Exploitdb Exploits

4,759 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-116173 EXPLOITDB python VERIFIED
RealVNC 4.1.3 - 'ClientCutText' Message Remote Denial of Service
by John Leitch
EIP-2026-115131 EXPLOITDB python VERIFIED
ddrLPD 1.0 - Remote Denial of Service
by Bisphemol A
EIP-2026-100867 EXPLOITDB python
NIBE heat pump - Remote Code Execution
by Jelmer de Hen
EIP-2026-100866 EXPLOITDB python
NIBE heat pump - Local File Inclusion
by Jelmer de Hen
EIP-2026-118315 EXPLOITDB python VERIFIED
Bigant Messenger 2.52 - 'AntCore.dll RegisterCom()' Remote Heap Overflow
by mr_me
CVE-2010-0705 EXPLOITDB python VERIFIED
avast! 4.8-5.0.418.0 - Local Privilege Escalation
Aavmker4.sys in avast! 4.8 through 4.8.1368.0 and 5.0 before 5.0.418.0 running on Windows 2000 and XP does not properly validate input to IOCTL 0xb2d60030, which allows local users to cause a denial of service (system crash) or execute arbitrary code to gain privileges via IOCTL requests using crafted kernel addresses that trigger memory corruption.
by ryujin
EIP-2026-117308 EXPLOITDB python VERIFIED
IDEAL Migration 2009 4.5.1 - Local Buffer Overflow
by Dr_IDE
EIP-2026-117306 EXPLOITDB python VERIFIED
IDEAL Administration 2010 10.2 - Local Buffer Overflow
by Dr_IDE
CVE-2010-1597 EXPLOITDB python VERIFIED
Zipgenius - Memory Corruption
Stack-based buffer overflow in zgtips.dll in ZipGenius 6.3.1.2552 allows user-assisted remote attackers to execute arbitrary code via a ZIP file containing an entry with a long filename.
by corelanc0d3r
EIP-2026-103583 EXPLOITDB python
Multiple Browsers - Audio Tag Denial of Service
by Chase Higgins
EIP-2026-116282 EXPLOITDB python VERIFIED
Speed Commander 13.10 - '.zip' Memory Corruption
by TecR0c
EIP-2026-119284 EXPLOITDB python VERIFIED
WinMount 3.3.401 - '.zip' Remote Buffer Overflow
by lilf
CVE-2010-1458 EXPLOITDB python VERIFIED
TweakFS Zip Utility <1.0 - RCE
Stack-based buffer overflow in Create and Extract Zips TweakFS Zip Utility 1.0 for Flight Simulator X (FSX) allows remote attackers to execute arbitrary code via a long filename in a ZIP archive.
by corelanc0d3r
CVE-2010-1318 EXPLOITDB python
AgentX++ <1.4.16 - Buffer Overflow
Stack-based buffer overflow in the AgentX::receive_agentx function in AgentX++ 1.4.16, as used in RealNetworks Helix Server and Helix Mobile Server 11.x through 13.x and other products, allows remote attackers to execute arbitrary code via unspecified vectors.
by ZSploit.com
CVE-2010-0477 EXPLOITDB python VERIFIED
Microsoft Windows 7 - Resource Management Error
The SMB client in Microsoft Windows Server 2008 R2 and Windows 7 does not properly handle (1) SMBv1 and (2) SMBv2 response packets, which allows remote SMB servers and man-in-the-middle attackers to execute arbitrary code via a crafted packet that causes the client to read the entirety of the response, and then improperly interact with the Winsock Kernel (WSK), aka "SMB Client Message Size Vulnerability."
by laurent gaffie
CVE-2010-0017 EXPLOITDB python VERIFIED
Microsoft Windows 7 - Race Condition
Race condition in the SMB client implementation in Microsoft Windows Server 2008 R2 and Windows 7 allows remote SMB servers and man-in-the-middle attackers to execute arbitrary code, and in the SMB client implementation in Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2 allows local users to gain privileges, via a crafted SMB Negotiate response, aka "SMB Client Race Condition Vulnerability."
by laurent gaffie
EIP-2026-115847 EXPLOITDB python VERIFIED
Mocha W32 LPD 1.9 - Remote Buffer Overflow (PoC)
by mr_me
EIP-2026-116200 EXPLOITDB python VERIFIED
RPM Select/Elite 5.0 - '.xml Configuration parsing' Unicode Buffer Overflow (PoC)
by mr_me
EIP-2026-115856 EXPLOITDB python VERIFIED
MovieLibrary 1.4.401 - '.dmv' Local Denial of Service
by anonymous
CVE-2010-1687 EXPLOITDB python VERIFIED
Mochasoft Mocha W32 Lpd - Memory Corruption
Stack-based buffer overflow in lpd.exe in Mocha W32 LPD 1.9 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted "recieve jobs" request. NOTE: some of these details are obtained from third party information.
by mr_me
EIP-2026-115004 EXPLOITDB python VERIFIED
Book Library 1.4.162 - '.bkd' Local Denial of Service
by anonymous
CVE-2010-1159 EXPLOITDB python VERIFIED
Aircrack-ng <1.1 - RCE
Multiple heap-based buffer overflows in Aircrack-ng before 1.1 allow remote attackers to cause a denial of service (crash) and execute arbitrary code via a (1) large length value in an EAPOL packet or (2) long EAPOL packet.
by Lukas Lueg
CVE-2010-5016 EXPLOITDB python VERIFIED
Elite Gaming Ladders <3.5 - SQL Injection
SQL injection vulnerability in matchdb.php in Elite Gaming Ladders 3.5 and earlier allows remote attackers to execute arbitrary SQL commands via the match parameter.
by Easy Laster
CVE-2010-1316 EXPLOITDB python VERIFIED
Tembria Server Monitor <5.6.1 - Buffer Overflow
Multiple stack-based buffer overflows in Tembria Server Monitor before 5.6.1 allow remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a crafted (1) GET, (2) PUT, or (3) HEAD request, as demonstrated by a malformed GET request containing a long PATH_INFO to index.asp.
by Lincoln
CVE-2010-1146 EXPLOITDB python VERIFIED
Linux kernel <2.6.33.2 - Privilege Escalation
The Linux kernel 2.6.33.2 and earlier, when a ReiserFS filesystem exists, does not restrict read or write access to the .reiserfs_priv directory, which allows local users to gain privileges by modifying (1) extended attributes or (2) ACLs, as demonstrated by deleting a file under .reiserfs_priv/xattrs/.
by Jon Oberheide
By Source
All 4,759 Writeup 53,536 Exploitdb 50,186 Nomisec 21,428 Metasploit 3,228 Github 2,586 Vulncheck_xdb 904 Inthewild 518 Gitlab 441 Gitee 415 Patchapalooza 312
By Language
text 31,364 ruby 5,960 python 5,948 c 3,580 perl 2,854 html 2,056 php 1,334 bash 459 java 362 javascript 260 c++ 250 shell 95 go 55 postscript 25 xml 24