Exploitdb Exploits

152 exploits tracked across all sources.

Sort: Newest Stars
CVE-2018-0934 EXPLOITDB HIGH javascript VERIFIED
Microsoft Edge < 1.8.2 - Out-of-Bounds Write
ChakraCore and Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the Chakra scripting engine handles objects in memory, aka "Chakra Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0872, CVE-2018-0873, CVE-2018-0874, CVE-2018-0930, CVE-2018-0931, CVE-2018-0933, CVE-2018-0936, and CVE-2018-0937.
by Google Security Research
CVSS 7.5
CVE-2018-0934 EXPLOITDB HIGH javascript VERIFIED
Microsoft Edge < 1.8.2 - Out-of-Bounds Write
ChakraCore and Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the Chakra scripting engine handles objects in memory, aka "Chakra Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0872, CVE-2018-0873, CVE-2018-0874, CVE-2018-0930, CVE-2018-0931, CVE-2018-0933, CVE-2018-0936, and CVE-2018-0937.
by Google Security Research
CVSS 7.5
EIP-2026-103500 EXPLOITDB javascript VERIFIED
Google Chrome V8 - 'Genesis::InitializeGlobal' Out-of-Bounds Read/Write
by Google Security Research
CVE-2018-6064 EXPLOITDB HIGH javascript VERIFIED
Google Chrome <65.0.3325.146 - Heap Corruption
Type Confusion in the implementation of __defineGetter__ in V8 in Google Chrome prior to 65.0.3325.146 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
by Google Security Research
CVSS 8.8
EIP-2026-104100 EXPLOITDB javascript
TeamCity < 9.0.2 - Disabled Registration Bypass
by allyshka
EIP-2026-102050 EXPLOITDB javascript
TL-WR720N 150Mbps Wireless N Router - Cross-Site Request Forgery
by Mans van Someren
CVE-2018-0891 EXPLOITDB MEDIUM javascript VERIFIED
Microsoft Internet Explorer - Memory Leak
ChakraCore, and Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Internet Explorer and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allow information disclosure, due to how the scripting engine handles objects in memory, aka "Scripting Engine Information Disclosure Vulnerability". This CVE ID is unique from CVE-2018-0939.
by Google Security Research
CVSS 4.3
EIP-2026-103440 EXPLOITDB javascript VERIFIED
Chrome V8 JIT - Simplified-lowererer IrOpcode::kStoreField_ IrOpcode::kStoreElement Optimization Bug
by Google Security Research
EIP-2026-103439 EXPLOITDB javascript VERIFIED
Chrome V8 JIT - JSBuiltinReducer::ReduceObjectCreate Fails to Ensure that the Prototype is _null_
by Google Security Research
EIP-2026-103438 EXPLOITDB javascript VERIFIED
Chrome V8 JIT - Empty BytecodeJumpTable Out-of-Bounds Read
by Google Security Research
EIP-2026-103435 EXPLOITDB javascript VERIFIED
Chrome V8 JIT - 'GetSpecializationContext' Type Confusion
by Google Security Research
EIP-2026-103433 EXPLOITDB javascript VERIFIED
Chrome V8 - 'TranslatedState::MaterializeCapturedObjectAt' Type Confusion
by Google Security Research
EIP-2026-103431 EXPLOITDB javascript VERIFIED
Chrome V8 - 'PropertyArray' Integer Overflow
by Google Security Research
CVE-2018-0860 EXPLOITDB HIGH javascript VERIFIED
Microsoft Edge < 1.8.1 - Out-of-Bounds Write
Microsoft Edge and ChakraCore in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0834, CVE-2018-0835, CVE-2018-0836, CVE-2018-0837, CVE-2018-0838, CVE-2018-0840, CVE-2018-0856, CVE-2018-0857, CVE-2018-0858, CVE-2018-0859, CVE-2018-0861, and CVE-2018-0866.
by Google Security Research
CVSS 7.5
CVE-2018-0840 EXPLOITDB HIGH javascript VERIFIED
Microsoft Internet Explorer - Out-of-Bounds Write
Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8.1 and Windows RT 8.1, Windows Server 2012 and R2, and Internet Explorer and Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0834, CVE-2018-0835, CVE-2018-0836, CVE-2018-0837, CVE-2018-0838, CVE-2018-0856, CVE-2018-0857, CVE-2018-0858, CVE-2018-0859, CVE-2018-0860, CVE-2018-0861, and CVE-2018-0866.
by Google Security Research
CVSS 7.5
CVE-2018-0834 EXPLOITDB HIGH javascript VERIFIED
Microsoft Chakracore < 1.8.1 - Out-of-Bounds Write
Microsoft Edge and ChakraCore in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0835, CVE-2018-0836, CVE-2018-0837, CVE-2018-0838, CVE-2018-0840, CVE-2018-0856, CVE-2018-0857, CVE-2018-0858, CVE-2018-0859, CVE-2018-0860, CVE-2018-0861, and CVE-2018-0866.
