Exploitdb Exploits

4,759 exploits tracked across all sources.

Sort: Activity Stars
CVE-2014-6332 EXPLOITDB HIGH python VERIFIED
Microsoft Windows - Remote Code Execution via SafeArrayDimen Function
OleAut32.dll in OLE in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to execute arbitrary code via a crafted web site, as demonstrated by an array-redimensioning attempt that triggers improper handling of a size value in the SafeArrayDimen function, aka "Windows OLE Automation Array Remote Code Execution Vulnerability."
by Naser Farhadi
CVSS 8.8
CVE-2009-1646 EXPLOITDB python
Mini-stream RM Downloader 3.0.0.9 - Stack-based Buffer Overflow via Long RTSP URL
Stack-based buffer overflow in Mini-stream RM Downloader 3.0.0.9 allows remote attackers to execute arbitrary code via a long rtsp URL in a .ram file.
by TUNISIAN CYBER
EIP-2026-117605 EXPLOITDB python VERIFIED
Mini-stream Ripper 2.7.7.100 - Local Buffer Overflow
by TUNISIAN CYBER
CVE-2014-9013 EXPLOITDB HIGH python
WP Marketplace <2.4.0 - Privilege Escalation
The ajaxinit function in wpmarketplace/libs/cart.php in the WP Marketplace plugin 2.4.0 for WordPress allows remote authenticated users to create arbitrary users and gain admin privileges via a request to wpmp_pp_ajax_call with an execution target of wp_insert_user.
by Claudio Viviani
CVSS 8.8
CVE-2014-9014 EXPLOITDB MEDIUM python
WP Marketplace <2.4.1 - Path Traversal
Directory traversal vulnerability in the ajaxinit function in wpmarketplace/libs/cart.php in the WP Marketplace plugin before 2.4.1 for WordPress allows remote authenticated users to download arbitrary files via a .. (dot dot) in the file parameter.
by Claudio Viviani
CVSS 4.3
EIP-2026-118333 EXPLOITDB python VERIFIED
Bsplayer 2.68 - HTTP Response Universal
by Fady Mohammed Osman
CVE-2011-5165 EXPLOITDB python VERIFIED
Free MP3 CD Ripper <= 2.6 - Stack-based Buffer Overflow via Crafted WAV File
Stack-based buffer overflow in Free MP3 CD Ripper 1.1, 2.6 and earlier, when converting a file, allows user-assisted remote attackers to execute arbitrary code via a crafted .wav file.
by TUNISIAN CYBER
EIP-2026-102568 EXPLOITDB python VERIFIED
Brasero CD/DVD Burner 3.4.1 - '.m3u' Buffer Overflow Crash (PoC)
by Avinash Thapa
CVE-2015-1427 EXPLOITDB CRITICAL python VERIFIED
Elasticsearch <1.3.8, <1.4.3 - Command Injection
The Groovy scripting engine in Elasticsearch before 1.3.8 and 1.4.x before 1.4.3 allows remote attackers to bypass the sandbox protection mechanism and execute arbitrary shell commands via a crafted script.
by Xiphos Research Ltd
CVSS 9.8
EIP-2026-101073 EXPLOITDB python
Sagem F@st 3304-V2 - Telnet Crash (PoC)
by Loudiyi Mohamed
CVE-2014-8687 EXPLOITDB CRITICAL python VERIFIED
Seagate Business NAS <2015.00322 - RCE
Seagate Business NAS devices with firmware before 2015.00322 allow remote attackers to execute arbitrary code with root privileges by leveraging use of a static encryption key to create session tokens.
by OJ Reeves
CVSS 9.8
EIP-2026-117590 EXPLOITDB python VERIFIED
Microsoft Word 2007 - RTF Object Confusion (ASLR + DEP Bypass)
by R-73eN
EIP-2026-107447 EXPLOITDB python
GoAutoDial CE 2.0 - Arbitrary File Upload
by R-73eN
EIP-2026-103029 EXPLOITDB python VERIFIED
VFU 4.10-1.1 - Move Entry Buffer Overflow
by Bas van den Berg
CVE-2014-0980 EXPLOITDB python VERIFIED
Publish-It PUI Buffer Overflow (SEH)
Buffer overflow in Poster Software PUBLISH-iT 3.6d allows remote attackers to execute arbitrary code via a crafted PUI file.
by Andrew Smith
CVE-2013-4730 EXPLOITDB python
pcman's ftp server 2.0.7 - Unauthenticated Buffer Overflow via USER Command
Buffer overflow in PCMan's FTP Server 2.0.7 allows remote attackers to execute arbitrary code via a long string in a USER command.
by R-73eN
EIP-2026-117626 EXPLOITDB python
MooPlayer 1.3.0 - 'm3u' Local Buffer Overflow (SEH) (1)
by dogo h@ck
EIP-2026-115852 EXPLOITDB python VERIFIED
MooPlayer 1.3.0 - 'm3u' Buffer Overflow (SEH) (PoC)
by Samandeep Singh
CVE-2015-1578 EXPLOITDB python
u5CMS < 3.9.3 - Open Redirect via pidvesa Cookie or uri Parameter
Multiple open redirect vulnerabilities in u5CMS before 3.9.4 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the (1) pidvesa cookie to u5admin/pidvesa.php or (2) uri parameter to u5admin/meta2.php.
by KAhara MAnhara
CVE-2014-2623 EXPLOITDB python VERIFIED
HP Storage Data Protector 8.x - Remote Code Execution
Unspecified vulnerability in HP Storage Data Protector 8.x allows remote attackers to execute arbitrary code via unknown vectors.
by Juttikhun Khamchaiyaphum
CVE-2014-4076 EXPLOITDB python
Microsoft Windows Server 2003 SP2 - Privilege Escalation
Microsoft Windows Server 2003 SP2 allows local users to gain privileges via a crafted IOCTL call to (1) tcpip.sys or (2) tcpip6.sys, aka "TCP/IP Elevation of Privilege Vulnerability."
by KoreLogic
EIP-2026-116458 EXPLOITDB python
UniPDF 1.1 - Crash (PoC) (SEH)
by bonze
CVE-2015-0235 EXPLOITDB python
Exim GHOST (glibc gethostbyname) Buffer Overflow
Heap-based buffer overflow in the __nss_hostname_digits_dots function in glibc 2.2, and other 2.x versions before 2.18, allows context-dependent attackers to execute arbitrary code via vectors related to the (1) gethostbyname or (2) gethostbyname2 function, aka "GHOST."
by 1n3
EIP-2026-118368 EXPLOITDB python
ClearSCADA - Remote Authentication Bypass
by Jeremy Brown
EIP-2026-115421 EXPLOITDB python
IceCream Ebook Reader 1.41 - Crash (PoC)
by Kapil Soni
By Source
All 4,759 Writeup 62,573 Exploitdb 50,076 Nomisec 22,496 Github 3,735 Metasploit 3,315 Vulncheck_xdb 930 Inthewild 514 Gitlab 480 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,630 ruby 6,006 c 3,635 perl 2,849 html 2,076 php 1,334 bash 462 java 371 c++ 261 javascript 231 shell 137 go 73 postscript 25 typescript 25