Python Exploits

5,840 exploits tracked across all sources.

Sort: Activity Stars
CVE-2019-25660 EXPLOITDB MEDIUM python
LanHelper 1.74 Denial of Service via Buffer Overflow
LanHelper 1.74 contains a local buffer overflow vulnerability that allows attackers to crash the application by sending excessively long input strings. Attackers can exploit the Form Send Message feature by pasting 6000 bytes of data into the Message text field to trigger a denial of service condition.
by Rafael Pedrero
CVSS 6.2
CVE-2019-25659 EXPLOITDB MEDIUM python
ASPRunner Professional 6.0.766 Local Buffer Overflow DoS
ASPRunner Professional 6.0.766 contains a local buffer overflow vulnerability that allows attackers to cause a denial of service by supplying an excessively long project name. Attackers can paste 180 or more characters into the Project name field during project creation to trigger an application crash.
by Rafael Pedrero
CVSS 6.2
CVE-2019-25658 EXPLOITDB MEDIUM python
a-Mac Address Change 5.4 Local Buffer Overflow DoS
a-Mac Address Change 5.4 contains a local buffer overflow vulnerability that allows local attackers to crash the application by supplying oversized input to registration form fields. Attackers can paste 212 bytes of data into the 'Your Name', 'Your Company', or 'Register Code' fields and click the Register button to trigger a denial of service crash.
by Rafael Pedrero
CVSS 5.5
CVE-2019-25657 EXPLOITDB MEDIUM python
AnyBurn 4.3 x86 Denial of Service via Image Conversion
AnyBurn 4.3 x86 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string to the image conversion function. Attackers can paste a large buffer into the source or destination image file fields and click Convert Now to trigger a crash.
by Dino Covotsos
CVSS 5.5
CVE-2019-25656 EXPLOITDB HIGH python
R i386 3.5.0 Local Buffer Overflow SEH
R i386 3.5.0 contains a local buffer overflow vulnerability in the GUI Preferences dialog that allows local attackers to trigger a structured exception handler (SEH) overwrite by supplying malicious input. Attackers can craft a payload string in the 'Language for menus and messages' field to overwrite SEH records and achieve code execution with calculator or arbitrary shellcode.
by Dino Covotsos
CVSS 8.4
EIP-2026-118041 EXPLOITDB python
UltraISO 9.7.1.3519 - 'Output FileName' Local Buffer Overflow (SEH)
by Dino Covotsos
EIP-2026-118040 EXPLOITDB python
UltraISO 9.7.1.3519 - 'Output FileName' Local Buffer Overflow (SEH)
by Dino Covotsos
EIP-2026-115260 EXPLOITDB python
FlexHEX 2.46 - Buffer Overflow (PoC) (SEH Overwrite)
by Rafael Pedrero
EIP-2026-115259 EXPLOITDB python
FlexHEX 2.46 - Buffer Overflow (PoC) (SEH Overwrite)
by Rafael Pedrero
EIP-2026-114873 EXPLOITDB python
Advanced Host Monitor 11.90 Beta - 'Registration number' Denial of Service (PoC)
by Luis Martínez
EIP-2026-114872 EXPLOITDB python
Advanced Host Monitor 11.90 Beta - 'Registration number' Denial of Service (PoC)
by Luis Martínez
CVE-2018-25256 EXPLOITDB MEDIUM python
IP TOOLS 2.50 Local Buffer Overflow Denial of Service
IP TOOLS 2.50 contains a local buffer overflow vulnerability in the SNMP Scanner component that allows local attackers to crash the application by supplying oversized input. Attackers can paste malicious data into the 'From Addr' and 'To Addr' fields and trigger the crash by clicking the Start button, causing denial of service and SEH overwrite.
