Exploitdb Exploits
2,689 exploits tracked across all sources.
Apache Tomcat 7.0.0-7.0.81, 8.0.0.RC1-8.0.46, 8.5.0-8.5.22, 9.0.0.M1-9.0.0 - Remote Code Execution via JSP Upload
When running Apache Tomcat versions 9.0.0.M1 to 9.0.0, 8.5.0 to 8.5.22, 8.0.0.RC1 to 8.0.46 and 7.0.0 to 7.0.81 with HTTP PUTs enabled (e.g. via setting the readonly initialisation parameter of the Default servlet to false) it was possible to upload a JSP file to the server via a specially crafted request. This JSP could then be requested and any code it contained would be executed by the server.
by Metasploit
CVSS 8.1
Flexense SyncBreeze Enterprise <10.1.16 - Buffer Overflow
There exists an unauthenticated SEH based Buffer Overflow vulnerability in the HTTP server of Flexense SyncBreeze Enterprise v10.1.16. When sending a GET request with an excessive length, it is possible for a malicious user to overwrite the SEH record and execute a payload that would run under the Windows SYSTEM account.
by wetw0rk
CVSS 7.8
Trend Micro OfficeScan 11 and XG (12) - Remote Code Execution via Proxy.php T Parameter
Proxy command injection vulnerability in Trend Micro OfficeScan 11 and XG (12) allows remote attackers to execute arbitrary code on vulnerable installations. The specific flaw can be exploited by parsing the T parameter within Proxy.php. Formerly ZDI-CAN-4544.
by Mehmet Ince
CVSS 9.8
Trend Micro InterScan Messaging Security (Virtual Appliance) - 'Proxy.php' Remote Code Execution (Metasploit)
by Mehmet Ince
OrientDB 2.2.2 < 2.2.22 - Remote Code Execution (Metasploit)
by Metasploit
Rancher Server - Docker Daemon Code Execution (Metasploit)
by Metasploit
Apache mod_cgi Bash Environment Variable Code Injection (Shellshock)
GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which allows remote attackers to execute arbitrary code via a crafted environment, as demonstrated by vectors involving the ForceCommand feature in OpenSSH sshd, the mod_cgi and mod_cgid modules in the Apache HTTP Server, scripts executed by unspecified DHCP clients, and other situations in which setting the environment occurs across a privilege boundary from Bash execution, aka "ShellShock." NOTE: the original fix for this issue was incorrect; CVE-2014-7169 has been assigned to cover the vulnerability that is still present after the incorrect fix.
by Metasploit
CVSS 9.8
LAquis SCADA < 4.1.0.3237 - Path Traversal
Leao Consultoria e Desenvolvimento de Sistemas (LCDS) LTDA ME LAquis SCADA software versions prior to version 4.1.0.3237 do not neutralize external input to ensure that users are not calling for absolute path sequences outside of their privilege level.
by James Fitts
CVSS 5.3
NodeJS Debugger - Command Injection (Metasploit)
by Metasploit
Supervisor XML-RPC Authenticated Remote Code Execution
The XML-RPC server in supervisor before 3.0.1, 3.1.x before 3.1.4, 3.2.x before 3.2.4, and 3.3.x before 3.3.3 allows remote authenticated users to execute arbitrary commands via a crafted XML-RPC request, related to nested supervisord namespace lookups.
by Metasploit
CVSS 8.8
Disk Pulse Enterprise 9.9.16 - GET Buffer Overflow (Metasploit)
by Metasploit
DenyAll WAF < 6.3.0 - Remote Code Execution (Metasploit)
by Mehmet Ince
Lockstep Backup for Workgroups 4.0.3 - Remote Buffer Overflow (Metasploit)
by James Fitts
WellinTech KingSCADA < 3.1.2.13 - Remote Code Execution via Crafted Packet
Stack-based buffer overflow in WellinTech KingSCADA before 3.1.2.13 allows remote attackers to execute arbitrary code via a crafted packet.
by James Fitts
haneWIN DNS Server 1.5.3 - Remote Buffer Overflow (Metasploit)
by James Fitts
EMC AlphaStor 4.0 <build 910 - Buffer Overflow
Buffer overflow in the Library Control Program (LCP) in EMC AlphaStor 4.0 before build 910 allows remote attackers to execute arbitrary code via crafted commands.
by James Fitts
EMC AlphaStor Device Manager - Opcode 0x72 Buffer Overflow (Metasploit)
by James Fitts
Cloudview NMS 2.00b - Writable Directory Traversal Execution (Metasploit)
by James Fitts
Carlo Gavazzi Powersoft <2.1.1.1 - Path Traversal
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Carlo Gavazzi Powersoft up to version 2.1.1.1 allows an unauthenticated, remote attacker to download any file from the affected device.
by James Fitts
CVSS 7.5
InduSoft Web Studio 7.1 - Path Traversal and Arbitrary Code Execution via NTWebServer
Directory traversal vulnerability in NTWebServer in InduSoft Web Studio 7.1 before SP2 Patch 4 allows remote attackers to read administrative passwords in APP files, and consequently execute arbitrary code, via unspecified web requests.
by James Fitts
CVSS 9.8
Carel PlantVisor <2.4.4 - Path Traversal
Directory traversal vulnerability in CarelDataServer.exe in Carel PlantVisor 2.4.4 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in an HTTP GET request.
by James Fitts
ZScada Modbus Buffer 2.0 - Stack Buffer Overflow (Metasploit)
by James Fitts
VIPA Controls WinPLC7 <5.0.45.5921 - Buffer Overflow
A Stack Buffer Overflow issue was discovered in VIPA Controls WinPLC7 5.0.45.5921 and prior. A stack-based buffer overflow vulnerability has been identified, where an attacker with a specially crafted packet could overflow the fixed length buffer. This could allow remote code execution.
by James Fitts
CVSS 7.5
Sielco Sistemi Winlog 2.07.16 - Remote Buffer Overflow (Metasploit)
by James Fitts
Motorola Netopia Netoctopus SDCS - Remote Stack Buffer Overflow (Metasploit)
by James Fitts
By Source