Exploitdb Exploits

4,724 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-117347 EXPLOITDB python
IP-Tools 2.5 - 'Log to file' Local Buffer Overflow (SEH) (Egghunter)
by Juan Prescotto
EIP-2026-116853 EXPLOITDB python
Avast Anti-Virus < 19.1.2360 - Local Credentials Disclosure
by Nathu Nandwani
EIP-2026-115319 EXPLOITDB python
FutureDj Pro 1.7.2.0 - Denial of Service
by Achilles
EIP-2026-115318 EXPLOITDB python
FutureDj Pro 1.7.2.0 - Denial of Service
by Achilles
CVE-2019-6545 EXPLOITDB HIGH python
AVEVA Software, LLC InduSoft Web Studio <8.1 SP3 & InTouch Edge HMI...
AVEVA Software, LLC InduSoft Web Studio prior to Version 8.1 SP3 and InTouch Edge HMI (formerly InTouch Machine Edition) prior to Version 2017 Update. An unauthenticated remote user could use a specially crafted database connection configuration file to execute an arbitrary process on the server machine.
by Jacob Baines
CVSS 7.5
EIP-2026-117859 EXPLOITDB python
River Past Audio Converter 7.7.16 - Buffer Overflow (SEH)
by Matteo Malvica
EIP-2026-117858 EXPLOITDB python
River Past Audio Converter 7.7.16 - Buffer Overflow (SEH)
by Matteo Malvica
CVE-2019-25655 EXPLOITDB MEDIUM python
Device Monitoring Studio 8.10.00.8925 Denial of Service
Device Monitoring Studio 8.10.00.8925 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string to the server connection dialog. Attackers can trigger the crash by entering a malformed server name or address containing repeated characters through the Tools menu Connect to New Server interface.
by Victor Mondragón
CVSS 6.2
CVE-2019-25649 EXPLOITDB MEDIUM python
River Past Audio Converter 7.7.16 Local Buffer Overflow DoS
River Past Audio Converter 7.7.16 contains a local buffer overflow vulnerability in the activation code field that allows local attackers to crash the application by supplying an oversized input string. Attackers can paste a large payload of repeated characters into the 'E-Mail and Activation Code' field and click 'Activate' to trigger a denial of service condition.
by Achilles
CVSS 5.5
CVE-2019-25666 EXPLOITDB MEDIUM python
SpotAuditor 3.6.7 Denial of Service Buffer Overflow
SpotAuditor 3.6.7 contains a local buffer overflow vulnerability in the Base64 Password Decoder component that allows attackers to crash the application. Attackers can supply an oversized Base64 string through the decoder interface to trigger a denial of service condition.
by Rafael Pedrero
CVSS 6.2
CVE-2019-25665 EXPLOITDB MEDIUM python
River Past Ringtone Converter 2.7.6.1601 Buffer Overflow DoS
River Past Ringtone Converter 2.7.6.1601 contains a local buffer overflow vulnerability that allows attackers to crash the application by supplying oversized input to activation fields. Attackers can paste 300 bytes of data into the Email textbox and Activation code textarea via the Help menu's Activate dialog to trigger a denial of service condition.
by Rafael Pedrero
CVSS 6.2
CVE-2019-25667 EXPLOITDB MEDIUM python
TaskInfo 8.2.0.280 Denial of Service Buffer Overflow
TaskInfo 8.2.0.280 contains a local buffer overflow vulnerability that allows attackers to crash the application by supplying oversized input to registration fields. Attackers can paste excessively long strings into the New User Name or New Serial Number textboxes in the Help menu's registration dialog to trigger a denial of service condition.
by Rafael Pedrero
CVSS 6.2
CVE-2019-25648 EXPLOITDB MEDIUM python
MyVideoConverter Pro 3.14 Denial of Service Buffer Overflow
MyVideoConverter Pro 3.14 contains a local buffer overflow vulnerability that allows attackers to crash the application by supplying an excessively long string to the registration code input field. Attackers can paste a malicious payload containing 10000 bytes into the 'Copy and Paste Registration Code' field to trigger a denial of service condition.
by Achilles
CVSS 6.2
CVE-2019-25661 EXPLOITDB MEDIUM python
Remote Process Explorer 1.0.0.16 Local Buffer Overflow DoS
Remote Process Explorer 1.0.0.16 contains a local buffer overflow vulnerability that allows attackers to cause a denial of service by sending a crafted payload to the Add Computer dialog. Attackers can paste a malicious string into the computer name textbox and trigger a crash by connecting to the added computer, overwriting the SEH chain and corrupting exception handlers.
