Exploitdb Exploits

31,392 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-117408 EXPLOITDB text
League of Legends Screensaver - Unquoted Service Path Privilege Escalation
by Vincent Yiu
EIP-2026-117407 EXPLOITDB text
League of Legends Screensaver - Insecure File Permissions Privilege Escalation
by Vincent Yiu
CVE-2016-1337 EXPLOITDB HIGH text
Cisco EPC3928 Firmware - Unauthenticated Sensitive Information Exposure via Boot Process Requests
Cisco EPC3928 devices allow remote attackers to obtain sensitive configuration and credential information by making requests during the early part of the boot process, related to a "Boot Information Disclosure" issue, aka Bug ID CSCux17178.
by Patryk Bogdan
CVSS 8.1
CVE-2016-20076 EXPLOITDB HIGH text
WordPress Simple-Backup 2.7.11 Arbitrary File Deletion and Download
WordPress Simple-Backup 2.7.11 contains multiple vulnerabilities that allow unauthenticated attackers to delete arbitrary files and download sensitive files by manipulating the delete_backup_file and download_backup_file parameters in tools.php. Attackers can exploit insufficient input validation using directory traversal techniques to access wp-config.php, database dumps, and other sensitive files, or delete critical files .htaccess to expose backup directories.
by PizzaHatHacker
CVSS 7.5
CVE-2016-5237 EXPLOITDB MEDIUM text
Valve SteamOS < 3.42.16.13 - Local Privilege Escalation via Weak File Permissions
Valve Steam 3.42.16.13 uses weak permissions for the files in the Steam program directory, which allows local users to modify the files and possibly gain privileges as demonstrated by a Trojan horse Steam.exe file.
by Gregory Smiley
CVSS 4.8
EIP-2026-114221 EXPLOITDB text VERIFIED
WordPress Plugin WP Mobile Detector 3.5 - Arbitrary File Upload
by Aaditya Purani
EIP-2026-113686 EXPLOITDB text
WordPress Plugin Double Opt-In for Download 2.0.9 - SQL Injection
by Kacper Szurek
EIP-2026-111690 EXPLOITDB text
rConfig 3.1.1 - Local File Inclusion
by Gregory Pickett
EIP-2026-109823 EXPLOITDB text VERIFIED
Nagios XI 5.2.7 - Multiple Vulnerabilities
by Security-Assessment.com
EIP-2026-106825 EXPLOITDB text
Electroweb Online Examination System 1.0 - SQL Injection
by Ali Ghanbari
EIP-2026-102353 EXPLOITDB text VERIFIED
Apache Continuum 1.4.2 - Multiple Vulnerabilities
by David Shanahan
CVE-2014-6278 EXPLOITDB HIGH text
GNU Bash through 4.3 bash43-026 - Remote Code Execution via Environment Variable Function Parsing
GNU Bash through 4.3 bash43-026 does not properly parse function definitions in the values of environment variables, which allows remote attackers to execute arbitrary commands via a crafted environment, as demonstrated by vectors involving the ForceCommand feature in OpenSSH sshd, the mod_cgi and mod_cgid modules in the Apache HTTP Server, scripts executed by unspecified DHCP clients, and other situations in which setting the environment occurs across a privilege boundary from Bash execution. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-6271, CVE-2014-7169, and CVE-2014-6277.
by lastc0de
CVSS 8.8
EIP-2026-100459 EXPLOITDB text
Notilus Travel Solution Software 2012 R3 - SQL Injection
by Alex Haynes
EIP-2026-111737 EXPLOITDB text
Relay Ajax Directory Manager relayb01-071706/1.5.1/1.5.3 - Arbitrary File Upload
by RedTeam Pentesting GmbH
EIP-2026-108853 EXPLOITDB text VERIFIED
Joomla! Component SecurityCheck 2.8.9 - Multiple Vulnerabilities
by ADEO Security
EIP-2026-103720 EXPLOITDB text
Websockify (C Implementation) 0.8.0 - Buffer Overflow (PoC)
by RedTeam Pentesting GmbH
CVE-2016-3670 EXPLOITDB MEDIUM text
Liferay Portal < 6.2 - Stored Cross-Site Scripting via Profile Search FirstName Field
Cross-site scripting (XSS) vulnerability in users.jsp in the Profile Search functionality in Liferay before 7.0.0 CE RC1 allows remote attackers to inject arbitrary web script or HTML via the FirstName field.
by Fernando Câmara
CVSS 6.1
EIP-2026-105058 EXPLOITDB text
AjaxExplorer 1.10.3.2 - Multiple Vulnerabilities
by hyp3rlinx
EIP-2026-103741 EXPLOITDB text VERIFIED
Wireshark - erf_meta_read_tag SIGSEGV
by Google Security Research
EIP-2026-111515 EXPLOITDB text
ProcessMaker 3.0.1.7 - Multiple Vulnerabilities
by Mickael Dorigny
EIP-2026-100735 EXPLOITDB text
AirOS NanoStation M2 5.6-beta - Multiple Vulnerabilities
by Pablo Rebolini
EIP-2026-110236 EXPLOITDB text VERIFIED
Open Source Real Estate Script 3.6.0 - SQL Injection
by Meisam Monsef
CVE-2016-5108 EXPLOITDB CRITICAL text VERIFIED
Debian Linux < 2.2.3 - Memory Corruption
Buffer overflow in the DecodeAdpcmImaQT function in modules/codec/adpcm.c in VideoLAN VLC media player before 2.2.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted QuickTime IMA file.
by Patrick Coleman
CVSS 9.8
EIP-2026-110749 EXPLOITDB text
PHP Realestate Script Script 4.9.0 - SQL Injection
by Meisam Monsef
CVE-2016-1606 EXPLOITDB CRITICAL text
Micro Focus Rumba <9.4 HF 13960 - Buffer Overflow
Multiple stack-based buffer overflows in COM objects in Micro Focus Rumba 9.4.x before 9.4 HF 13960 allow remote attackers to execute arbitrary code via (1) the NetworkName property value to ObjectXSNAConfig.ObjectXSNAConfig in iconfig.dll, (2) the CPName property value to ObjectXSNAConfig.ObjectXSNAConfig in iconfig.dll, (3) the PrinterName property value to ProfileEditor.PrintPasteControl in ProfEdit.dll, (4) the Data argument to the WriteRecords function in FTXBIFFLib.AS400FtxBIFF in FtxBIFF.dll, (5) the Serialized property value to NMSECCOMPARAMSLib.SSL3 in NMSecComParams.dll, (6) the UserName property value to NMSECCOMPARAMSLib.FirewallProxy in NMSecComParams.dll, (7) the LUName property value to ProfileEditor.MFSNAControl in ProfEdit.dll, (8) the newVal argument to the Load function in FTPSFTPLib.SFtpSession in FTPSFtp.dll, or (9) a long Host field in the FTP Client.
by LiquidWorm
CVSS 9.8