilities
by Adam Baldwin
CVE-2010-2939 EXPLOITDB text VERIFIED
OpenSSL <1.0.0a-0.9.7 - Use After Free
Double free vulnerability in the ssl3_get_key_exchange function in the OpenSSL client (ssl/s3_clnt.c) in OpenSSL 1.0.0a, 0.9.8, 0.9.7, and possibly other versions, when using ECDH, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted private key with an invalid prime. NOTE: some sources refer to this as a use-after-free issue.
by Georgi Guninski
CVE-2010-2482 EXPLOITDB text VERIFIED
libtiff < 3.9.4 - Denial of Service via Invalid td_stripbytecount Field
LibTIFF 3.9.4 and earlier does not properly handle an invalid td_stripbytecount field, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted TIFF file, a different vulnerability than CVE-2010-2443.
by Tomas Hoger
CVE-2004-2466 EXPLOITDB ruby VERIFIED
Easy Chat Server 1.2 and 2.2 - Denial of Service via Long Username Parameter
chat.ghp in Easy Chat Server 1.2 allows remote attackers to cause a denial of service (server crash) via a long username parameter, possibly due to a buffer overflow. NOTE: it was later reported that 2.2 is also affected.
by Metasploit
CVE-2010-2739 EXPLOITDB c VERIFIED
Microsoft Windows - Buffer Overflow
Buffer overflow in the CreateDIBPalette function in win32k.sys in Microsoft Windows XP SP3, Server 2003 R2 Enterprise SP2, Vista Business SP1, Windows 7, and Server 2008 SP2 allows local users to cause a denial of service (crash) and possibly execute arbitrary code by performing a clipboard operation (GetClipboardData API function) with a crafted bitmap with a palette that contains a large number of colors.
by Arkon
EIP-2026-111461 EXPLOITDB text VERIFIED
Prado Portal 1.2 - 'page' Cross-Site Scripting
by High-Tech Bridge SA
EIP-2026-108304 EXPLOITDB text VERIFIED
Joomla! Component com_cgtestimonial 2.2 - Multiple Vulnerabilities
by Salvatore Fresta
EIP-2026-106360 EXPLOITDB text VERIFIED
Dataface 1.0 - 'admin.php' Cross-Site Scripting
by MustLive
CVE-2010-3026 EXPLOITDB html
Tomaz Muraus Open Blog 1.2.1 - CSRF
Cross-site request forgery (CSRF) vulnerability in application/modules/admin/controllers/users.php in Tomaz Muraus Open Blog 1.2.1, and possibly earlier, allows remote attackers to hijack the authentication of administrators for requests to admin/users/edit that grant administrative privileges.
by High-Tech Bridge SA
EIP-2026-115610 EXPLOITDB python VERIFIED
MediaMonkey 3.2.1.1297 - Denial of Service (PoC)
by anonymous