Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
CVE-2009-2765 EXPLOITDB ruby VERIFIED
DD-WRT < 24 - Remote Code Execution via CGI-BIN URI Shell Metacharacters
httpd.c in httpd in the management GUI in DD-WRT 24 sp1, and other versions before build 12533, allows remote attackers to execute arbitrary commands via shell metacharacters in a request to a cgi-bin/ URI.
by Metasploit
CVE-2010-2655 EXPLOITDB text VERIFIED
IBM Advanced Management Module < 2.48 - Authenticated Path Traversal via DIR Parameter
Directory traversal vulnerability in private/file_management.php on the IBM BladeCenter with Advanced Management Module (AMM) firmware build ID BPET48L, and possibly other versions before 4.7 and 5.0, allows remote authenticated users to list arbitrary directories and possibly have unspecified other impact via a .. (dot dot) in the DIR parameter.
by Alexey Sintsov
CVE-2010-2654 EXPLOITDB text VERIFIED
IBM BladeCenter AMM <4.7 and 5.0 - XSS
Multiple cross-site scripting (XSS) vulnerabilities on the IBM BladeCenter with Advanced Management Module (AMM) firmware build ID BPET48L, and possibly other versions before 4.7 and 5.0, allow remote attackers to inject arbitrary web script or HTML via the (1) INDEX or (2) IPADDR parameter to private/cindefn.php, (3) the domain parameter to private/power_management_policy_options.php, the slot parameter to (4) private/pm_temp.php or (5) private/power_module.php, (6) the WEBINDEX parameter to private/blade_leds.php, or (7) the SLOT parameter to private/ipmi_bladestatus.php.
by Alexey Sintsov
EIP-2026-118906 EXPLOITDB python
minerCPP 0.4b - Remote Buffer Overflow / Format String
by l3D
EIP-2026-116346 EXPLOITDB text VERIFIED
Sun Java Web Server 7.0 u7 - Admin Interface Denial of Service
by muts
EIP-2026-111887 EXPLOITDB text VERIFIED
sandbox 2.0.3 - Multiple Vulnerabilities
by Salvatore Fresta
CVE-2010-2716 EXPLOITDB text
PsNews 1.3 - SQL Injection via id Parameter
Multiple SQL injection vulnerabilities in PsNews 1.3 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) ndetail.php and (2) print.php.
by S.W.T
EIP-2026-111493 EXPLOITDB text VERIFIED
PreProject Multi-Vendor Shopping Malls - SQL Injection / Authentication Bypass
by **RoAd_KiLlEr**
EIP-2026-109974 EXPLOITDB text VERIFIED
NTSOFT BBS E-Market Professional - Multiple Cross-Site Scripting Vulnerabilities (2)
by Ivan Sanchez
CVE-2010-2721 EXPLOITDB text VERIFIED
RightInPoint Lyrics Script 3.0 - SQL Injection
SQL injection vulnerability in index.php in RightInPoint Lyrics Script 3.0 allows remote attackers to execute arbitrary SQL commands via the artist_id parameter in an addalbum action.
by Sid3^effects
CVE-2010-4995 EXPLOITDB text
NeoRecruit 1.6.4 - SQL Injection via Itemid Parameter
SQL injection vulnerability in the NeoRecruit (com_neorecruit) component 1.6.4 for Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter in an offer_view action to index.php, a different vector than CVE-2007-4506.
by Sid3^effects
CVE-2010-5003 EXPLOITDB text VERIFIED
Joomla! AutarTimonial 1.0.8 - SQL Injection
SQL injection vulnerability in the AutarTimonial (com_autartimonial) component 1.0.8 for Joomla! allows remote attackers to execute arbitrary SQL commands via the limit parameter in an autartimonial action to index.php. NOTE: some of these details are obtained from third party information.
by Sid3^effects
CVE-2010-2656 EXPLOITDB text VERIFIED
IBM Advanced Management Module < 2.48 - Unauthenticated Sensitive Information Exposure via Direct Request
The IBM BladeCenter with Advanced Management Module (AMM) firmware build ID BPET48L, and possibly other versions before 4.7 and 5.0, stores sensitive information under the web root with insufficient access control, which allows remote attackers to download (1) logs or (2) core files via direct requests, as demonstrated by a request for private/sdc.tgz.
by Alexey Sintsov
EIP-2026-107700 EXPLOITDB text VERIFIED
i-Net Solution Matrimonial Script 2.0.3 - 'alert.php' Cross-Site Scripting
by Andrea Bocchetti
EIP-2026-105627 EXPLOITDB text VERIFIED
BS Events Directory - 'articlesdetails.php' SQL Injection
by Easy Laster
EIP-2026-105626 EXPLOITDB text VERIFIED
BS Classifieds Ads - 'articlesdetails.php' SQL Injection
by Easy Laster
CVE-2010-4969 EXPLOITDB text VERIFIED
BrotherScripts Business Directory - SQL Injection via articlesdetails.php id Parameter
SQL injection vulnerability in articlesdetails.php in BrotherScripts (BS) Business Directory allows remote attackers to execute arbitrary SQL commands via the id parameter.
by Easy Laster
EIP-2026-105623 EXPLOITDB text VERIFIED
BS Auto Classifieds - 'info.php' SQL Injection
by Easy Laster
EIP-2026-105621 EXPLOITDB text VERIFIED
BS Auction - SQL Injection
by Easy Laster
CVE-2010-4974 EXPLOITDB text
BrotherScripts Auto Dealer - SQL Injection via info.php id Parameter
SQL injection vulnerability in info.php in BrotherScripts (BS) and ScriptsFeed Auto Dealer allows remote attackers to execute arbitrary SQL commands via the id parameter.
by Easy Laster
EIP-2026-105296 EXPLOITDB text VERIFIED
Auction_Software Script - Admin Authentication Bypass
by ALTBTA
CVE-2010-2309 EXPLOITDB python VERIFIED
EvoLogical EvoCam 3.6.6-3.6.7 - Remote Code Execution via Long GET Request
Buffer overflow in the web server for EvoLogical EvoCam 3.6.6 and 3.6.7 allows remote attackers to execute arbitrary code via a long GET request.
by d1dn0t
EIP-2026-103689 EXPLOITDB text VERIFIED
Unreal Engine 2.5 - 'UpdateConnectingMessage()' Remote Stack Buffer Overflow (PoC)
by Luigi Auriemma
EIP-2026-119230 EXPLOITDB python VERIFIED
UFO: Alien Invasion 2.2.1 (Windows 7) - Remote Buffer Overflow (ASLR + DEP Bypass)
by Node
EIP-2026-117898 EXPLOITDB text VERIFIED
SasCam 2.7 - ActiveX Head Buffer Overflow
by blake