Exploitdb Exploits

2,689 exploits tracked across all sources.

Sort: Activity Stars
CVE-2016-8377 EXPLOITDB HIGH ruby
Fatek Automation PLC WinProladder <3.11 Build 14701 - Buffer Overflow
An issue was discovered in Fatek Automation PLC WinProladder Version 3.11 Build 14701. A stack-based buffer overflow vulnerability exists when the software application connects to a malicious server, resulting in a stack buffer overflow. This causes an exploitable Structured Exception Handler (SEH) overwrite condition that may allow remote code execution.
by James Fitts
CVSS 8.0
CVE-2005-2842 EXPLOITDB ruby
DameWare Mini Remote Control <4.9.0 - RCE
Buffer overflow in dwrcs.exe in DameWare Mini Remote Control before 4.9.0 allows remote attackers to execute arbitrary code via the username.
by James Fitts
EIP-2026-118374 EXPLOITDB ruby
Cloudview NMS < 2.00b - Arbitrary File Upload (Metasploit)
by James Fitts
EIP-2026-104783 EXPLOITDB ruby
Trend Micro Control Manager - ImportFile Directory Traversal Remote Code Execution (Metasploit)
by James Fitts
CVE-2014-3805 EXPLOITDB ruby
AlienVault OSSIM < 4.7.0 - Remote Code Execution via av-centerd SOAP Service
The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allows remote attackers to execute arbitrary commands via a crafted (1) get_license, (2) get_log_line, or (3) update_system/upgrade_pro_web request, a different vulnerability than CVE-2014-3804.
by James Fitts
CVE-2014-3804 EXPLOITDB ruby
AlienVault OSSIM < 4.7.0 - Remote Code Execution via av-centerd SOAP Service
The av-centerd SOAP service in AlienVault OSSIM before 4.7.0 allows remote attackers to execute arbitrary commands via a crafted (1) update_system_info_debian_package, (2) ossec_task, (3) set_ossim_setup admin_ip, (4) sync_rserver, or (5) set_ossim_setup framework_ip request, a different vulnerability than CVE-2014-3805.
by James Fitts
CVE-2015-7901 EXPLOITDB ruby VERIFIED
Infinite Automation Mango Automation <2.6.0-430 - Command Injection
Infinite Automation Mango Automation 2.5.x and 2.6.x through 2.6.0 build 430 allows remote authenticated users to execute arbitrary OS commands via unspecified vectors.
by James Fitts
CVE-2013-6810 EXPLOITDB ruby
EMC Connectrix Manager - Remote Code Execution via Servlet File Upload
The server in Brocade Network Advisor before 12.1.0, as used in EMC Connectrix Manager Converged Network Edition (CMCNE), HP B-series SAN Network Advisor, and possibly other products, allows remote attackers to execute arbitrary code by using a servlet to upload an executable file.
by James Fitts
CVE-2013-6810 EXPLOITDB ruby
EMC Connectrix Manager - Remote Code Execution via Servlet File Upload
The server in Brocade Network Advisor before 12.1.0, as used in EMC Connectrix Manager Converged Network Edition (CMCNE), HP B-series SAN Network Advisor, and possibly other products, allows remote attackers to execute arbitrary code by using a servlet to upload an executable file.
by James Fitts
EIP-2026-114669 EXPLOITDB ruby VERIFIED
Docker Daemon - Unprotected TCP Socket (Metasploit)
by Metasploit
EIP-2026-118606 EXPLOITDB ruby VERIFIED
Gh0st Client (C2 Server) - Remote Buffer Overflow (Metasploit)
by Metasploit
EIP-2026-118605 EXPLOITDB ruby VERIFIED
Gh0st Client (C2 Server) - Remote Buffer Overflow (Metasploit)
by Metasploit
CVE-2017-1000117 EXPLOITDB HIGH ruby VERIFIED
Malicious Git HTTP Server For CVE-2017-1000117
A malicious third-party can give a crafted "ssh://..." URL to an unsuspecting victim, and an attempt to visit the URL can result in any program that exists on the victim's machine being executed. Such a URL could be placed in the .gitmodules file of a malicious project, and an unsuspecting victim could be tricked into running "git clone --recurse-submodules" to trigger the vulnerability.
