Kevin McGuigan - Security Researcher - Exploit Intelligence Platform

CVE-2018-25328 EXPLOITDB HIGH python WORKING POC

VX Search 10.6.18 Local Buffer Overflow via Directory Field

VX Search 10.6.18 contains a local buffer overflow vulnerability that allows attackers to overwrite the instruction pointer by supplying an oversized string in the directory field. Attackers can craft a malicious input file containing 271 bytes of junk data followed by a return address to execute arbitrary code with application privileges.

CVSS 8.4

View Code

EIP-2026-116667 EXPLOITDB python WORKING POC

Zortam MP3 Media Studio 23.45 - Local Buffer Overflow (SEH)

View Code

EIP-2026-115899 EXPLOITDB python WORKING POC

Navicat < 12.0.27 - Oracle Connection Overflow

View Code

CVE-2017-15035 EXPLOITDB HIGH python WORKING POC

EmTec PyroBatchFTP < 3.17 - Denial of Service via Buffer Overflow

EmTec PyroBatchFTP before 3.18 allows remote servers to cause a denial of service (application crash).

CVSS 7.5

View Code

CVE-2017-16513 EXPLOITDB HIGH python WORKING POC

Ipswitch WS_FTP Pro <12.6.0.3 - Buffer Overflow

Ipswitch WS_FTP Professional before 12.6.0.3 has buffer overflows in the local search field and the backup locations field, aka WSCLT-1729.

CVSS 7.8

View Code