Exploitdb Exploits
50,095 exploits tracked across all sources.
BarCodeWiz BarCode 3.29 ActiveX Control - Buffer Overflow via LoadProperties Method
Buffer overflow in BarCodeWiz BarCode 3.29 ActiveX control (BarcodeWiz.dll) allows remote attackers to execute arbitrary code via a long argument to the LoadProperties method.
by Dr_IDE
Joomla! Component com_spielothek 1.6.9 - Multiple Blind SQL Injections
by Salvatore Fresta
BarCodeWiz BarCode 3.29 ActiveX Control - Buffer Overflow via LoadProperties Method
Buffer overflow in BarCodeWiz BarCode 3.29 ActiveX control (BarcodeWiz.dll) allows remote attackers to execute arbitrary code via a long argument to the LoadProperties method.
by loneferret
BarCodeWiz BarCode 3.29 ActiveX Control - Buffer Overflow via LoadProperties Method
Buffer overflow in BarCodeWiz BarCode 3.29 ActiveX control (BarcodeWiz.dll) allows remote attackers to execute arbitrary code via a long argument to the LoadProperties method.
by loneferret
Sourcefabric Campsite - Multiple Cross-Site Scripting Vulnerabilities
by High-Tech Bridge SA
HTML Email Creator 2.42 build 718 - Local Buffer Overflow (SEH)
by Madjix
Joomla! Component com_SimpleShop - SQL Injection
by UnD3rGr0unD W4rri0rZ
Joomla! Component com_pbbooking 1.0.4_3 - Multiple Blind SQL Injections
by Salvatore Fresta
Joomla! Component com_beamospetition - SQL Injection
by Forza-Dz
WM Downloader 3.1.2.2 - Buffer Overflow
WM Downloader version 3.1.2.2 is vulnerable to a buffer overflow when processing a specially crafted .m3u playlist file. The application fails to properly validate input length, allowing an attacker to overwrite structured exception handler (SEH) records and execute arbitrary code. Exploitation occurs locally when a user opens the malicious file, and the payload executes with the privileges of the current user.
by fdiskyou
UPlusFTP Server 1.7.1.01 - (Authenticated) HTTP Remote Buffer Overflow
by Karn Ganeshen & corelanc0d3r
Zemana AntiLogger 'AntiLog32.sys' 1.5.2.755 - Local Privilege Escalation
by th_decoder
Apache Tomcat 4.1.0-4.1.37, 5.5.0-5.5.26, 6.0.0-6.0.16 - Directory Traversal via Encoded URI Sequences
Directory traversal vulnerability in Apache Tomcat 4.1.0 through 4.1.37, 5.5.0 through 5.5.26, and 6.0.0 through 6.0.16, when allowLinking and UTF-8 are enabled, allows remote attackers to read arbitrary files via encoded directory traversal sequences in the URI, a different vulnerability than CVE-2008-2370. NOTE: versions earlier than 6.0.18 were reported affected, but the vendor advisory lists 6.0.16 as the last affected version.
by mywisdom
Joomla! Component com_photomapgallery 1.6.0 - Multiple Blind SQL Injections
by Salvatore Fresta
Cetera eCommerce - Multiple Cross-Site Scripting / HTML Injection Vulnerabilities
by MustLive
AV Scripts AV Arcade 3 - SQL Injection
SQL injection vulnerability in AV Scripts AV Arcade 3 allows remote attackers to execute arbitrary SQL commands via the ava_code cookie to the "main page," related to index.php and the login task.
by saudi0hacker
KVIrc 3.x-4.x - Authenticated Arbitrary CTCP Command Execution via Backslash Handling
The IRC Protocol component in KVIrc 3.x and 4.x before r4693 does not properly handle \ (backslash) characters, which allows remote authenticated users to execute arbitrary CTCP commands via vectors involving \r and \40 sequences, a different vulnerability than CVE-2010-2451 and CVE-2010-2452.
by unic0rn
By Source