by Metasploit
CVSS 8.8
CVE-2017-1129 EXPLOITDB MEDIUM ruby
IBM Notes 8.5 and 9.0 - Denial of Service via Malicious Link
IBM Notes 8.5 and 9.0 is vulnerable to a denial of service. If a user is persuaded to click on a malicious link, it could cause the Notes client to hang and have to be restarted. IBM X-Force ID: 121370.
by Dhiraj Mishra
CVSS 6.5
EIP-2026-101414 EXPLOITDB ruby VERIFIED
QNAP Transcode Server - Command Execution (Metasploit)
by Metasploit
EIP-2026-117526 EXPLOITDB ruby VERIFIED
Microsoft Windows - Escalate UAC Protection Bypass (Via COM Handler Hijack) (Metasploit)
by Metasploit
EIP-2026-117525 EXPLOITDB ruby VERIFIED
Microsoft Windows - Escalate UAC Protection Bypass (Via COM Handler Hijack) (Metasploit)
by Metasploit
CVE-2017-1092 EXPLOITDB CRITICAL ruby VERIFIED
IBM Informix Open Admin Tool <12.1 - RCE
IBM Informix Open Admin Tool 11.5, 11.7, and 12.1 could allow an unauthorized user to execute arbitrary code as system admin on Windows servers. IBM X-Force ID: 120390.
by Metasploit
CVSS 9.8
CVE-2017-7442 EXPLOITDB HIGH ruby VERIFIED
Nitro Pro 11.0.3.173 - Remote Code Execution via Directory Traversal in saveAs and launchURL
Nitro Pro 11.0.3.173 allows remote attackers to execute arbitrary code via saveAs and launchURL calls with directory traversal sequences.
by Metasploit
CVSS 8.8
CVE-2016-9349 EXPLOITDB HIGH ruby
Advantech SUISAccess Server <3.0 - Info Disclosure
An issue was discovered in Advantech SUISAccess Server Version 3.0 and prior. An attacker could traverse the file system and extract files that can result in information disclosure.
by James Fitts
CVSS 7.5
CVE-2016-9349 EXPLOITDB HIGH ruby
Advantech SUISAccess Server <3.0 - Info Disclosure
An issue was discovered in Advantech SUISAccess Server Version 3.0 and prior. An attacker could traverse the file system and extract files that can result in information disclosure.
by James Fitts
CVSS 7.5
CVE-2016-9351 EXPLOITDB HIGH ruby
Advantech SUISAccess Server <3.0 - Path Traversal
An issue was discovered in Advantech SUISAccess Server Version 3.0 and prior. The directory traversal/file upload error allows an attacker to upload and unpack a zip file.
by James Fitts
CVSS 7.0
CVE-2017-8464 EXPLOITDB HIGH ruby
Windows Shell - Remote Code Execution via Crafted .LNK File
Windows Shell in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, 1703, and Windows Server 2016 allows local users or remote attackers to execute arbitrary code via a crafted .LNK file, which is not properly handled during icon display in Windows Explorer or any other application that parses the icon of the shortcut. aka "LNK Remote Code Execution Vulnerability."
by Yorick Koster
CVSS 8.8
CVE-2025-34099 EXPLOITDB CRITICAL ruby VERIFIED
VICIdial <2.13 RC1 - Command Injection
An unauthenticated command injection vulnerability exists in VICIdial versions 2.9 RC1 through 2.13 RC1, within the vicidial_sales_viewer.php component when password encryption is enabled (a non-default configuration). The application improperly passes the HTTP Basic Authentication password directly to a call to exec() without adequate sanitation. This allows remote attackers to inject and execute arbitrary operating system commands as the web server user. NOTE: This vulnerability was mitigated in 2017.
by Metasploit
CVE-2017-9769 EXPLOITDB CRITICAL ruby VERIFIED
Razer Synapse <2.20.15.1104 - Privilege Escalation
A specially crafted IOCTL can be issued to the rzpnk.sys driver in Razer Synapse 2.20.15.1104 that is forwarded to ZwOpenProcess allowing a handle to be opened to an arbitrary process.
by Metasploit
CVSS 9.8
By Source
All 2,689 Writeup 62,021 Exploitdb 50,076 Nomisec 22,325 Github 3,504 Metasploit 3,295 Vulncheck_xdb 926 Inthewild 514 Gitlab 470 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,507 ruby 5,985 c 3,621 perl 2,849 html 2,072 php 1,332 bash 462 java 370 c++ 257 javascript 228 shell 127 go 72 postscript 25 typescript 25