Exploitdb Exploits
4,759 exploits tracked across all sources.
ChinaMobile GPN2.4P21-C-CN W2001EN-00 - Unauthenticated RCE
ChinaMobile GPN2.4P21-C-CN W2001EN-00 is affected by: Incorrect Access Control - Unauthenticated Remote Reboot. The impact is: PLC Wireless Router's are vulnerable to an unauthenticated remote reboot due. The component is: Reboot settings are available to unauthenticated users instead of only authenticaed users. The attack vector is: Remote.
by Chris Rose
CVSS 7.5
Monitoring software iSmartViewPro 1.5 - 'SavePath for ScreenShots' Buffer Overflow
by Shubham Singh
Switch Port Mapping Tool 2.81.2 - 'Name Field' Denial of Service (PoC)
by Shubham Singh
Acunetix WVS 10.0 Build 20150623 - Denial of Service (PoC)
by Javier Enrique Rodriguez Gutierrez
iSmartViewPro 1.5 - 'Password' Buffer Overflow
by Javier Enrique Rodriguez Gutierrez
Mikrotik WinBox 6.42 - Credential Disclosure (Metasploit)
by Omid Shojaei
reSIProcate <1.10.2 - Buffer Overflow
The ConnectionBase::preparseNewBytes function in resip/stack/ConnectionBase.cxx in reSIProcate through 1.10.2 allows remote attackers to cause a denial of service (buffer overflow) or possibly execute arbitrary code when TLS communication is enabled.
by Joachim De Zutter
CVSS 9.8
iSmartViewPro 1.5 - 'Device Alias' Buffer Overflow
by Rodrigo Eduardo Rodriguez
iSmartViewPro 1.5 - 'Account' Buffer Overflow
by Alan Joaquín Baeza Meza
OpenEMR <5.0.1.4 - Command Injection
OS command injection occurring in versions of OpenEMR before 5.0.1.4 allows a remote authenticated attacker to execute arbitrary commands by making a crafted request to interface/main/daemon_frame.php after modifying the "hylafax_server" global variable in interface/super/edit_globals.php.
by Cody Zacharias
CVSS 8.8
QNap QVR Client 5.0.3.23100 - Denial of Service (PoC)
by Rodrigo Eduardo Rodriguez
AgataSoft Auto PingMaster 1.5 Buffer Overflow SEH
AgataSoft Auto PingMaster 1.5 contains a stack-based buffer overflow vulnerability in the Trace Route host name field that allows local attackers to execute arbitrary code by triggering structured exception handling. Attackers can craft a malicious ping.txt file with shellcode and jump instructions that overwrite the SEH handler pointer to achieve code execution when the file contents are pasted into the application.
by bzyo
CVSS 8.4
CloudMe Sync 1.10.9 - Buffer Overflow (SEH)(DEP Bypass)
by Manoj Ahuje
Imperva SecureSphere <13.0-11.5 - Privilege Escalation
Imperva SecureSphere running v13.0, v12.0, or v11.5 allows low privileged users to add SSH login keys to the admin user, resulting in privilege escalation.
by 0x09AL
CVSS 8.8
Datalust Seq <4.2.605 - Auth Bypass
Datalust Seq before 4.2.605 is vulnerable to Authentication Bypass (with the attacker obtaining admin access) via '"Name":"isauthenticationenabled","Value":false' in an api/settings/setting-isauthenticationenabled PUT request.
by Daniel Chactoura
CVSS 9.8
AgataSoft Auto PingMaster 1.5 - 'Host name' Denial of Service (PoC)
by Luis Martínez
CoSoSys Endpoint Protector 4.5.0.1 - (Authenticated) Remote Root Command Injection
by 0x09AL
Allok Fast AVI MPEG Splitter 1.2 - Buffer Overflow (PoC)
by Shubham Singh
Switch Port Mapping Tool 2.81 - 'SNMP Community Name' Denial of Service (PoC)
by Luis Martínez
ipPulse 1.92 - 'Licence Key' Denial of Service (PoC)
by Shubham Singh
Allok MOV Converter 4.6.1217 - Buffer Overflow (SEH)
by Shubham Singh
ipPulse 1.92 - 'IP Address/HostName-Comment' Denial of Service (PoC)
by Luis Martínez
By Source