Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
CVE-2003-0349 EXPLOITDB ruby VERIFIED
Microsoft Windows Media Services <5.0 - RCE
Buffer overflow in the streaming media component for logging multicast requests in the ISAPI for the logging capability of Microsoft Windows Media Services (nsiislog.dll), as installed in IIS 5.0, allows remote attackers to execute arbitrary code via a large POST request to nsiislog.dll.
by Metasploit
CVE-2007-1748 EXPLOITDB ruby VERIFIED
Windows 2000 Server SP4 and Server 2003 SP1/SP2 - Remote Code Execution via DNS RPC Zone Name Overflow
Stack-based buffer overflow in the RPC interface in the Domain Name System (DNS) Server Service in Microsoft Windows 2000 Server SP 4, Server 2003 SP 1, and Server 2003 SP 2 allows remote attackers to execute arbitrary code via a long zone name containing character constants represented by escape sequences.
by Metasploit
CVE-2007-0774 EXPLOITDB ruby VERIFIED
Apache Tomcat JK Web Server Connector <1.2.21 - RCE
Stack-based buffer overflow in the map_uri_to_worker function (native/common/jk_uri_worker_map.c) in mod_jk.so for Apache Tomcat JK Web Server Connector 1.2.19 and 1.2.20, as used in Tomcat 4.1.34 and 5.5.20, allows remote attackers to execute arbitrary code via a long URL that triggers the overflow in a URI worker map routine.
by Metasploit
CVE-1999-0209 EXPLOITDB ruby VERIFIED
SunOS - Unauthenticated Arbitrary File Read via SunView Selection Service
The SunView (SunTools) selection_svc facility allows remote users to read files.
by Metasploit
CVE-2005-1921 EXPLOITDB ruby VERIFIED
PEAR XML_RPC < 1.3.0 and PHPXMLRPC < 1.1 - Remote Code Execution via Unsanitized XML Input
Eval injection vulnerability in PEAR XML_RPC 1.3.0 and earlier (aka XML-RPC or xmlrpc) and PHPXMLRPC (aka XML-RPC For PHP or php-xmlrpc) 1.1 and earlier, as used in products such as (1) WordPress, (2) Serendipity, (3) Drupal, (4) egroupware, (5) MailWatch, (6) TikiWiki, (7) phpWebSite, (8) Ampache, and others, allows remote attackers to execute arbitrary PHP code via an XML file, which is not properly sanitized before being used in an eval statement.
by Metasploit
EIP-2026-114406 EXPLOITDB text VERIFIED
XAOS CMS - SQL Injection
by H-SK33PY
EIP-2026-113402 EXPLOITDB text
WhiteBoard 0.1.30 - Multiple Blind SQL Injections
by Salvatore Fresta
CVE-2005-0511 EXPLOITDB ruby VERIFIED
vBulletin <= 3.0.6 - Remote Code Execution via Template Parameter
misc.php for vBulletin 3.0.6 and earlier, when "Add Template Name in HTML Comments" is enabled, allows remote attackers to execute arbitrary PHP code via nested variables in the template parameter.
by Metasploit
CVE-2006-4602 EXPLOITDB ruby VERIFIED
TikiWiki < 1.9.4 - Unauthenticated Arbitrary File Upload via jhot.php
Unrestricted file upload vulnerability in jhot.php in TikiWiki 1.9.4 Sirius and earlier allows remote attackers to execute arbitrary PHP code via a filepath parameter that contains a filename with a .php extension, which is uploaded to the img/wiki/ directory.
by Metasploit
CVE-2005-2733 EXPLOITDB ruby VERIFIED
Simple PHP Blog - Remote Code Execution via Unrestricted File Upload
upload_img_cgi.php in Simple PHP Blog (SPHPBlog) does not properly restrict file extensions of uploaded files, which could allow remote attackers to execute arbitrary code.
by Metasploit
EIP-2026-109367 EXPLOITDB text VERIFIED
MC Content Manager 10.1 - SQL Injection / Cross-Site Scripting
by MustLive
EIP-2026-105973 EXPLOITDB text VERIFIED
CMS Ignition - SQL Injection
by neavorc
EIP-2026-105383 EXPLOITDB text VERIFIED
Ballettin Forum - SQL Injection
by 3v0
EIP-2026-117460 EXPLOITDB perl VERIFIED
Mediacoder 0.7.3.4682 - '.m3u' Universal Buffer Overflow
by s-dz
EIP-2026-112995 EXPLOITDB text VERIFIED
vBulletin 3.8.6 - 'faq.php' Information Disclosure
by H-SK33PY
CVE-2010-2926 EXPLOITDB text VERIFIED
sNews 1.7 - SQL Injection via Category Parameter
SQL injection vulnerability in index.php in sNews 1.7 allows remote attackers to execute arbitrary SQL commands via the category parameter.
by CoBRa_21
EIP-2026-112262 EXPLOITDB text VERIFIED
sNews - 'index.php' SQL Injection
by MajoR
EIP-2026-110233 EXPLOITDB text VERIFIED
Open Realty 2.x/3.x - Persistent Cross-Site Scripting
by K053
CVE-2010-2923 EXPLOITDB text
YouTube (com_youtube) 1.5 - SQL Injection
SQL injection vulnerability in the YouTube (com_youtube) component 1.5 for Joomla! allows remote attackers to execute arbitrary SQL commands via the id_cate parameter to index.php.
by Forza-Dz
CVE-2010-2910 EXPLOITDB text
Ozio Gallery - Joomla! <SQL Injection>
SQL injection vulnerability in the Ozio Gallery (com_oziogallery) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter to index.php.
by ViRuS Qalaa
CVE-2010-2908 EXPLOITDB text VERIFIED
com_joomdle < 0.24 - SQL Injection via course_id Parameter
SQL injection vulnerability in the Joomdle (com_joomdle) component 0.24 and earlier for Joomla! allows remote attackers to execute arbitrary SQL commands via the course_id parameter in a detail action to index.php.
by kaMtiEz
EIP-2026-108382 EXPLOITDB text VERIFIED
Joomla! Component com_itarmory - SQL Injection
by Craw
EIP-2026-106477 EXPLOITDB text
DM FileManager 3.9.11 - Arbitrary File Upload
by eidelweiss
CVE-2010-2922 EXPLOITDB text VERIFIED
AKY Blog - SQL Injection via id Parameter
SQL injection vulnerability in default.asp in AKY Blog allows remote attackers to execute arbitrary SQL commands via the id parameter.
by v0calist
CVE-2010-3187 EXPLOITDB c VERIFIED
IBM AIX < 5.3 - Remote Code Execution via Long NLST Command
Buffer overflow in ftpd in IBM AIX 5.3 and earlier allows remote attackers to execute arbitrary code via a long NLST command.
by kingcope