by Rafael Pedrero
CVSS 5.5
EIP-2026-116683 EXPLOITDB python
10-Strike Network Inventory Explorer 8.54 - Local Buffer Overflow (SEH) (DEP Bypass)
by bzyo
EIP-2026-116682 EXPLOITDB python
10-Strike Network Inventory Explorer 8.54 - Local Buffer Overflow (SEH) (DEP Bypass)
by bzyo
EIP-2026-115911 EXPLOITDB python
Necrosoft DIG 0.4 - Buffer Overflow (PoC) (SEH Overwrite)
by Rafael Pedrero
EIP-2026-115910 EXPLOITDB python
Necrosoft DIG 0.4 - Buffer Overflow (PoC) (SEH Overwrite)
by Rafael Pedrero
EIP-2026-114871 EXPLOITDB python
Advanced File Manager 3.4.1 - Denial of Service (PoC)
by Rafael Pedrero
CVE-2019-25689 EXPLOITDB HIGH python
HTML5 Video Player 1.2.5 Local Buffer Overflow Non-SEH
HTML5 Video Player 1.2.5 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by supplying an oversized key code string. Attackers can craft a malicious payload exceeding 997 bytes and paste it into the KEY CODE field in the Help Register dialog to trigger code execution and spawn a calculator process.
by Dino Covotsos
CVSS 8.4
EIP-2026-102678 EXPLOITDB python
MiniUPnPd 2.1 - Out-of-Bounds Read
by b1ack0wl
CVE-2019-25691 EXPLOITDB HIGH python
Faleemi Desktop Software 1.8 Local Buffer Overflow SEH DEP Bypass
Faleemi Desktop Software 1.8 contains a local buffer overflow vulnerability in the System Setup dialog that allows attackers to bypass DEP protections through structured exception handling exploitation. Attackers can inject a crafted payload into the Save Path for Snapshot and Record file field to trigger a buffer overflow and execute arbitrary code via ROP chain gadgets.
by bzyo
CVSS 8.4
CVE-2019-25695 EXPLOITDB HIGH python
R 3.4.4 Local Buffer Overflow Windows XP SP3
R 3.4.4 contains a local buffer overflow vulnerability that allows attackers to execute arbitrary code by injecting malicious input into the GUI Preferences language field. Attackers can craft a payload with a 292-byte offset and JMP ESP instruction to execute commands like calc.exe when the payload is pasted into the Language for menus and messages field.
by Dino Covotsos
CVSS 8.4
CVE-2019-25701 EXPLOITDB HIGH python
Easy Video to iPod Converter 1.6.20 Local Buffer Overflow SEH
Easy Video to iPod Converter 1.6.20 contains a local buffer overflow vulnerability in the user registration field that allows local attackers to overwrite the structured exception handler. Attackers can input a crafted payload exceeding 996 bytes in the username field to trigger SEH overwrite and execute arbitrary code with user privileges.
by Nawaf Alkeraithe
CVSS 8.4
CVE-2018-25239 EXPLOITDB MEDIUM python
Smart VPN 1.1.3.0 Denial of Service via Search
Smart VPN 1.1.3.0 contains a denial of service vulnerability that allows local attackers to crash the application by submitting oversized input through the search interface. Attackers can paste a buffer of 2100 characters into the top right search bar to trigger an unhandled exception that crashes the application.
by 0xB9
CVSS 6.2
CVE-2018-25130 EXPLOITDB MEDIUM python
Beward Intercom 2.3.1 - Info Disclosure
Beward Intercom 2.3.1 contains a credentials disclosure vulnerability that allows local attackers to access plain-text authentication credentials stored in an unencrypted database file. Attackers can read the BEWARD.INTERCOM.FDB file to extract usernames and passwords, enabling unauthorized access to IP cameras and door stations.
by LiquidWorm
CVSS 6.2
CVE-2018-6892 EXPLOITDB CRITICAL python
Cloudme Sync < 1.10.9 - Memory Corruption
An issue was discovered in CloudMe before 1.11.0. An unauthenticated remote attacker that can connect to the "CloudMe Sync" client application listening on port 8888 can send a malicious payload causing a buffer overflow condition. This will result in an attacker controlling the program's execution flow and allowing arbitrary code execution.
by Matteo Malvica
CVSS 9.8
By Source
All 5,840 Exploitdb 50,135 Writeup 46,974 Nomisec 21,281 Metasploit 3,228 Github 2,465 Vulncheck_xdb 900 Inthewild 518 Gitlab 440 Gitee 415 Patchapalooza 312
By Language
text 31,346 ruby 5,959 python 5,840 c 3,571 perl 2,854 html 2,055 php 1,334 bash 459 java 361 javascript 260 c++ 247 shell 89 go 48 postscript 25 xml 24