Python Exploits

6,671 exploits tracked across all sources.

Sort: Activity Stars
CVE-2018-2628 EXPLOITDB CRITICAL python VERIFIED
Oracle WebLogic Server <12.2.1.3 - RCE
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Core Components). Supported versions that are affected are 10.3.6.0, 12.1.3.0, 12.2.1.2 and 12.2.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3 to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in takeover of Oracle WebLogic Server. CVSS 3.0 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).
by brianwrf
CVSS 9.8
CVE-2018-25328 EXPLOITDB HIGH python
VX Search 10.6.18 Local Buffer Overflow via Directory Field
VX Search 10.6.18 contains a local buffer overflow vulnerability that allows attackers to overwrite the instruction pointer by supplying an oversized string in the directory field. Attackers can craft a malicious input file containing 271 bytes of junk data followed by a return address to execute arbitrary code with application privileges.
by Kevin McGuigan
CVSS 8.4
CVE-2018-9059 EXPLOITDB CRITICAL python
Easy File Sharing Web Server 7.2 - Remote Code Execution via Malicious Login Request
Stack-based buffer overflow in Easy File Sharing (EFS) Web Server 7.2 allows remote attackers to execute arbitrary code via a malicious login request to forum.ghp. NOTE: this may overlap CVE-2014-3791.
by rebeyond
CVSS 9.8
CVE-2018-8880 EXPLOITDB HIGH python
Lutron Quantum BACnet Integration <3.2.243 - Info Disclosure
Lutron Quantum BACnet Integration 2.0 (firmware 3.2.243) doesn't check for correct user authentication before showing the /deviceIP information, which leads to internal network information disclosure.
by SadFud
CVSS 7.5
CVE-2013-5019 EXPLOITDB python VERIFIED
Ultra Mini HTTPD 1.21 - Buffer Overflow
Stack-based buffer overflow in Ultra Mini HTTPD 1.21 allows remote attackers to execute arbitrary code via a long resource name in an HTTP request.
by jollymongrel
CVE-2018-25307 EXPLOITDB HIGH python
SysGauge Pro 4.6.12 Local Buffer Overflow SEH
SysGauge Pro 4.6.12 contains a local buffer overflow vulnerability in the Register function that allows local attackers to overwrite the structured exception handler by supplying a crafted unlock key. Attackers can inject shellcode through the Unlock Key field during registration to execute arbitrary code with application privileges.
by Hashim Jawad
CVSS 8.4
CVE-2018-7886 EXPLOITDB HIGH python
CloudMe Sync 1.11.0 - Unauthenticated Buffer Overflow via Local Port 8888
An issue was discovered in CloudMe 1.11.0. An unauthenticated local attacker that can connect to the "CloudMe Sync" client application listening on 127.0.0.1 port 8888 can send a malicious payload causing a buffer overflow condition. This will result in code execution, as demonstrated by a TCP reverse shell, or a crash. NOTE: this vulnerability exists because of an incomplete fix for CVE-2018-6892.
by Prasenjit Kanti Paul
CVSS 7.8
EIP-2026-116667 EXPLOITDB python
Zortam MP3 Media Studio 23.45 - Local Buffer Overflow (SEH)
by Kevin McGuigan
EIP-2026-100989 EXPLOITDB python
Barco ClickShare CSE-200 - Remote Denial of Service
by Florian Hauser
CVE-2018-6546 EXPLOITDB CRITICAL python
plays.tv < 1.27.7.0 - Unauthenticated Remote Code Execution via execute_installer Parameter
plays_service.exe in the plays.tv service before 1.27.7.0, as distributed in AMD driver-installation packages and Gaming Evolved products, executes code at a user-defined (local or SMB) path as SYSTEM when the execute_installer parameter is used in an HTTP message. This occurs without properly authenticating the user.
by Securifera
CVSS 9.8
CVE-2018-7600 EXPLOITDB CRITICAL python VERIFIED
Drupal Drupalgeddon 2 Forms API Property Injection
Drupal before 7.58, 8.x before 8.3.9, 8.4.x before 8.4.6, and 8.5.x before 8.5.1 allows remote attackers to execute arbitrary code because of an issue affecting multiple subsystems with default or common module configurations.
by Vitalii Rudnykh
CVSS 9.8
CVE-2018-25224 EXPLOITDB HIGH python
PMS 0.42 Stack-Based Buffer Overflow via Configuration File
PMS 0.42 contains a stack-based buffer overflow vulnerability that allows local unauthenticated attackers to execute arbitrary code by supplying malicious values in the configuration file. Attackers can craft configuration files with oversized input that overflows the stack buffer and execute shell commands via return-oriented programming gadgets.
by Juan Sacco
CVSS 8.4
CVE-2018-10054 EXPLOITDB HIGH python VERIFIED
Datomic < 0.9.5697 - Remote Code Execution via H2 CREATE ALIAS
H2 1.4.197, as used in Datomic before 0.9.5697 and other products, allows remote code execution because CREATE ALIAS can execute arbitrary Java code. NOTE: the vendor's position is "h2 is not designed to be run outside of a secure environment."
