Exploitdb Exploits
2,012 exploits tracked across all sources.
WordPress Plugin Video Player 1.5.16 - SQL Injection
by David Vaartjes
Ubiquiti Administration Portal - Remote Command Execution (via Cross-Site Request Forgery)
by KoreLogic
XuezhuLi FileSharing - Cross-Site Request Forgery (Add User)
by HaHwul
Microsoft Internet Explorer 9-11 - Code Injection
Microsoft Internet Explorer 9 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2016-0200 and CVE-2016-3211.
by Skylined
CVSS 8.8
IonizeCMS 1.0.8 - Cross-Site Request Forgery (Add Admin)
by s0nk3y
WordPress Plugin Ultimate Product Catalog 3.8.1 - Privilege Escalation
by i0akiN SEC-LABORATORY
SlimCMS 0.1 - Cross-Site Request Forgery (Change Admin Password)
by Avinash Thapa
Ultrabenosaurus ChatBoard - Cross-Site Request Forgery (Send Message)
by HaHwul
Viart Shopping Cart 5.0 - Cross-Site Request Forgery / Arbitrary File Upload
by Ali Ghanbari
Mobiketa 1.0 - Cross-Site Request Forgery (Add Admin)
by Murat Yilmazlar
miniMySQLAdmin 1.1.3 - Cross-Site Request Forgery (SQL Execution)
by HaHwul
Dream Gallery 1.0 - Cross-Site Request Forgery (Add Admin)
by Ali Ghanbari
ArticleSetup 1.00 - Cross-Site Request Forgery (Change Admin Password)
by Ali Ghanbari
Flatpress 1.0.3 - Cross-Site Request Forgery / Arbitrary File Upload
by LiquidWorm
Baidu Spark Browser 43.23.1000.476 - Address Bar URL Spoofing
by liu zhu
EMC ViPR SRM <3.7 - CSRF
Multiple cross-site request forgery (CSRF) vulnerabilities in administrative pages in EMC ViPR SRM before 3.7 allow remote attackers to hijack the authentication of administrators.
by Han Sahin
CVSS 8.8
Microsoft Internet Explorer 11 - MSHTML!CMarkupPointer::UnEmbed Use-After-Free
by Marcin Ressel
Microsoft Internet Explorer <11 - Info Disclosure
Microsoft Internet Explorer 9 through 11 allows remote attackers to obtain sensitive information from process memory via a crafted web site, aka "Internet Explorer Information Disclosure Vulnerability."
by Ashfaq Ansari
Hikvision Digital Video Recorder - Cross-Site Request Forgery
by LiquidWorm
Microsoft Edge - Memory Corruption
Microsoft Internet Explorer 9 through 11 and Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Microsoft Browser Memory Corruption Vulnerability," a different vulnerability than CVE-2016-0105, CVE-2016-0107, CVE-2016-0112, and CVE-2016-0113.
by Google Security Research
CVSS 7.5
MOBOTIX Video Security Cameras - Cross-Site Request Forgery (Add Admin)
by LiquidWorm
Microsoft Internet Explorer - Memory Corruption
Microsoft Internet Explorer 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulnerability," a different vulnerability than CVE-2016-0102, CVE-2016-0103, CVE-2016-0106, CVE-2016-0109, and CVE-2016-0114.
by Google Security Research
CVSS 7.5
By Source