Google Security Research

1,215 exploits Active since May 2013
CVE-2015-7047 EXPLOITDB c WORKING POC
Apple Watchos < 2.0 - Improper Input Validation
The kernel in Apple iOS before 9.2, OS X before 10.11.2, tvOS before 9.1, and watchOS before 2.1 allows local users to gain privileges via a crafted mach message that is misparsed.
CVE-2014-4492 EXPLOITDB c WORKING POC
Apple iOS <8.1.3, OS X <10.10.2, TV <7.0.3 - RCE
libnetcore in Apple iOS before 8.1.3, Apple OS X before 10.10.2, and Apple TV before 7.0.3 does not verify that certain values have the expected data type, which allows attackers to execute arbitrary code in an _networkd context via a crafted XPC message from a sandboxed app, as demonstrated by lack of verification of the XPC dictionary data type.
CVE-2016-1861 EXPLOITDB HIGH c WORKING POC
Apple OS X <10.11.5 - RCE
The NVIDIA Graphics Drivers subsystem in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app, a different vulnerability than CVE-2016-1846.
CVSS 7.8
CVE-2015-7106 EXPLOITDB c WORKING POC
Apple Mac OS X < 10.11.1 - Memory Corruption
The Intel Graphics Driver component in Apple OS X before 10.11.2 allows local users to gain privileges or cause a denial of service (memory corruption) via unspecified vectors.
EIP-2026-104488 EXPLOITDB html WORKING POC
WebKit - 'ContainerNode::parserRemoveChild' Universal Cross-Site Scripting
CVE-2017-2442 EXPLOITDB MEDIUM html WORKING POC
Apple Safari < 10.0.3 - Improper Input Validation
An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. The issue involves the "WebKit JavaScript Bindings" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site.
CVSS 6.5
CVE-2017-2371 EXPLOITDB MEDIUM html WORKING POC
Apple <10.2.1 - XSS
An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. The issue involves the "WebKit" component, which allows remote attackers to launch popups via a crafted web site.
CVSS 6.5
CVE-2017-2445 EXPLOITDB MEDIUM html WORKING POC
Apple Safari < 10.0.3 - XSS
An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to conduct Universal XSS (UXSS) attacks via crafted frame objects.
CVSS 6.1
CVE-2017-2504 EXPLOITDB MEDIUM html WORKING POC
Apple Safari < 10.1.1 - XSS
An issue was discovered in certain Apple products. iOS before 10.3.2 is affected. Safari before 10.1.1 is affected. tvOS before 10.2.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to conduct Universal XSS (UXSS) attacks via a crafted web site that improperly interacts with WebKit Editor commands.
CVSS 6.1
CVE-2017-2479 EXPLOITDB MEDIUM html WORKING POC
Apple Safari < 10.1 - Improper Input Validation
An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. iCloud before 6.2 on Windows is affected. iTunes before 12.6 on Windows is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site.
CVSS 6.5
EIP-2026-104167 EXPLOITDB html WORKING POC
Apple WebKit / Safari 10.0.2(12602.3.12.0.1) - 'operationSpreadGeneric' Universal Cross-Site Scripting
CVE-2018-6065 EXPLOITDB HIGH text WORKING POC
Google Chrome <65.0.3325.146 - Heap Corruption
Integer overflow in computing the required allocation size when instantiating a new javascript object in V8 in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVSS 8.8
EIP-2026-103912 EXPLOITDB text WRITEUP
Google Chrome 72.0.3626.121 / 74.0.3725.0 - 'NewFixedDoubleArray' Integer Overflow
CVE-2017-2480 EXPLOITDB MEDIUM html WORKING POC
Apple Icloud < 6.1.1 - Information Disclosure
An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. iCloud before 6.2 on Windows is affected. iTunes before 12.6 on Windows is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site.
CVSS 6.5
EIP-2026-104168 EXPLOITDB html WORKING POC
Apple WebKit / Safari 10.0.2(12602.3.12.0.1) - 'PrototypeMap::createEmptyStructure' Universal Cross-Site Scripting
CVE-2017-2364 EXPLOITDB MEDIUM html WORKING POC
Apple <10.2.1, <10.0.3 - CSRF
An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. The issue involves the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site.
CVSS 6.5
CVE-2017-2365 EXPLOITDB MEDIUM html WORKING POC
Apple <10.2.1, <10.0.3, <10.1.1 - SSRF
An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. tvOS before 10.1.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site.
CVSS 6.5
CVE-2017-2457 EXPLOITDB HIGH html WORKING POC
Apple Safari < 10.0.3 - Memory Corruption
An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.
CVSS 8.8
EIP-2026-104166 EXPLOITDB html WORKING POC
Apple Safari 10.0.3(12602.4.8) / WebKit - 'HTMLObjectElement::updateWidget' Universal Cross-Site Scripting
CVE-2017-2619 EXPLOITDB HIGH text WORKING POC
Samba < 4.4.12 - Race Condition
Samba before versions 4.6.1, 4.5.7 and 4.4.11 are vulnerable to a malicious client using a symlink race to allow access to areas of the server file system not exported under the share definition.
CVSS 7.5
CVE-2018-5702 EXPLOITDB HIGH WRITEUP
Transmission <2.92 - RCE
Transmission through 2.92 relies on X-Transmission-Session-Id (which is not a forbidden header for Fetch) for access control, which allows remote attackers to execute arbitrary RPC commands, and consequently write to arbitrary files, via POST requests to /transmission/rpc in conjunction with a DNS rebinding attack.
CVSS 8.8
EIP-2026-104143 EXPLOITDB text WRITEUP
μTorrent (uTorrent) Classic/Web - JSON-RPC Remote Code Execution / Information Disclosure
CVE-2017-2367 EXPLOITDB MEDIUM html WORKING POC
Apple <10.3 - SSRF
An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site.
CVSS 6.5
EIP-2026-103913 EXPLOITDB html WRITEUP
Google Chrome 72.0.3626.96 / 74.0.3702.0 - 'JSPromise::TriggerPromiseReactions' Type Confusion
EIP-2026-103644 EXPLOITDB text WORKING POC
Rar - CmdExtract::UnstoreFile Integer Truncation Memory Corruption