Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-119411 EXPLOITDB text VERIFIED
Outlook Web Access 2003 - Cross-Site Request Forgery
by anonymous
EIP-2026-118673 EXPLOITDB text VERIFIED
id Software id Tech 4 Engine - 'idGameLocal::GetGameStateObject()' Remote Code Execution
by Luigi Auriemma
CVE-2006-2439 EXPLOITDB perl VERIFIED
ZipCentral < 4.01 - Stack-based Buffer Overflow via Long Filename in ZIP Archive
Stack-based buffer overflow in ZipCentral 4.01 allows remote user-assisted attackers to execute arbitrary code via a ZIP archive containing a long filename.
by Jiten Pathy
EIP-2026-117808 EXPLOITDB python VERIFIED
QQPlayer - '.cue' File Buffer Overflow
by Lufeng Li
EIP-2026-117807 EXPLOITDB python VERIFIED
QQPlayer - '.asx' File Processing Buffer Overflow
by Li Qingshan
EIP-2026-111677 EXPLOITDB text VERIFIED
RapidLeech Scripts - Arbitrary File Upload
by H-SK33PY
EIP-2026-110330 EXPLOITDB text
OpenX - 'phpAdsNew' Remote File Inclusion
by ViRuS Qalaa
EIP-2026-107800 EXPLOITDB perl
Imagine-cms 2.50 - SQL Injection
by Metropolis
EIP-2026-103552 EXPLOITDB text VERIFIED
Monolith Lithtech Game Engine - Memory Corruption
by Luigi Auriemma
EIP-2026-119113 EXPLOITDB html
SapGUI BI 7100.1.400.8 - Heap Corruption
by Elazar Broad
CVE-2009-1136 EXPLOITDB ruby VERIFIED
Microsoft Office Web Components Spreadsheet ActiveX Control - Remote Code Execution via msDataSourceObject Method
The Microsoft Office Web Components Spreadsheet ActiveX control (aka OWC10 or OWC11), as distributed in Office XP SP3 and Office 2003 SP3, Office XP Web Components SP3, Office 2003 Web Components SP3, Office 2003 Web Components SP1 for the 2007 Microsoft Office System, Internet Security and Acceleration (ISA) Server 2004 SP3 and 2006 Gold and SP1, and Office Small Business Accounting 2006, when used in Internet Explorer, allows remote attackers to execute arbitrary code via a crafted call to the msDataSourceObject method, as exploited in the wild in July and August 2009, aka "Office Web Components HTML Script Vulnerability."
by Metasploit
EIP-2026-116462 EXPLOITDB text VERIFIED
Unreal Tournament 3 2.1 - 'STEAMBLOB' Remote Denial of Service
by Luigi Auriemma
EIP-2026-115757 EXPLOITDB html VERIFIED
Microsoft Outlook Web Access for Exchange Server 2003 - Cross-Site Request Forgery
by anonymous
EIP-2026-115724 EXPLOITDB text
Microsoft Internet Explorer 7 - Microsoft Clip Organizer Multiple Insecure ActiveX Control Denial of Service Vulnerabilities
by Beenu Arora
EIP-2026-115559 EXPLOITDB text VERIFIED
Lithtech Engine - Memory Corruption
by Luigi Auriemma
EIP-2026-110662 EXPLOITDB text VERIFIED
PHP Chat for 123 Flash Chat - Remote File Inclusion
by HaCkEr arar
EIP-2026-108549 EXPLOITDB text VERIFIED
Joomla! Component com_spa - SQL Injection (1)
by ALTBTA
EIP-2026-107004 EXPLOITDB html VERIFIED
EZ-osCommerce 3.1 - Arbitrary File Upload
by indoushka
CVE-2010-1205 EXPLOITDB CRITICAL c VERIFIED
libpng <1.2.44, <1.4.3 - Buffer Overflow
Buffer overflow in pngpread.c in libpng before 1.2.44 and 1.4.x before 1.4.3, as used in progressive applications, might allow remote attackers to execute arbitrary code via a PNG image that triggers an additional data row.
by kripthor
CVSS 9.8
CVE-2010-1214 EXPLOITDB text VERIFIED
Mozilla Firefox <3.5.11 & SeaMonkey <2.0.6 - RCE
Integer overflow in Mozilla Firefox 3.5.x before 3.5.11 and 3.6.x before 3.6.7, and SeaMonkey before 2.0.6, allows remote attackers to execute arbitrary code via plugin content with many parameter elements.
by J23
EIP-2026-100420 EXPLOITDB text VERIFIED
Mayasan Portal 2.0 - 'makaledetay.asp' SQL Injection
by v0calist
EIP-2026-100419 EXPLOITDB text VERIFIED
Mayasan Portal 2.0 - 'haberdetay.asp' SQL Injection
by CoBRa_21
EIP-2026-100181 EXPLOITDB text VERIFIED
Caner Hikaye Script - SQL Injection
by v0calist
EIP-2026-118632 EXPLOITDB ruby VERIFIED
Hero DVD - Remote Buffer Overflow (Metasploit)
by Madjix
EIP-2026-112279 EXPLOITDB text VERIFIED
SnowFlake CMS 0.9.5 Beta - 'uid' SQL Injection
by Dinesh Arora