by gambler
CVSS 8.8
EIP-2026-117247 EXPLOITDB python
GoldWave 5.70 - Local Buffer Overflow (SEH Unicode)
by bzyo
CVE-2018-4878 EXPLOITDB HIGH python
Adobe Flash Player < 28.0.0.161 - Use-After-Free in Primetime SDK Media Player Listener Handling
A use-after-free vulnerability was discovered in Adobe Flash Player before 28.0.0.161. This vulnerability occurs due to a dangling pointer in the Primetime SDK related to media player handling of listener objects. A successful attack can lead to arbitrary code execution. This was exploited in the wild in January and February 2018.
by SyFi
CVSS 7.8
CVE-2018-0492 EXPLOITDB HIGH python
beep < 1.3.4 - Local Privilege Escalation via Race Condition
Johnathan Nightingale beep through 1.3.4, if setuid, has a race condition that allows local privilege escalation.
by Pirhack
CVSS 7.0
CVE-2018-25312 EXPLOITDB MEDIUM python
LifeSize ClearSea 3.1.4 Directory Traversal Remote Code Execution
LifeSize ClearSea 3.1.4 contains directory traversal vulnerabilities that allow authenticated attackers to download and upload arbitrary files by manipulating path parameters in the smartgui interface. Attackers can exploit the upload endpoint with directory traversal sequences to write files to arbitrary locations on the system, enabling remote code execution.
by rsp3ar
CVSS 6.5
EIP-2026-116367 EXPLOITDB python
Sync Breeze Enterprise 10.4.18 - Denial of-Service (PoC)
by Mr Bruce
CVE-2018-25323 EXPLOITDB HIGH python
Allok AVI DivX MPEG to DVD Converter 2.6.1217 Buffer Overflow SEH
Allok AVI DivX MPEG to DVD Converter 2.6.1217 contains a structured exception handler buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious payload. Attackers can craft a text file with a specially crafted buffer containing shellcode and SEH chain overwrite values, then paste the contents into the License Name field to trigger code execution.
by wetw0rk
CVSS 8.4
CVE-2018-25315 EXPLOITDB HIGH python
Alloksoft Video joiner 4.6.1217 Buffer Overflow via License Name
Alloksoft Video joiner 4.6.1217 contains a buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious string in the License Name field. Attackers can craft a payload with structured exception handler (SEH) overwrite and shellcode to achieve code execution when the application processes the license registration input.
by Mohan Ravichandran and Velayutham Selvaraj
CVSS 8.4
CVE-2018-25314 EXPLOITDB HIGH python
Allok soft WMV to AVI MPEG DVD WMV Converter 4.6.1217 Buffer Overflow
Allok soft WMV to AVI MPEG DVD WMV Converter 4.6.1217 contains a buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying an oversized string in the License Name field. Attackers can craft a malicious input containing shellcode with structured exception handler (SEH) overwrite to bypass protections and execute code with application privileges.
by Mohan Ravichandran and Velayutham Selvaraj
CVSS 8.4
CVE-2018-25313 EXPLOITDB MEDIUM python
SysGauge 4.5.18 Local Denial of Service via Proxy Configuration
SysGauge 4.5.18 contains a buffer overflow vulnerability in the proxy configuration handler that allows local attackers to cause a denial of service by supplying an oversized string. Attackers can inject a large payload through the Proxy Server Host Name field in the Options menu to crash the application.
by Hashim Jawad
CVSS 6.2
CVE-2018-25114 EXPLOITDB CRITICAL python VERIFIED
osCommerce Online Merchant <2.3.4.1 - RCE
A remote code execution vulnerability exists within osCommerce Online Merchant version 2.3.4.1 due to insecure default configuration and missing authentication in the installer workflow. By default, the /install/ directory remains accessible after installation. An unauthenticated attacker can invoke install_4.php, submit crafted POST data, and inject arbitrary PHP code into the configure.php file. When the application later includes this file, the injected payload is executed, resulting in full server-side compromise.
by Simon Scannell
CVE-2018-9115 EXPLOITDB MEDIUM python
Systematic SitaWare 6.4 SP2 - Denial of Service via NVG Interface Input
Systematic SitaWare 6.4 SP2 does not validate input from other sources sufficiently. e.g., information utilizing the NVG interface. An attacker can freeze the Situational Layer, which means that the Situational Picture is no longer updated. Unfortunately, the user cannot notice until he tries to work with that layer.
by 2u53
CVSS 5.3
EIP-2026-118243 EXPLOITDB python
Advantech WebAccess < 8.1 - webvrpcs DrawSrv.dll Path BwBuildPath Stack-Based Buffer Overflow
by Chris Lyne