Exploitdb Exploits
50,095 exploits tracked across all sources.
DD-WRT < 24 - Remote Code Execution via CGI-BIN URI Shell Metacharacters
httpd.c in httpd in the management GUI in DD-WRT 24 sp1, and other versions before build 12533, allows remote attackers to execute arbitrary commands via shell metacharacters in a request to a cgi-bin/ URI.
by Metasploit
IBM Advanced Management Module < 2.48 - Authenticated Path Traversal via DIR Parameter
Directory traversal vulnerability in private/file_management.php on the IBM BladeCenter with Advanced Management Module (AMM) firmware build ID BPET48L, and possibly other versions before 4.7 and 5.0, allows remote authenticated users to list arbitrary directories and possibly have unspecified other impact via a .. (dot dot) in the DIR parameter.
by Alexey Sintsov
IBM BladeCenter AMM <4.7 and 5.0 - XSS
Multiple cross-site scripting (XSS) vulnerabilities on the IBM BladeCenter with Advanced Management Module (AMM) firmware build ID BPET48L, and possibly other versions before 4.7 and 5.0, allow remote attackers to inject arbitrary web script or HTML via the (1) INDEX or (2) IPADDR parameter to private/cindefn.php, (3) the domain parameter to private/power_management_policy_options.php, the slot parameter to (4) private/pm_temp.php or (5) private/power_module.php, (6) the WEBINDEX parameter to private/blade_leds.php, or (7) the SLOT parameter to private/ipmi_bladestatus.php.
by Alexey Sintsov
Sun Java Web Server 7.0 u7 - Admin Interface Denial of Service
by muts
sandbox 2.0.3 - Multiple Vulnerabilities
by Salvatore Fresta
PsNews 1.3 - SQL Injection via id Parameter
Multiple SQL injection vulnerabilities in PsNews 1.3 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) ndetail.php and (2) print.php.
by S.W.T
PreProject Multi-Vendor Shopping Malls - SQL Injection / Authentication Bypass
by **RoAd_KiLlEr**
NTSOFT BBS E-Market Professional - Multiple Cross-Site Scripting Vulnerabilities (2)
by Ivan Sanchez
RightInPoint Lyrics Script 3.0 - SQL Injection
SQL injection vulnerability in index.php in RightInPoint Lyrics Script 3.0 allows remote attackers to execute arbitrary SQL commands via the artist_id parameter in an addalbum action.
by Sid3^effects
NeoRecruit 1.6.4 - SQL Injection via Itemid Parameter
SQL injection vulnerability in the NeoRecruit (com_neorecruit) component 1.6.4 for Joomla! allows remote attackers to execute arbitrary SQL commands via the Itemid parameter in an offer_view action to index.php, a different vector than CVE-2007-4506.
by Sid3^effects
Joomla! AutarTimonial 1.0.8 - SQL Injection
SQL injection vulnerability in the AutarTimonial (com_autartimonial) component 1.0.8 for Joomla! allows remote attackers to execute arbitrary SQL commands via the limit parameter in an autartimonial action to index.php. NOTE: some of these details are obtained from third party information.
by Sid3^effects
IBM Advanced Management Module < 2.48 - Unauthenticated Sensitive Information Exposure via Direct Request
The IBM BladeCenter with Advanced Management Module (AMM) firmware build ID BPET48L, and possibly other versions before 4.7 and 5.0, stores sensitive information under the web root with insufficient access control, which allows remote attackers to download (1) logs or (2) core files via direct requests, as demonstrated by a request for private/sdc.tgz.
by Alexey Sintsov
i-Net Solution Matrimonial Script 2.0.3 - 'alert.php' Cross-Site Scripting
by Andrea Bocchetti
BS Events Directory - 'articlesdetails.php' SQL Injection
by Easy Laster
BS Classifieds Ads - 'articlesdetails.php' SQL Injection
by Easy Laster
BrotherScripts Business Directory - SQL Injection via articlesdetails.php id Parameter
SQL injection vulnerability in articlesdetails.php in BrotherScripts (BS) Business Directory allows remote attackers to execute arbitrary SQL commands via the id parameter.
by Easy Laster
BS Auto Classifieds - 'info.php' SQL Injection
by Easy Laster
BrotherScripts Auto Dealer - SQL Injection via info.php id Parameter
SQL injection vulnerability in info.php in BrotherScripts (BS) and ScriptsFeed Auto Dealer allows remote attackers to execute arbitrary SQL commands via the id parameter.
by Easy Laster
Auction_Software Script - Admin Authentication Bypass
by ALTBTA
EvoLogical EvoCam 3.6.6-3.6.7 - Remote Code Execution via Long GET Request
Buffer overflow in the web server for EvoLogical EvoCam 3.6.6 and 3.6.7 allows remote attackers to execute arbitrary code via a long GET request.
by d1dn0t
Unreal Engine 2.5 - 'UpdateConnectingMessage()' Remote Stack Buffer Overflow (PoC)
by Luigi Auriemma
UFO: Alien Invasion 2.2.1 (Windows 7) - Remote Buffer Overflow (ASLR + DEP Bypass)
by Node
By Source