Exploitdb Exploits

31,394 exploits tracked across all sources.

Sort: Activity Stars
CVE-2016-0122 EXPLOITDB HIGH text VERIFIED
Microsoft Excel/Word 2007-2016 & Office Compatibility Pack - Remote Code Execution via Crafted Document
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Word 2016 for Mac, Office Compatibility Pack SP3, and Excel Viewer allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."
by Sébastien Morin
CVSS 7.8
EIP-2026-111132 EXPLOITDB text
PHPmongoDB 1.0.0 - Multiple Vulnerabilities
by Ozer Goker
EIP-2026-110566 EXPLOITDB text
pfSense Firewall 2.2.6 - Services Cross-Site Request Forgery
by Aatif Shahdad
EIP-2026-101571 EXPLOITDB text
Brickcom Corporation Network Cameras - Multiple Vulnerabilities
by Orwelllabs
EIP-2026-110425 EXPLOITDB text
Ovidentia troubleticketsModule 7.6 - Remote File Inclusion
by bd0rk
CVE-2016-1595 EXPLOITDB MEDIUM text
Micro Focus Novell Service Desk <7.2 - SQL Injection
LiveTime/WebObjects/LiveTime.woa/wa/DownloadAction/downloadFile in Micro Focus Novell Service Desk before 7.2 allows remote authenticated users to conduct Hibernate Query Language (HQL) injection attacks and obtain sensitive information via the entityName parameter.
by Pedro Ribeiro
CVSS 6.5
CVE-2016-1594 EXPLOITDB MEDIUM text
Micro Focus Novell Service Desk <7.2 - Info Disclosure
Micro Focus Novell Service Desk before 7.2 allows remote authenticated users to read arbitrary attachments via a request to a LiveTime.woa URL, as demonstrated by obtaining sensitive information via a (1) downloadLogFiles or (2) downloadFile action.
by Pedro Ribeiro
CVSS 6.5
CVE-2016-1593 EXPLOITDB HIGH text
Micro Focus Novell Service Desk <7.2 - Path Traversal
Directory traversal vulnerability in the import users feature in Micro Focus Novell Service Desk before 7.2 allows remote authenticated administrators to upload and execute arbitrary JSP files via a .. (dot dot) in a filename within a multipart/form-data POST request to a LiveTime.woa URL.
by Pedro Ribeiro
CVSS 7.2
EIP-2026-116937 EXPLOITDB text
CAM UnZip 5.1 - .'ZIP' File Directory Traversal
by hyp3rlinx
EIP-2026-114383 EXPLOITDB text
WPN-XM Serverstack 0.8.6 - Cross-Site Request Forgery
by hyp3rlinx
EIP-2026-111789 EXPLOITDB text
RockMongo PHP MongoDB Administrator 1.1.8 - Multiple Vulnerabilities
by Ozer Goker
EIP-2026-110268 EXPLOITDB text
OpenCart 2.1.0.2 < 2.2.0.0 - json_decode Function Remote Code Execution
by Naser Farhadi
CVE-2016-1596 EXPLOITDB MEDIUM text
Micro Focus Novell Service Desk <7.2 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in Micro Focus Novell Service Desk before 7.2 allow remote authenticated users to inject arbitrary web script or HTML via a certain (1) user name, (2) tf_aClientFirstName, (3) tf_aClientLastName, (4) ta_selectedTopicContent, (5) tf_orgUnitName, (6) tf_aManufacturerFullName, (7) tf_aManufacturerName, (8) tf_aManufacturerAddress, or (9) tf_aManufacturerCity parameter.
by Pedro Ribeiro
CVSS 5.4
CVE-2015-8256 EXPLOITDB MEDIUM text
Axis Network Camera Firmware - Cross-Site Scripting
Multiple cross-site scripting (XSS) vulnerabilities in Axis network cameras.
by Orwelllabs
CVSS 6.1
CVE-2016-2417 EXPLOITDB CRITICAL text VERIFIED
Android < 4.4.4/5.0.2/5.1.1/2016-04-01 - Information Disclosure via Uninitialized Data
media/libmedia/IOMX.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not initialize a parameter data structure, which allows attackers to obtain sensitive information from process memory, and consequently bypass an unspecified protection mechanism, via unspecified vectors, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 26914474.
by Google Security Research
CVSS 9.8
CVE-2016-0846 EXPLOITDB HIGH text VERIFIED
Android <4.4.4, <5.0.2, <5.1.1, <2016-04-01 - Privilege Escalation
libs/binder/IMemory.cpp in the IMemory Native Interface in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not properly consider the heap size, which allows attackers to gain privileges via a crafted application, as demonstrated by obtaining Signature or SignatureOrSystem access, aka internal bug 26877992.
by Google Security Research
CVSS 8.4
CVE-2025-34115 EXPLOITDB HIGH text VERIFIED
OP5 Monitor <7.1.9 - Command Injection
An authenticated command injection vulnerability exists in OP5 Monitor through version 7.1.9 via the 'cmd_str' parameter in the command_test.php endpoint. A user with access to the web interface can exploit the 'Test this command' feature to execute arbitrary shell commands as the unprivileged web application user. The vulnerability resides in the configuration section of the application and requires valid login credentials with access to the command testing functionality. This issue is fixed in version 7.2.0.
by hyp3rlinx
EIP-2026-101922 EXPLOITDB text
PLANET Technology IP Surveillance Cameras - Multiple Vulnerabilities
by Orwelllabs
CVE-2015-7378 EXPLOITDB HIGH text
Panda Security URL Filtering < 4.3.1.8 - Privilege Escalation via Weak Directory ACL
Panda Security URL Filtering before 4.3.1.9 uses a weak ACL for the "Panda Security URL Filtering" directory and installed files, which allows local users to gain SYSTEM privileges by modifying Panda_URL_Filteringb.exe.
by Kyriakos Economou
CVSS 7.8
CVE-2016-3943 EXPLOITDB HIGH text
Panda Endpoint Administration Agent <7.50.00 - Privilege Escalation
Panda Endpoint Administration Agent before 7.50.00, as used in Panda Security for Business products for Windows, uses a weak ACL for the Panda Security/WaAgent directory and sub-directories, which allows local users to gain SYSTEM privileges by modifying an executable module.
by Kyriakos Economou
CVSS 7.8
EIP-2026-112308 EXPLOITDB text
SocialEngine 4.8.9 - SQL Injection
by High-Tech Bridge SA
CVE-2016-3672 EXPLOITDB HIGH text
Linux kernel <4.5.2 - Privilege Escalation
The arch_pick_mmap_layout function in arch/x86/mm/mmap.c in the Linux kernel through 4.5.2 does not properly randomize the legacy base address, which makes it easier for local users to defeat the intended restrictions on the ADDR_NO_RANDOMIZE flag, and bypass the ASLR protection mechanism for a setuid or setgid program, by disabling stack-consumption resource limits.
by Hector Marco & Ismael Ripoll
CVSS 7.8
EIP-2026-102456 EXPLOITDB text
Asbru Web Content Management System 9.2.7 - Multiple Vulnerabilities
by LiquidWorm
CVE-2014-4113 EXPLOITDB HIGH text
Microsoft Windows - Privilege Escalation
win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges via a crafted application, as exploited in the wild in October 2014, aka "Win32k.sys Elevation of Privilege Vulnerability."
by MWR InfoSecurity
CVSS 7.8
EIP-2026-102497 EXPLOITDB text
ManageEngine Password Manager Pro 8102 to 8302 - Multiple Vulnerabilities
by S3ba