Exploitdb Exploits
31,394 exploits tracked across all sources.
Android Widevine QSEE TrustZone < 5.1.1 LMY49F and < 2016-01-01 - Privilege Escalation via QSEECOM Access
The Widevine QSEE TrustZone application in Android 5.x before 5.1.1 LMY49F and 6.0 before 2016-01-01 allows attackers to gain privileges via a crafted application that leverages QSEECOM access, aka internal bug 24446875.
by laginimaineb
CVSS 7.8
Observium 0.16.7533 - (Authenticated) Arbitrary Command Execution
by Dolev Farhi
Wireshark - ett_zbee_zcl_pwr_prof_enphases Static Out-of-Bounds Read
by Google Security Research
Wireshark - dissect_2008_16_security_4 Stack Buffer Overflow
by Google Security Research
Wireshark - alloc_address_wmem Assertion Failure
by Google Security Research
Microsoft Windows and Office - Remote Code Execution via Crafted Embedded Font
The font library in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold and 1511; Office 2007 SP3 and 2010 SP2; Word Viewer; .NET Framework 3.0 SP2, 3.5, and 3.5.1; Skype for Business 2016; Lync 2010; Lync 2010 Attendee; Lync 2013 SP1; and Live Meeting 2007 Console allows remote attackers to execute arbitrary code via a crafted embedded font, aka "Graphics Memory Corruption Vulnerability."
by Google Security Research
CVSS 8.8
PHP < 7.0.6 - Integer Overflow in ZipArchive getFromIndex and getFromName
Multiple integer overflows in php_zip.c in the zip extension in PHP before 7.0.6 allow remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted call to (1) getFromIndex or (2) getFromName in the ZipArchive class.
by Hans Jerry Illikainen
CVSS 9.8
Apple iOS <9.3 & OS X <10.11.4 - RCE
Race condition in the kernel in Apple iOS before 9.3 and OS X before 10.11.4 allows attackers to execute arbitrary code in a privileged context via a crafted app.
by fG!
CVSS 7.0
libgd 2.1.1 - Denial of Service and Potential Remote Code Execution via Crafted Compressed GD2 Data
Integer signedness error in GD Graphics Library 2.1.1 (aka libgd or libgd2) allows remote attackers to cause a denial of service (crash) or potentially execute arbitrary code via crafted compressed gd2 data, which triggers a heap-based buffer overflow.
by Hans Jerry Illikainen
CVSS 9.8
CompuSource Systems Real Time Home Banking - Local Privilege Escalation
by Information Paradox
NationBuilder - Multiple Persistent Cross-Site Scripting Vulnerabilities
by LiquidWorm
Totemomail 4.x/5.x - Persistent Cross-Site Scripting
by Vulnerability-Lab
C/C++ Offline Compiler and C For OS - Persistent Cross-Site Scripting
by Vulnerability-Lab
Microsoft Windows - Local Privilege Escalation via Kernel-Mode Driver
The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vulnerability," a different vulnerability than CVE-2016-0165 and CVE-2016-0167.
by Nils Sommer
CVSS 7.8
modified eCommerce Shopsoftware 2.0.0.0 - SQL Injection
Multiple SQL injection vulnerabilities in modified eCommerce Shopsoftware 2.0.0.0 revision 9678, when the easybill-module is not installed, allow remote attackers to execute arbitrary SQL commands via the (1) orders_status or (2) customers_status parameter to api/easybill/easybillcsv.php.
by Felix Maduakor
CVSS 9.8
pfSense < 2.2.6 - Authenticated OS Command Injection via Graph Parameter
pfSense before 2.3 allows remote authenticated users to execute arbitrary OS commands via a '|' character in the status_rrd_graph_img.php graph parameter, related to _rrd_graph_img.php.
by Security-Assessment.com
CVSS 8.8
WordPress Plugin leenk.me 2.5.0 - Cross-Site Request Forgery / Cross-Site Scripting
by cor3sm4sh3r
WordPress Plugin Kento Post View Counter 2.8 - Cross-Site Request Forgery / Cross-Site Scripting
by cor3sm4sh3r
TH692 Outdoor P2P HD Waterproof IP Camera - Hard-Coded Credentials
by DLY
Ubiquiti airMAX, airFiber, airGateway and EdgeSwitch XP - Unauthenticated Path Traversal and Arbitrary File Write
The web management interface of Ubiquiti airMAX, airFiber, airGateway and EdgeSwitch XP (formerly TOUGHSwitch) allows an unauthenticated attacker to upload and write arbitrary files using directory traversal techniques. An attacker can exploit this vulnerability to gain root privileges. This vulnerability is fixed in the following product versions (fixes released in July 2015, all prior versions are affected): airMAX AC 7.1.3; airMAX M (and airRouter) 5.6.2 XM/XW/TI, 5.5.11 XM/TI, and 5.5.10u2 XW; airGateway 1.1.5; airFiber AF24/AF24HD 2.2.1, AF5x 3.0.2.1, and AF5 2.2.1; airOS 4 XS2/XS5 4.0.4; and EdgeSwitch XP (formerly TOUGHSwitch) 1.3.2.
by 93c08539
CVSS 9.8
By Source