by Rafael Pedrero
CVSS 6.2
CVE-2018-25219 EXPLOITDB HIGH python
PassFab Excel Password Recovery 8.3.1 SEH Buffer Overflow
PassFab Excel Password Recovery 8.3.1 contains a structured exception handling buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying a malicious payload in the registration code field. Attackers can craft a buffer overflow payload with a pop-pop-ret gadget and shellcode that triggers code execution when pasted into the Licensed E-mail and Registration Code field during the registration process.
by Achilles
CVSS 8.4
CVE-2019-25660 EXPLOITDB MEDIUM python
LanHelper 1.74 Denial of Service via Buffer Overflow
LanHelper 1.74 contains a local buffer overflow vulnerability that allows attackers to crash the application by sending excessively long input strings. Attackers can exploit the Form Send Message feature by pasting 6000 bytes of data into the Message text field to trigger a denial of service condition.
by Rafael Pedrero
CVSS 6.2
CVE-2019-25659 EXPLOITDB MEDIUM python
ASPRunner Professional 6.0.766 Local Buffer Overflow DoS
ASPRunner Professional 6.0.766 contains a local buffer overflow vulnerability that allows attackers to cause a denial of service by supplying an excessively long project name. Attackers can paste 180 or more characters into the Project name field during project creation to trigger an application crash.
by Rafael Pedrero
CVSS 6.2
CVE-2019-25658 EXPLOITDB MEDIUM python
a-Mac Address Change 5.4 Local Buffer Overflow DoS
a-Mac Address Change 5.4 contains a local buffer overflow vulnerability that allows local attackers to crash the application by supplying oversized input to registration form fields. Attackers can paste 212 bytes of data into the 'Your Name', 'Your Company', or 'Register Code' fields and click the Register button to trigger a denial of service crash.
by Rafael Pedrero
CVSS 5.5
CVE-2019-25657 EXPLOITDB MEDIUM python
AnyBurn 4.3 x86 Denial of Service via Image Conversion
AnyBurn 4.3 x86 contains a denial of service vulnerability that allows local attackers to crash the application by supplying an excessively long string to the image conversion function. Attackers can paste a large buffer into the source or destination image file fields and click Convert Now to trigger a crash.
by Dino Covotsos
CVSS 5.5
CVE-2019-25656 EXPLOITDB HIGH python
R i386 3.5.0 Local Buffer Overflow SEH
R i386 3.5.0 contains a local buffer overflow vulnerability in the GUI Preferences dialog that allows local attackers to trigger a structured exception handler (SEH) overwrite by supplying malicious input. Attackers can craft a payload string in the 'Language for menus and messages' field to overwrite SEH records and achieve code execution with calculator or arbitrary shellcode.
by Dino Covotsos
CVSS 8.4
EIP-2026-118041 EXPLOITDB python
UltraISO 9.7.1.3519 - 'Output FileName' Local Buffer Overflow (SEH)
by Dino Covotsos
EIP-2026-118040 EXPLOITDB python
UltraISO 9.7.1.3519 - 'Output FileName' Local Buffer Overflow (SEH)
by Dino Covotsos
EIP-2026-115260 EXPLOITDB python
FlexHEX 2.46 - Buffer Overflow (PoC) (SEH Overwrite)
by Rafael Pedrero
EIP-2026-115259 EXPLOITDB python
FlexHEX 2.46 - Buffer Overflow (PoC) (SEH Overwrite)
by Rafael Pedrero
EIP-2026-114873 EXPLOITDB python
Advanced Host Monitor 11.90 Beta - 'Registration number' Denial of Service (PoC)
by Luis Martínez
By Source
All 4,724 Exploitdb 50,121 Writeup 46,839 Nomisec 21,209 Metasploit 3,189 Github 2,279 Vulncheck_xdb 900 Inthewild 518 Gitlab 439 Gitee 415 Patchapalooza 312
By Language
text 31,341 ruby 5,920 python 5,750 c 3,551 perl 2,854 html 2,055 php 1,334 bash 459 java 360 javascript 260 c++ 247 shell 73 go 41 postscript 25 xml 24