Exploitdb Exploits

31,329 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-114426 EXPLOITDB text
Xerox DC260 EFI Fiery Controller Webtools 2.0 - Arbitrary File Disclosure
by LiquidWorm
EIP-2026-106705 EXPLOITDB text
Easy!Appointments 1.2.1 - Cross-Site Scripting
by LiquidWorm
CVE-2017-18049 EXPLOITDB MEDIUM text VERIFIED
Silverstripe < 3.5.5 - Injection
In the CSV export feature of SilverStripe before 3.5.6, 3.6.x before 3.6.3, and 4.x before 4.0.1, it's possible for the output to contain macros and scripts, which may be executed if imported without sanitization into common software (including Microsoft Excel). For example, the CSV data may contain untrusted user input from the "First Name" field of a user's /myprofile page.
by Ishaq Mohammed
CVSS 5.5
CVE-2016-6914 EXPLOITDB HIGH text
UI Unifi Video < 3.8.0 - Incorrect Default Permissions
Ubiquiti UniFi Video before 3.8.0 for Windows uses weak permissions for the installation directory, which allows local users to gain SYSTEM privileges via a Trojan horse taskkill.exe file.
by Julien Ahrens
CVSS 7.8
CVE-2017-17875 EXPLOITDB CRITICAL text
Jextn Faq Pro - SQL Injection
The JEXTN FAQ Pro extension 4.0.0 for Joomla! has SQL Injection via the id parameter in a view=category action.
by Ihsan Sencan
CVSS 9.8
CVE-2017-17876 EXPLOITDB HIGH text
Biometric Shift EMS 3.0 - Auth Bypass
Biometric Shift Employee Management System 3.0 allows remote attackers to bypass intended file-read restrictions via a user=download request with a pathname in the path parameter.
by Ihsan Sencan
CVSS 7.5
EIP-2026-104117 EXPLOITDB text
Vitek - Remote Command Execution / Information Disclosure (PoC)
by bashis
CVE-2017-17721 EXPLOITDB CRITICAL text
Zuuse Beims Contractorweb .net - SQL Injection
CWEBNET/WOSummary/List in ZUUSE BEIMS ContractorWeb .NET 5.18.0.0 allows SQL injection via the tradestatus, assetno, assignto, building, domain, jobtype, site, trade, woType, workorderno, or workorderstatus parameter.
by Rajwinder Singh
CVSS 9.8
CVE-2017-17759 EXPLOITDB CRITICAL text
Conarc Ichannel - Denial of Service
Conarc iChannel allows remote attackers to obtain sensitive information, modify the configuration, or cause a denial of service (by deleting the configuration) via a wc.dll?wwMaint~EditConfig request (which reaches an older version of a West Wind Web Connection HTTP service).
by Information Paradox
CVSS 9.8
CVE-2017-17738 EXPLOITDB HIGH text
BrightSign Digital Signage <4k242 - Path Traversal
The BrightSign Digital Signage (4k242) device (Firmware 6.2.63 and below) allows renaming and modifying files via /tools.html.
by Information Paradox
CVSS 7.5
CVE-2017-17737 EXPLOITDB MEDIUM text
Brightsign 4k242 Firmware < 6.2.63 - XSS
The BrightSign Digital Signage (4k242) device (Firmware 6.2.63 and below) has XSS via the REF parameter to /network_diagnostics.html or /storage_info.html.
by Information Paradox
CVSS 6.1
CVE-2017-5717 EXPLOITDB HIGH text VERIFIED
Intel Graphics Driver - Privilege Escalation
Type Confusion in Content Protection HECI Service in Intel Graphics Driver allows unprivileged user to elevate privileges via local access.
by Google Security Research
CVSS 7.8
EIP-2026-108811 EXPLOITDB text VERIFIED
Joomla! Component NextGen Editor 2.1.0 - 'plname' SQL Injection
by Ihsan Sencan
CVE-2017-17739 EXPLOITDB CRITICAL text
Brightsign 4k242 Firmware < 6.2.63 - Path Traversal
The BrightSign Digital Signage (4k242) device (Firmware 6.2.63 and below) has directory traversal via the /storage.html rp parameter, allowing an attacker to read or write to files.
by Information Paradox
CVSS 9.8
CVE-2017-18048 EXPLOITDB HIGH text VERIFIED
Monstra - Unrestricted File Upload
Monstra CMS 3.0.4 allows users to upload arbitrary files, which leads to remote command execution on the server, for example because .php (lowercase) is blocked but .PHP (uppercase) is not.
by Ishaq Mohammed
CVSS 8.8
EIP-2026-108883 EXPLOITDB text
Joomla! Component User Bench 1.0 - 'userid' SQL Injection
by Ihsan Sencan
EIP-2026-108803 EXPLOITDB text
Joomla! Component My Projects 2.0 - SQL Injection
by Ihsan Sencan
EIP-2026-108688 EXPLOITDB text VERIFIED
Joomla! Component JB Visa 1.0 - 'visatype' SQL Injection
by Ihsan Sencan
EIP-2026-108668 EXPLOITDB text
Joomla! Component Guru Pro - 'promocode' SQL Injection
by Ihsan Sencan
EIP-2026-105861 EXPLOITDB text
Ciuis CRM 1.0.7 - SQL Injection
by Zahid Abbasi
EIP-2026-105770 EXPLOITDB text
Cells Blog 3.5 - 'bgid' / 'fmid' / 'fnid' SQL Injection
by Ihsan Sencan
CVE-2017-15048 EXPLOITDB HIGH text VERIFIED
Zoom < 2.0.115900.1201 - Memory Corruption
Stack-based buffer overflow in the ZoomLauncher binary in the Zoom client for Linux before 2.0.115900.1201 allows remote attackers to execute arbitrary code by leveraging the zoommtg:// scheme handler.
by Conviso
CVSS 8.8
CVE-2017-15049 EXPLOITDB HIGH text VERIFIED
Zoom < 2.0.115900.1201 - OS Command Injection
The ZoomLauncher binary in the Zoom client for Linux before 2.0.115900.1201 does not properly sanitize user input when constructing a shell command, which allows remote attackers to execute arbitrary code by leveraging the zoommtg:// scheme handler.
by Conviso
CVSS 8.8
EIP-2026-109594 EXPLOITDB text VERIFIED
Movie Guide 2.0 - SQL Injection
by Ihsan Sencan
CVE-2017-17649 EXPLOITDB MEDIUM text
Readymade Video Sharing Script - Code Injection
Readymade Video Sharing Script 3.2 has HTML Injection via the single-video-detail.php comment parameter.
by Ihsan Sencan
CVSS 6.1
By Source
All 31,329 Writeup 56,904 Exploitdb 49,983 Nomisec 21,402 Metasploit 3,216 Github 2,518 Vulncheck_xdb 901 Inthewild 514 Gitlab 437 Gitee 415 Patchapalooza 312
By Language
text 31,329 python 5,908 ruby 5,905 c 3,561 perl 2,849 html 2,053 php 1,326 bash 459 java 362 c++ 250 javascript 215 shell 88 go 53 postscript 25 xml 24