by Google Security Research
CVSS 7.5
CVE-2018-0838 EXPLOITDB HIGH javascript VERIFIED
Microsoft Chakracore < 1.8.1 - Out-of-Bounds Write
Microsoft Edge and ChakraCore in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0834, CVE-2018-0835, CVE-2018-0836, CVE-2018-0837, CVE-2018-0840, CVE-2018-0856, CVE-2018-0857, CVE-2018-0858, CVE-2018-0859, CVE-2018-0860, CVE-2018-0861, and CVE-2018-0866.
by Google Security Research
CVSS 7.5
CVE-2018-0837 EXPLOITDB HIGH javascript VERIFIED
Microsoft Chakracore < 1.8.1 - Out-of-Bounds Write
Microsoft Edge and ChakraCore in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0834, CVE-2018-0835, CVE-2018-0836, CVE-2018-0838, CVE-2018-0840, CVE-2018-0856, CVE-2018-0857, CVE-2018-0858, CVE-2018-0859, CVE-2018-0860, CVE-2018-0861, and CVE-2018-0866.
by Google Security Research
CVSS 7.5
CVE-2018-0835 EXPLOITDB HIGH javascript VERIFIED
Microsoft Chakracore < 1.8.1 - Out-of-Bounds Write
Microsoft Edge and ChakraCore in Microsoft Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows remote code execution, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0834, CVE-2018-0836, CVE-2018-0837, CVE-2018-0838, CVE-2018-0840, CVE-2018-0856, CVE-2018-0857, CVE-2018-0858, CVE-2018-0859, CVE-2018-0860, CVE-2018-0861, and CVE-2018-0866.
by Google Security Research
CVSS 7.5
EIP-2026-103432 EXPLOITDB javascript VERIFIED
Chrome V8 - 'Runtime_RegExpReplace' Integer Overflow
by Google Security Research
CVE-2018-0776 EXPLOITDB HIGH javascript VERIFIED
Microsoft Edge < 1.7.6 - Out-of-Bounds Write
Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0758, CVE-2018-0762, CVE-2018-0768, CVE-2018-0769, CVE-2018-0770, CVE-2018-0772, CVE-2018-0773, CVE-2018-0774, CVE-2018-0775, CVE-2018-0777, CVE-2018-0778, and CVE-2018-0781.
by Google Security Research
CVSS 7.5
CVE-2018-0777 EXPLOITDB HIGH javascript VERIFIED
Microsoft Edge < 1.7.6 - Out-of-Bounds Write
Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0758, CVE-2018-0762, CVE-2018-0768, CVE-2018-0769, CVE-2018-0770, CVE-2018-0772, CVE-2018-0773, CVE-2018-0774, CVE-2018-0775, CVE-2018-0776, CVE-2018-0778, and CVE-2018-0781.
by Google Security Research
CVSS 7.5
CVE-2018-0769 EXPLOITDB HIGH javascript VERIFIED
Microsoft Edge < 1.7.6 - Out-of-Bounds Write
Microsoft Edge in Windows 10 Gold, 1511, 1607, 1703, 1709, and Windows Server 2016 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0758, CVE-2018-0762, CVE-2018-0768, CVE-2018-0770, CVE-2018-0772, CVE-2018-0773, CVE-2018-0774, CVE-2018-0775, CVE-2018-0776, CVE-2018-0777, CVE-2018-0778, and CVE-2018-0781.
by Google Security Research
CVSS 7.5
CVE-2018-0774 EXPLOITDB HIGH javascript VERIFIED
Microsoft Edge < 1.7.6 - Out-of-Bounds Write
Microsoft Edge in Windows 10 1709 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0758, CVE-2018-0762, CVE-2018-0768, CVE-2018-0769, CVE-2018-0770, CVE-2018-0772, CVE-2018-0773, CVE-2018-0775, CVE-2018-0776, CVE-2018-0777, CVE-2018-0778, and CVE-2018-0781.
by Google Security Research
CVSS 7.5
CVE-2018-0775 EXPLOITDB HIGH javascript VERIFIED
Microsoft Edge < 1.7.6 - Out-of-Bounds Write
Microsoft Edge in Windows 10 1709 allows an attacker to execute arbitrary code in the context of the current user, due to how the scripting engine handles objects in memory, aka "Scripting Engine Memory Corruption Vulnerability". This CVE ID is unique from CVE-2018-0758, CVE-2018-0762, CVE-2018-0768, CVE-2018-0769, CVE-2018-0770, CVE-2018-0772, CVE-2018-0773, CVE-2018-0774, CVE-2018-0776, CVE-2018-0777, CVE-2018-0778, and CVE-2018-0781.
by Google Security Research
CVSS 7.5
By Source
All 152 Exploitdb 50,196 Writeup 43,086 Nomisec 19,741 Metasploit 3,028 Github 2,090 Vulncheck_xdb 887 Inthewild 518 Gitlab 432 Gitee 415 Patchapalooza 312
By Language
text 31,307 python 5,762 ruby 5,759 c 3,536 perl 2,854 html 2,051 php 1,332 bash 459 java 359 javascript 255 c++ 242 shell 54 go 38 postscript 25 xml 24